Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XA0XaoArLkVX6IWmwOq10NBw16c.cer
File: XA0XaoArLkVX6IWmwOq10NBw16c.cer (raw, json)
Hash identifier: ID9cP5zorNvOaC8rH0w6wgi/tk6cmJR4Vkvszu0NzVg=
Subject key identifier: 5C:0D:17:6A:80:2B:2E:45:57:E8:85:A6:C0:EA:B5:D0:D0:70:D7:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B240
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911959A/2F8DCB02C1CB11EB9175CE66C4F9AE02/XA0XaoArLkVX6IWmwOq10NBw16c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911959A/2F8DCB02C1CB11EB9175CE66C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 26 Jul 2023 12:34:15 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 142298
IP: 103.167.190.0/23
IP: 2001:df6:bd80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111168 (0x1b240)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 26 12:34:15 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A911959A/serialNumber=5C0D176A802B2E4557E885A6C0EAB5D0D070D7A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:94:1e:84:bc:b7:fa:24:94:63:67:a0:a0:e1:
ae:da:f9:06:44:31:14:d3:33:cc:23:7f:22:90:29:
e8:69:7b:78:5e:d0:db:1a:9f:de:3f:25:8c:95:df:
12:dd:97:c3:86:ce:f4:e3:67:61:c8:a8:93:54:24:
1f:c7:e7:99:32:c7:8e:99:07:4a:fb:07:0e:82:07:
84:36:6f:d7:24:bd:ea:37:cf:24:53:53:38:7b:ee:
35:c4:0d:ef:16:a7:3a:6f:84:73:2e:59:42:f5:fb:
89:ca:86:2c:cc:98:d9:7e:7f:c1:78:4d:c5:f9:53:
a2:4d:29:09:51:9e:e9:0e:fc:57:9f:8d:20:95:3b:
63:4e:58:bf:c9:ec:88:a5:18:fc:0b:a9:2b:10:74:
f7:6e:00:cc:45:0d:8c:10:cd:9a:d3:05:a6:1a:bf:
6a:1b:84:4f:fd:ab:2b:96:2e:25:75:82:9e:55:51:
db:0b:4b:e0:40:d6:2d:d1:d2:05:c9:86:fb:35:d8:
a1:b9:03:6c:c6:12:f6:f2:73:94:49:6c:0a:89:6e:
88:77:98:f1:9c:ba:76:69:5a:36:07:36:c8:6e:27:
bc:fc:68:e4:f6:47:7e:80:d4:10:d5:52:61:4d:f7:
7e:99:ec:fe:40:cc:05:52:d7:35:65:38:d5:e0:4a:
40:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:0D:17:6A:80:2B:2E:45:57:E8:85:A6:C0:EA:B5:D0:D0:70:D7:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911959A/2F8DCB02C1CB11EB9175CE66C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911959A/2F8DCB02C1CB11EB9175CE66C4F9AE02/XA0XaoArLkVX6IWmwOq10NBw16c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142298
sbgp-ipAddrBlock: critical
IPv4:
103.167.190.0/23
IPv6:
2001:df6:bd80::/48
Signature Algorithm: sha256WithRSAEncryption
a0:ce:2c:f3:d6:5a:84:2c:bf:b0:f0:2f:a5:1e:ec:39:7d:cb:
71:1f:99:26:66:50:dd:5e:9e:fa:0c:da:fd:90:0c:c2:cf:2c:
67:d6:07:e3:9e:84:79:f8:d1:33:55:19:56:c9:c8:81:c3:9c:
d1:cf:47:5e:88:4c:d9:48:e9:83:ad:d7:cc:4c:20:3d:f9:89:
a4:c8:fb:c7:9a:2d:fb:b0:fd:d0:f0:1e:a1:3c:07:cc:c5:2f:
ad:76:24:71:70:cc:94:2c:51:08:f4:8d:1e:63:78:2e:19:03:
e0:26:96:0d:fe:6d:9d:55:41:fc:6e:97:d9:93:b6:7e:13:0c:
b4:7c:60:6b:88:83:10:41:9c:8a:38:a9:ff:d3:f1:d5:61:17:
12:c7:5d:7d:05:2d:72:b9:d0:8e:bb:85:86:b1:61:b5:23:b5:
66:06:b7:1a:65:fa:fe:ab:77:69:31:98:d1:49:8d:04:1c:92:
b9:2b:9a:0d:12:d2:8a:cf:91:54:83:99:0d:61:28:20:92:8c:
15:7e:57:8f:73:9a:c5:2c:7b:06:f2:16:41:3f:8c:a3:bd:1e:
f5:f2:87:2a:e4:37:a5:4c:70:fd:57:87:4c:0c:8d:bd:2a:8f:
48:ba:0c:18:ea:e4:cf:71:fe:05:75:0e:2f:50:ab:52:33:f9:
a0:f9:a2:8c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 07:21:26 2024 by rpki-client on console-ams.rpki-client.org