Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.cer
File: Y6KavYf0of5Vy_Kg9Al1CsNKwjU.cer (raw, json)
Hash identifier: 7MJMt8fcWyJKUQ2bajmqYIl0WL5LNIYFkDlB471lvYQ=
Subject key identifier: 63:A2:9A:BD:87:F4:A1:FE:55:CB:F2:A0:F4:09:75:0A:C3:4A:C2:35
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CAB1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Nov 2023 05:35:16 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 9651
IP: 103.29.104.0/23
IP: 103.250.42.0/23
IP: 2001:df2:1200::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:14:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117425 (0x1cab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 14 05:35:16 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91DCDB3/serialNumber=63A29ABD87F4A1FE55CBF2A0F409750AC34AC235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:64:a9:b4:d2:c5:fb:8b:ff:db:8e:1f:9e:a5:
3e:79:db:30:e5:1d:2c:52:df:d6:9a:a5:2e:30:c4:
56:8b:f0:20:cb:c5:a4:f1:82:a7:cd:ff:a9:99:86:
e3:b3:a4:91:16:c2:e7:27:6a:1b:d1:1c:6f:09:02:
3f:35:3b:e8:df:cb:bc:b5:57:78:b2:5a:39:fe:bc:
d4:8a:c4:2f:5c:85:54:ba:47:fa:12:b1:2d:a1:0a:
7b:cb:3f:c1:9c:14:c4:a9:9f:dc:12:33:e5:53:e4:
f6:e3:8d:ef:bc:fe:9d:12:04:7a:1e:78:a9:1d:99:
b1:8d:01:dd:74:dd:44:1b:d1:be:a7:7f:46:63:a8:
a5:76:b9:05:2e:7d:8a:9e:fc:0b:06:bc:56:b7:b6:
32:fd:82:48:be:a3:22:ec:3b:99:67:ef:39:36:7d:
2f:2f:ac:6c:f3:1f:bd:02:1a:30:d3:a2:92:f0:c8:
df:64:1b:95:6c:d1:f9:f4:bb:50:74:f3:d4:64:bd:
a8:a1:1b:a8:93:d1:66:fe:a3:b2:b9:f6:4a:3a:5c:
f0:b1:9f:34:4d:af:9b:c4:d0:ee:d3:ca:84:bc:10:
d2:a6:05:03:e9:be:d7:99:86:bf:83:98:57:d3:f8:
40:ff:0b:d7:a7:51:a9:af:9c:aa:ac:77:8d:65:4d:
7b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A2:9A:BD:87:F4:A1:FE:55:CB:F2:A0:F4:09:75:0A:C3:4A:C2:35
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9651
sbgp-ipAddrBlock: critical
IPv4:
103.29.104.0/23
103.250.42.0/23
IPv6:
2001:df2:1200::/48
Signature Algorithm: sha256WithRSAEncryption
cf:ce:35:d4:7c:14:0f:6e:1c:8c:69:23:73:c5:e4:dc:6e:d1:
46:1a:d2:6d:ea:b2:87:a2:9e:1f:16:77:26:02:48:44:66:bc:
d9:f1:b9:04:b2:1a:20:da:c9:c5:b0:02:da:bf:64:22:93:a9:
8a:b9:1e:31:a0:17:28:a6:bd:17:39:a6:23:e0:66:6b:5d:73:
fd:28:60:e9:5c:af:fd:26:16:d5:d8:c0:a1:10:d1:ba:4e:91:
3e:a3:6f:4a:26:ca:cb:0d:e5:7e:46:16:b6:97:94:fd:9e:e7:
ee:c8:f3:81:2c:1b:2a:4c:3f:64:42:f9:53:37:d3:15:72:e0:
fe:7a:45:d5:a6:7f:57:cf:5c:c6:35:6e:80:01:ce:d2:34:c2:
aa:d4:ac:19:4d:a6:fd:be:d1:d9:f1:63:3b:bf:91:85:cf:aa:
b6:76:77:41:9d:ea:eb:a9:15:45:d8:65:b1:98:a3:6e:c9:b8:
d3:2e:85:37:be:5d:18:2c:22:e1:ca:15:3f:6a:5f:db:ef:9e:
b3:a6:af:dd:4b:36:f0:68:4e:70:21:72:89:95:08:1a:13:b2:
dd:0f:7b:5a:ff:c7:fe:6d:2a:be:9d:8e:15:76:59:e8:fc:46:
97:18:da:83:15:14:11:8c:5a:90:7e:ae:7d:c4:38:3c:64:26:
0e:40:1e:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 05:58:28 2024 by rpki-client on console-ams.rpki-client.org