Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X9vV31MtLFYgb3sRLnu7MFejmZA.cer
File: X9vV31MtLFYgb3sRLnu7MFejmZA.cer (raw, json)
Hash identifier: N6rtpgFZJLlVfwUcz4NtCQYUCsP/MyD12yvThBy4a5Y=
Subject key identifier: 5F:DB:D5:DF:53:2D:2C:56:20:6F:7B:11:2E:7B:BB:30:57:A3:99:90
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D795
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Jan 2024 01:55:05 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 137891
IP: 103.116.190.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120725 (0x1d795)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 10 01:55:05 2024 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A9196296/serialNumber=5FDBD5DF532D2C56206F7B112E7BBB3057A39990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7b:f5:7d:c3:a7:da:79:6d:ce:32:5e:fd:c0:
37:1d:03:35:8c:d6:21:6a:92:ea:de:0d:b5:34:47:
b2:dd:87:cf:31:03:18:0e:3c:03:50:e7:9c:33:1a:
b0:b4:96:c3:71:64:1c:0f:08:4e:2e:37:8f:ef:eb:
d5:e4:da:4b:74:59:9c:0b:2b:6f:1b:96:b0:a0:67:
57:3a:68:65:dc:c7:52:43:7c:4f:59:ce:1a:1f:f8:
db:da:cb:70:cf:56:9a:8f:57:f3:b2:08:2d:cf:93:
6e:42:2d:c6:32:b3:05:66:d5:f7:f6:dd:b5:20:65:
96:f8:89:4b:6a:4b:51:fb:95:39:73:9d:94:a9:c7:
f5:ec:1f:ca:5a:34:fa:fe:12:4c:b6:99:14:97:48:
9b:6b:33:61:22:6f:09:ca:37:39:90:11:0e:cc:2e:
af:97:7f:8a:b3:8c:7a:40:4c:1a:4a:4b:ae:1e:9c:
ec:ec:be:17:d3:18:b4:57:ad:d5:44:7d:ef:03:cb:
17:f3:ff:98:01:3b:4d:ba:8e:5e:c9:51:19:e5:ea:
13:75:50:d7:9f:a3:32:c8:cb:21:ea:c0:43:9a:75:
6a:f1:90:3a:2f:81:7d:74:87:b7:c4:11:76:a9:b1:
59:48:9b:cb:98:d4:09:9e:fa:00:f6:03:b2:a4:25:
b5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:DB:D5:DF:53:2D:2C:56:20:6F:7B:11:2E:7B:BB:30:57:A3:99:90
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137891
sbgp-ipAddrBlock: critical
IPv4:
103.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:28:b4:c5:19:e7:96:f1:f0:c0:e3:73:2d:28:0f:94:7d:ed:
8e:17:e0:b7:16:cd:4a:05:54:74:aa:c6:a6:9f:e7:c9:f1:3f:
fb:96:8b:af:d6:37:ac:3b:09:54:4f:cb:79:f3:6e:db:e2:ec:
fb:51:0c:08:7d:a2:20:05:b2:c8:f3:6d:12:22:01:df:a3:f1:
7c:c7:10:20:21:b3:0e:39:f9:b8:2f:3e:d5:50:39:9b:20:e7:
83:ca:c1:a9:92:f1:9b:40:f6:f8:bd:6e:3b:34:1b:b1:92:13:
b3:09:2d:a0:e2:fe:2e:f2:b9:30:bc:24:84:a4:76:1e:f6:2a:
dd:f6:64:7d:05:e1:99:f2:bc:0c:98:a1:67:1b:bc:d2:87:76:
0b:38:cd:1e:e6:78:b7:84:2e:8c:d2:e9:5a:c4:61:91:7e:8a:
d1:fd:75:4b:24:ec:ba:84:23:54:ef:90:80:26:88:11:2d:4e:
20:0b:ab:1a:73:73:ca:52:30:21:86:54:75:88:8c:d3:95:e8:
10:01:0c:dc:ba:c5:06:df:0f:ac:70:83:ee:e0:44:62:4f:96:
30:c5:3d:f1:ce:08:f3:c6:09:92:55:11:32:c1:6f:f6:b4:f5:
ca:18:ef:c7:b7:76:33:c2:8a:17:cc:fd:b7:b1:f5:fb:72:6d:
0c:da:9a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 12:24:35 2024 by rpki-client on console-ams.rpki-client.org