Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer
File: Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer (raw, json)
Hash identifier: Q8o7dtKRMJYBbKpawh7V48bIycTYlvOzNX8Wc/siCpU=
Subject key identifier: 56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B209
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 25 Jul 2023 14:56:32 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 135604
IP: 103.68.4.0/22
IP: 2405:de80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 08:04:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111113 (0x1b209)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 25 14:56:32 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A914F22A/serialNumber=56AF1CD0B4E07D000C64AB016C33F786A0DD90FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bb:c7:8c:80:9d:b5:1c:5d:68:bb:22:a5:18:
bc:f5:69:3d:4c:f4:3d:c2:ac:95:6b:20:39:63:30:
8c:66:12:01:53:bc:a9:a7:c4:86:85:ff:78:17:c4:
6a:53:e8:94:c0:b7:0d:ba:91:d6:56:ee:57:ba:30:
01:88:ff:7b:84:79:e6:89:4d:10:4e:80:87:c5:7f:
50:dd:6f:a0:71:01:55:e4:c8:df:88:38:ed:b5:2f:
81:16:0c:ab:9e:40:a6:ca:ef:d2:eb:d4:cf:03:0e:
c4:cd:68:3b:71:84:8b:d6:22:49:fc:6c:c0:de:3f:
9d:3e:23:c8:6b:ac:79:c6:8e:fe:30:6a:55:21:35:
69:4c:fb:69:73:65:28:96:15:8f:fa:26:82:52:b4:
ad:83:ce:9a:41:76:d0:c5:3c:99:b1:a7:1d:fe:7b:
1c:4b:9c:bd:65:ea:fb:d0:10:e0:42:46:3a:08:d2:
a0:1d:9d:0f:ca:52:3c:8b:61:fa:76:3a:e3:2a:9b:
d9:d1:bc:a8:39:66:11:b3:5d:19:4a:8b:43:c3:07:
71:0b:e9:94:35:96:9d:eb:48:f5:20:91:a5:6e:3e:
05:e4:a6:67:42:e6:bd:42:a1:38:94:13:c2:2c:8b:
20:12:c5:63:53:18:95:bf:45:b7:9e:ea:a5:f2:92:
f2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135604
sbgp-ipAddrBlock: critical
IPv4:
103.68.4.0/22
IPv6:
2405:de80::/32
Signature Algorithm: sha256WithRSAEncryption
9e:c6:6d:0a:c8:0d:bb:2c:6f:14:cc:ce:5f:92:f5:8c:84:77:
e4:a3:84:fa:ce:98:99:7f:b8:d1:b2:32:8c:9e:b4:08:aa:3d:
d2:89:3d:5a:44:fd:95:15:d3:2d:59:17:e6:49:bb:47:ab:a2:
f6:18:99:39:0e:28:b9:70:5b:de:e9:83:32:1e:5d:36:6d:0b:
fb:1c:06:97:58:76:9f:ab:e1:f7:ca:26:af:37:21:9c:c2:5a:
e8:13:a7:d9:18:cb:88:e1:86:fc:f4:b7:35:e7:1d:52:4a:86:
97:db:48:08:59:d8:72:8b:bc:91:4a:c9:62:71:df:ad:1b:cc:
b9:32:d5:a1:ec:49:d2:8a:4b:15:92:24:55:7e:ee:de:85:77:
11:2f:d6:08:45:f3:23:94:9c:ba:d4:2b:d6:20:e6:8b:f8:3a:
27:33:fc:01:b0:49:54:c0:17:d9:f0:24:ee:8d:ef:a4:be:a3:
34:76:7f:6d:ce:95:3a:ee:f1:88:ed:3d:fd:dc:8c:94:b4:a1:
cb:bc:b5:65:25:57:9c:3c:f4:a7:27:70:aa:1e:d5:2e:65:4e:
a8:f6:f9:73:b0:a4:6b:a0:b3:47:19:17:90:f1:e9:fa:af:bb:
34:9d:9e:4c:d4:be:59:1d:4b:bf:16:cf:08:16:81:26:7e:18:
57:5a:39:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 08:45:16 2024 by rpki-client on console-ams.rpki-client.org