Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4K1EzSDFdWvPxMOxUwdqGcojCw.cer
File: Y4K1EzSDFdWvPxMOxUwdqGcojCw.cer (raw, json)
Hash identifier: 86i29bMKxYvi1xLZ0xxj5O4Y7Ad3BZ32MnIGC5HXp1U=
Subject key identifier: 63:82:B5:13:34:83:15:D5:AF:3F:13:0E:C5:4C:1D:A8:67:28:8C:2C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E6B7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Mar 2024 00:50:56 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 63923
IP: 103.44.76.0/22
IP: 2001:df1:8400::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124599 (0x1e6b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 27 00:50:56 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91C15F2/serialNumber=6382B513348315D5AF3F130EC54C1DA867288C2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1f:70:85:ac:bb:04:08:f6:22:38:f0:ad:a5:
90:97:ec:93:c6:c9:1e:13:a4:bc:d3:a2:be:73:c5:
42:5e:28:81:44:b6:e3:86:85:08:1f:70:9d:56:ed:
e9:60:f6:db:c2:5c:d7:35:54:c3:54:69:b4:d7:b5:
09:3c:12:0a:2c:23:75:0f:02:9c:66:3f:b9:c9:53:
7e:b3:dd:b0:81:5f:1b:f7:14:c8:dc:fc:47:fa:bc:
01:a6:c6:49:5b:73:3e:9f:d9:79:e0:fd:c2:95:6e:
ab:3d:60:08:14:0d:da:59:c7:ff:0f:74:e9:a0:b8:
26:20:87:e1:a0:77:34:57:f7:28:6b:e9:28:61:54:
e5:10:34:ed:e2:8f:88:cd:ed:65:c3:3f:1c:55:33:
f2:b9:fb:35:14:be:05:a0:1e:e4:b9:48:2b:2e:32:
14:e2:e2:f8:01:c5:3e:62:4d:aa:cc:c4:d2:66:d2:
1d:e0:68:70:84:06:7e:d3:13:1c:60:c8:9c:74:eb:
a9:8b:e2:94:fd:af:01:0b:0c:bf:76:1a:ad:cb:2c:
ed:f7:13:84:c2:75:f0:96:8a:6e:e3:28:70:e7:ef:
d0:07:c7:bc:c2:d1:22:bb:eb:e6:8d:54:ab:be:fb:
7b:47:d1:e8:42:29:e9:92:e5:bc:9f:ce:53:cf:cb:
aa:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:82:B5:13:34:83:15:D5:AF:3F:13:0E:C5:4C:1D:A8:67:28:8C:2C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63923
sbgp-ipAddrBlock: critical
IPv4:
103.44.76.0/22
IPv6:
2001:df1:8400::/48
Signature Algorithm: sha256WithRSAEncryption
7a:e1:1f:c1:80:c5:80:34:c4:bd:23:c2:56:e1:f2:c3:2c:ef:
45:c6:3c:d2:21:f8:4b:3e:5b:e2:82:95:57:92:23:19:68:f0:
24:d8:dd:af:f9:bb:54:35:cc:1c:2d:03:d1:b2:91:1a:ce:22:
36:3f:24:4a:4a:09:86:6d:b6:b8:be:23:1a:ee:fd:2a:11:81:
28:7c:59:d8:74:56:b6:ca:7b:23:16:fc:41:91:0f:ed:d2:0d:
90:6f:b1:2a:59:aa:17:4b:c3:6f:74:7a:18:e4:48:09:d1:e4:
9f:d0:f0:93:35:e0:b1:72:f5:fd:47:cb:e2:33:46:3e:fd:9b:
11:20:08:d6:8d:e6:98:c5:63:1d:cb:f4:f9:c9:79:cf:7e:fc:
4c:00:e4:0b:fa:b6:70:5e:d2:b2:67:7e:cd:ee:91:b9:d3:9f:
bc:09:64:63:86:d4:38:e8:03:00:c7:18:8d:f4:00:1c:53:8c:
f3:67:3a:26:a3:22:56:c1:43:3b:f9:5e:21:67:a7:6a:e6:e5:
57:95:af:9a:7a:dd:17:59:b3:09:4b:f8:6a:0b:46:72:6c:12:
7f:84:cf:12:07:34:fc:d9:76:85:ca:2f:22:a8:2d:54:41:73:
a8:68:5f:4b:f0:ba:f0:cc:31:e2:3e:30:51:ac:c5:2f:35:c0:
a8:b7:c1:ec
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:35 2024 by rpki-client on console-fra.rpki-client.org