Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer
File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer (raw, json)
Hash identifier: Ka3/eRHr451j10e2/3Q8V0BqZa4NPVvvQaHSs4414rM=
Subject key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C96A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 07 Nov 2023 04:55:10 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 142420
IP: 103.12.96.0/23
IP: 2001:df1:69c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117098 (0x1c96a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 7 04:55:10 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1e:1e:d6:2c:ab:12:1d:40:81:b8:fd:67:98:
3f:5c:83:5b:df:53:d6:5e:b5:ce:70:6f:f7:4d:1e:
1d:9d:17:a2:fd:61:28:03:37:6c:32:e0:cf:5c:97:
c0:8d:64:e2:37:61:fd:fc:90:81:c8:8c:ad:2c:dc:
a5:d7:74:14:6c:e2:d9:6a:07:ed:8c:96:50:9f:cb:
53:17:80:f8:e6:50:44:f1:ac:14:93:5b:a0:48:bf:
ff:0f:39:53:16:f6:cc:8e:42:ff:32:f9:a9:af:e0:
7b:af:1c:d6:54:ab:53:5e:9c:41:e2:5b:e9:66:ee:
a5:8f:c9:2a:b4:ce:8c:11:c7:e1:71:7e:d6:46:9e:
1b:d6:ea:fe:69:d8:f9:8a:2f:b0:c7:a4:8f:6b:fd:
e3:38:7e:61:a9:08:60:1b:4e:16:ee:07:32:8e:d8:
aa:e9:90:a1:af:82:b1:ce:9a:33:9f:70:6f:21:01:
f7:85:39:18:8e:5a:c3:66:94:22:36:fe:17:68:1c:
7c:bf:ac:d4:ed:b8:19:2f:e3:e8:f4:2b:ed:10:ce:
bf:9b:30:91:6b:4f:cc:d8:1b:98:a5:5b:a4:69:59:
4b:3a:6d:52:a7:88:ed:ac:47:84:0c:e5:da:9c:fa:
a3:77:65:8d:90:8e:a4:2c:b8:1d:07:49:c2:e9:3f:
42:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142420
sbgp-ipAddrBlock: critical
IPv4:
103.12.96.0/23
IPv6:
2001:df1:69c0::/48
Signature Algorithm: sha256WithRSAEncryption
63:34:b8:31:ac:3c:04:ac:96:3b:77:42:f3:b9:a1:e4:06:a8:
03:5c:8d:25:9d:62:b2:41:71:b0:51:9c:f2:04:d8:80:ce:b7:
54:a4:63:b9:d9:f9:a4:8f:db:c0:c1:aa:ca:99:2d:92:ae:de:
8b:f6:35:e2:de:17:cf:7b:58:cd:62:ef:c8:9a:66:41:de:fa:
de:15:5b:cb:77:04:3e:35:18:fe:3e:e2:db:71:f9:13:83:e1:
04:5c:ab:70:c5:a0:3e:55:cd:7e:c0:45:be:b5:d2:3a:1c:40:
bd:54:b4:4c:cd:7b:ef:67:95:3a:e8:69:93:67:f2:c1:d2:83:
30:81:bf:02:55:9f:79:43:f8:0d:e4:25:56:f8:17:d3:21:90:
d7:40:09:c3:00:e2:8f:04:82:b8:13:f3:48:f8:72:fb:32:ff:
f2:9f:11:dd:69:b7:59:44:3b:5c:96:ad:7c:c8:55:dd:ab:59:
f3:b1:70:ef:d2:0f:0a:ae:33:a6:45:9f:eb:69:94:43:8b:82:
a0:7e:70:a4:6f:32:be:92:96:42:90:94:4d:f1:7e:ad:98:b9:
68:de:1e:d6:60:6b:eb:6b:50:3f:3b:40:92:d0:6c:ea:d6:96:
1f:8c:2f:5a:1a:1f:59:c3:95:c7:3d:46:0c:20:0f:bf:66:d5:
ca:88:ec:e4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 20 03:57:55 2024 by rpki-client on console-fra.rpki-client.org