Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2r-ya7p6tTclkY7oanLJyM9bf8.cer
File: W2r-ya7p6tTclkY7oanLJyM9bf8.cer (raw, json)
Hash identifier: jnEEaGAk/ZZt7Ct4nj6cqZ8o77dBqkGzKxTYiiUquNQ=
Subject key identifier: 5B:6A:FE:C9:AE:E9:EA:D4:DC:96:46:3B:A1:A9:CB:27:23:3D:6D:FF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CF20
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D81D4/DAE382AA1D9A11E288D06C8808B02CD2/W2r-ya7p6tTclkY7oanLJyM9bf8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D81D4/DAE382AA1D9A11E288D06C8808B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Dec 2023 15:04:18 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 45518
IP: 103.161.82.0/23
IP: 203.153.210.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 06:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118560 (0x1cf20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 2 15:04:18 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91D81D4/serialNumber=5B6AFEC9AEE9EAD4DC96463BA1A9CB27233D6DFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d9:71:76:1c:fa:16:45:45:4b:85:b2:45:7a:
17:fa:ea:2a:a0:f5:50:27:c6:d5:56:11:1b:66:0c:
77:3e:6f:02:e2:03:b5:f9:ac:90:bc:3d:0e:fc:be:
54:ec:d5:de:8c:15:92:30:20:a2:d0:5e:49:d7:04:
b9:7d:eb:41:9f:ed:2c:98:02:17:39:3a:7d:47:f2:
da:fc:7e:9f:c3:2a:ff:60:33:e1:d5:20:cd:3c:54:
3e:98:b2:42:4e:ed:7c:96:f4:21:6e:61:47:77:86:
e5:65:97:03:39:4f:33:5a:83:df:3d:c0:8a:79:98:
c0:2d:2c:2d:f0:3d:cb:96:7a:61:e0:85:26:d2:a0:
79:8e:1f:07:a4:ac:fc:e5:b7:98:bc:0e:b6:97:15:
3f:05:69:19:2f:b6:4c:68:b7:16:57:0e:15:89:63:
31:34:40:5f:26:f4:6b:85:57:0a:b7:06:13:36:5b:
07:36:cd:c7:30:29:d5:28:87:a9:71:83:1e:75:95:
4f:f3:25:2f:b8:99:f0:d6:5c:5f:bc:87:6a:4e:91:
b4:6f:0a:f5:b8:86:a9:f4:8b:01:0d:03:82:09:13:
9c:c7:02:e2:41:6c:d1:e2:c7:d8:b6:cd:86:d4:57:
9e:99:43:f8:0b:99:a0:20:f2:00:c6:9e:65:32:12:
17:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:6A:FE:C9:AE:E9:EA:D4:DC:96:46:3B:A1:A9:CB:27:23:3D:6D:FF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D81D4/DAE382AA1D9A11E288D06C8808B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D81D4/DAE382AA1D9A11E288D06C8808B02CD2/W2r-ya7p6tTclkY7oanLJyM9bf8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45518
sbgp-ipAddrBlock: critical
IPv4:
103.161.82.0/23
203.153.210.0/23
Signature Algorithm: sha256WithRSAEncryption
05:89:a6:fe:2d:f2:de:ac:a0:8a:83:20:d4:43:56:90:da:e9:
da:ff:b6:96:2f:6e:11:a2:4b:55:fa:f0:90:47:84:39:5b:49:
15:cd:c8:ce:d5:e7:29:d1:19:cc:ea:6d:e2:fc:8f:2c:ee:54:
67:51:16:6f:74:7c:c7:a0:99:77:09:01:a0:86:60:29:de:1e:
06:75:9d:b2:ef:92:97:ba:51:de:ef:b2:53:ed:d8:08:f3:60:
fc:ee:46:27:6f:28:eb:be:35:73:df:0a:36:18:33:de:00:ba:
dd:96:59:e0:71:75:c9:1a:20:fa:aa:21:ac:3b:ad:a6:fc:05:
7a:70:60:32:6a:f7:63:e8:63:6e:de:97:8b:2d:d6:d5:18:39:
78:47:62:90:78:6c:ab:8c:4c:ae:b0:59:14:36:d8:28:c5:cc:
5e:0b:e5:1b:31:43:04:b8:45:22:bc:8a:9d:9d:88:8f:73:a3:
72:93:3b:ed:85:b7:1b:1d:c8:d8:c6:12:22:d5:39:d1:50:62:
f7:13:dd:8c:09:50:35:5c:5c:e1:67:64:59:7c:00:b4:15:e4:
82:21:89:eb:65:fb:d9:57:70:24:0c:b7:ce:dc:6d:28:ed:89:
57:03:14:a1:53:0c:45:4f:e4:49:bc:9b:9b:80:b3:53:ed:54:
56:59:45:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 07:43:26 2024 by rpki-client on console-fra.rpki-client.org