Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer
File: Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer (raw, json)
Hash identifier: y9k4fG/zEvxPTkcewPDCiOnDOfweolnE5ABJKsF8MHo=
Subject key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B7B0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 18 Aug 2023 18:29:21 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 136805
IP: 103.96.141.0/24
IP: 103.109.123.0/24
IP: 103.109.132.0/23
IP: 2001:df1:df00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 04:45:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112560 (0x1b7b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 18 18:29:21 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1c:e6:98:15:e4:54:0e:58:08:1b:ab:8d:92:
d9:73:70:5d:74:a0:a3:79:91:16:26:08:5c:f9:5d:
d2:00:c7:3b:78:76:88:50:7a:4c:f4:50:75:ac:52:
68:37:76:cc:d4:08:b9:cf:92:a3:c5:92:d8:fe:0e:
7d:35:84:93:74:2d:f1:3a:40:d9:15:d8:cc:54:55:
a5:25:dd:3c:b9:4e:51:6f:6b:f6:4f:e8:21:30:86:
69:7d:01:76:06:6d:bd:c9:6f:bf:2d:14:c2:3a:6f:
6c:78:bb:dc:b5:cb:08:96:88:ae:d9:0d:0d:61:e7:
22:4c:ff:51:10:a2:c6:3b:fa:20:c8:3e:fc:0f:fb:
ae:bd:06:e6:67:55:e8:7c:ce:49:0e:44:0f:d0:a6:
21:e1:46:50:df:4f:a7:22:ab:ea:86:84:df:31:0b:
66:1f:7b:e0:f8:23:bf:92:c9:0c:68:5d:af:70:e9:
03:ea:3d:e0:6e:52:16:dd:a9:fd:6c:33:8e:f5:7b:
16:68:37:2c:f1:ba:ab:2b:bf:9a:78:d0:4e:0b:13:
72:42:5b:5f:6d:45:9b:ef:98:a4:3e:35:81:07:23:
a6:22:9b:d4:29:3b:62:d9:c5:28:c6:aa:3e:c4:de:
e0:fb:db:ca:c3:47:b9:91:bd:88:34:0e:cc:83:a4:
2f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136805
sbgp-ipAddrBlock: critical
IPv4:
103.96.141.0/24
103.109.123.0/24
103.109.132.0/23
IPv6:
2001:df1:df00::/48
Signature Algorithm: sha256WithRSAEncryption
a0:b9:30:56:37:3d:c4:b5:b0:42:ba:b5:33:32:df:ee:c9:ac:
0b:e2:cf:97:f0:b6:17:97:67:d7:f9:97:2e:3e:ac:34:e4:bf:
3f:5f:be:48:ef:b6:4a:0b:3d:bc:bf:46:cb:dc:f9:51:33:65:
a4:9b:42:ee:a5:c8:79:e4:f6:d5:4e:31:cc:64:b4:2c:fb:5e:
36:f7:52:8e:a6:8f:15:08:5e:78:96:a1:16:00:d6:2a:ba:6d:
df:3d:c5:b7:b9:4b:e1:ee:29:f8:a2:cb:12:3b:f8:3f:86:81:
d7:de:bf:8e:5d:0d:18:52:fc:9d:57:32:1d:77:70:aa:a4:9d:
28:19:2a:f8:7d:56:a7:60:67:44:70:ee:e9:e1:42:42:aa:0e:
07:33:5e:47:d1:59:eb:1f:01:a4:98:3b:b6:4d:0a:b1:8e:30:
ba:1c:fc:5b:06:31:e8:69:d7:72:df:69:08:48:9a:c9:5d:49:
b7:85:01:30:e8:3c:a7:4b:3a:df:6c:5d:12:7e:d7:8c:61:c6:
a3:86:57:ee:71:d9:de:59:ec:12:fe:d4:61:f8:7d:4d:12:3d:
d9:7f:c0:74:dd:51:cc:ad:86:ce:5f:26:7b:db:d6:61:7d:00:
ad:e2:f2:e8:d1:8b:e3:94:53:e5:a9:38:c6:4c:94:36:b3:9b:
6d:15:fb:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 05:47:52 2024 by rpki-client on console-ams.rpki-client.org