Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer
File: XdRoWi6WsUFvfNM1zetK0YIvfes.cer (raw, json)
Hash identifier: 3gsUDLal/yAEWVnR7qIfnxqywcvpzl2EzQewMNPPNjc=
Subject key identifier: 5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A50D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 May 2023 07:15:24 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 138611
IP: 103.206.16.0/23
IP: 2401:160::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 14:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107789 (0x1a50d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 25 07:15:24 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:00:d7:a2:bc:9d:43:e8:95:ad:aa:0d:9d:65:
0d:c0:7a:19:b4:22:e2:e9:4f:88:e1:4d:68:ac:a3:
35:16:8d:b5:70:97:7c:df:19:56:fe:3b:5d:ae:1b:
79:0d:ef:ab:f8:ba:a0:2d:ba:0b:ce:60:04:2a:2b:
a1:13:93:b5:12:91:95:f9:cf:f0:8d:46:15:9a:44:
76:d7:40:e6:f7:f7:16:38:27:7f:69:d1:b7:32:7f:
5e:2b:ee:63:ec:88:bb:f5:3b:22:01:c6:28:cb:97:
1b:40:75:1a:5c:6a:00:00:96:fd:be:68:b2:8c:df:
e0:ef:76:14:b5:91:ed:ba:1f:af:e1:f6:d5:9a:f4:
af:27:f1:4a:42:73:9b:2f:01:99:f2:aa:44:f8:49:
ed:1c:96:aa:4f:8e:15:0a:64:df:f2:53:f6:7f:97:
4b:7f:ac:d7:1d:8e:43:b0:90:bd:21:de:ce:ee:90:
40:34:36:97:38:80:a4:7b:67:30:5a:c9:26:3a:19:
4c:69:4f:67:4d:fb:61:31:44:04:39:fc:0a:85:07:
5d:a0:58:e6:23:47:61:e0:ad:04:79:a6:00:a0:c3:
67:87:f7:87:45:4f:37:49:25:e4:63:9f:7d:a3:3b:
e1:e6:d7:1c:d2:7d:43:8e:f6:2e:23:13:58:d9:bb:
8e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138611
sbgp-ipAddrBlock: critical
IPv4:
103.206.16.0/23
IPv6:
2401:160::/32
Signature Algorithm: sha256WithRSAEncryption
a1:06:58:64:c0:6a:4b:7d:7f:98:d1:cb:9a:89:28:f4:9b:79:
67:09:c2:25:e2:e4:0a:91:28:04:d6:cf:dd:ab:7d:b1:3c:b6:
e2:40:8a:66:ff:b9:55:67:1c:36:6b:41:62:22:40:04:a3:6f:
dc:67:2c:60:1e:86:4d:86:91:73:96:31:e8:ec:18:69:1b:b6:
aa:69:db:62:d1:d8:73:5b:cf:d9:a4:12:a2:f7:fc:67:60:97:
cd:be:0d:c3:0b:bf:81:98:50:99:c4:62:0a:ff:20:bf:d5:73:
a1:3c:a9:6c:81:4c:72:05:3b:13:cf:db:1f:4b:c5:44:fe:49:
9f:17:2f:dc:4d:09:be:9f:f6:80:6d:e9:d1:0e:3e:58:ba:18:
d1:e1:ed:95:79:b1:55:8b:5e:4d:5a:72:ce:56:f7:25:6e:cf:
11:b7:24:66:79:4d:6b:ae:78:fa:ca:71:03:cd:b7:fc:d3:ac:
1d:6e:c7:93:c8:6e:18:c7:91:f2:59:44:ea:d5:bc:ae:98:25:
2b:17:8b:f0:4c:a8:a5:07:ab:a0:ce:51:34:86:74:31:1e:26:
03:79:d1:bb:f1:e2:57:c0:25:11:9a:6c:55:24:f3:33:c8:b1:
01:2c:13:ba:74:ba:44:e5:8a:c7:2d:94:99:3d:0d:e8:ce:d2:
33:be:5d:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 16:13:14 2024 by rpki-client on console-ams.rpki-client.org