Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer
File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer (raw, json)
Hash identifier: oZ9qRoC0216ms8llLXWb4ffjs3a9RAZyUOer1+nG9N8=
Subject key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C79E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Oct 2023 21:30:55 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 131340
IP: 103.74.228.0/22
IP: 2407:3480::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 06:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116638 (0x1c79e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 31 21:30:55 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6e:a8:ab:05:65:15:c7:27:78:09:ef:68:c9:
d1:9d:2d:55:20:35:57:30:1b:e0:81:c3:ac:d5:2d:
73:c1:66:b3:a7:cc:14:e3:84:8e:72:f6:ba:9c:41:
63:2a:6a:ea:7b:5e:16:c8:c0:d7:94:e2:a4:d6:01:
40:98:a8:ab:ea:76:5a:03:65:4d:00:af:98:7f:cf:
10:34:e5:9d:42:e9:e8:b8:12:05:37:19:56:1a:65:
00:d5:02:ce:d6:e7:38:73:84:0c:8e:09:4c:56:59:
c8:b7:f4:33:81:e1:9a:04:f2:7b:7e:0f:7b:cb:5c:
71:f8:66:e1:d7:7c:60:7b:e0:11:53:ae:86:e3:d6:
32:4d:76:8e:79:0e:57:f4:f0:52:c8:bc:82:16:e2:
30:0f:08:a1:2b:e4:9f:f4:b5:13:51:82:d7:26:98:
20:39:d9:2b:86:d7:b7:78:e3:a8:a2:e4:72:f8:df:
52:38:7b:f0:15:74:03:78:49:14:b1:78:11:8d:a8:
f3:01:70:ed:a3:80:5e:31:13:41:f8:be:0f:a8:09:
f4:17:ef:45:85:f0:61:9c:ee:d1:47:bb:b8:65:98:
ec:60:50:f3:b1:86:b4:84:a3:13:b8:45:37:89:b7:
9d:1d:f6:b8:69:58:16:53:e0:aa:c9:c7:d7:55:9a:
d1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131340
sbgp-ipAddrBlock: critical
IPv4:
103.74.228.0/22
IPv6:
2407:3480::/32
Signature Algorithm: sha256WithRSAEncryption
a3:09:a8:d6:2e:56:0a:9f:a2:10:0e:ff:66:ae:3c:2e:3b:d8:
c2:8d:63:84:c6:09:c1:17:ba:67:01:7c:e0:ae:de:63:5e:b3:
9a:96:c8:fe:ab:12:30:9f:3b:09:11:a6:c4:29:27:1b:d0:51:
29:5b:18:d9:7e:11:20:83:44:47:1d:3c:f5:48:42:1c:10:3d:
f9:70:1a:43:ff:27:c9:9e:ca:26:51:4f:4b:9d:50:60:0e:e6:
15:c6:f9:a7:08:c1:42:4e:16:39:67:72:4d:eb:60:4f:7d:6d:
08:d8:f3:3f:c7:76:bd:94:71:1b:4d:c6:cc:77:c1:8b:22:d5:
eb:19:7a:ee:51:36:49:43:98:6c:05:80:51:5f:8f:28:fb:f1:
64:fb:dc:46:1c:1f:64:55:5f:52:dc:2f:83:f7:67:6d:44:b9:
c9:5c:ff:5b:ce:90:63:5a:e0:1c:38:da:8b:57:f5:e0:f2:9a:
22:4c:5b:03:6e:7f:9e:4c:5b:f5:ae:70:47:aa:91:f1:7f:d9:
7f:5c:2b:69:3c:38:fe:9a:c7:74:bd:16:fe:6c:06:97:6d:77:
e3:0a:03:be:4e:d9:2f:ee:f7:18:fa:70:91:b6:c4:6a:77:30:
2e:20:26:39:8c:14:79:33:b6:df:3e:e5:2d:a2:a3:8e:e4:af:
e8:17:a5:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 07:41:24 2024 by rpki-client on console-ams.rpki-client.org