Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer
File: YBi5hcOZywcxwWNM_ktHkS8q9dE.cer (raw, json)
Hash identifier: cgjcNCur34Run3hO9I+c4FZZvoM2CI813ejAkW+WgiM=
Subject key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B0DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 18 Jul 2023 16:14:02 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 139076
IP: 103.139.110.0/23
IP: 2001:df0:7480::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 08:35:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110814 (0x1b0de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 18 16:14:02 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4c:99:77:6c:f6:87:ed:ef:59:93:0f:da:2f:
6b:6c:7a:84:2c:d0:07:e0:4d:24:b7:18:69:35:9b:
96:ff:97:ba:e0:59:c4:2d:34:7f:7a:ce:34:3b:f3:
2d:da:ff:ff:4f:30:7b:73:12:b2:7c:2f:4b:5e:fc:
9b:c0:ca:7c:9b:66:1f:ad:38:93:5a:64:0a:ef:09:
94:b7:96:18:5a:09:e5:81:e8:ba:18:d0:41:dc:e9:
7e:a0:e2:b1:d5:e8:e4:ae:78:83:ee:6f:46:0a:44:
23:2d:ba:30:ca:a9:0d:77:5d:f2:b4:3b:b5:39:30:
58:fc:a6:e5:8e:23:d8:76:f6:ca:f3:82:2a:cd:5a:
c4:2b:8d:3d:58:cb:06:e0:a6:cd:b4:83:b9:11:8a:
e6:5c:12:40:07:c4:a9:08:ea:79:22:19:1f:23:3d:
f8:0d:ff:f0:d1:43:15:ad:76:bd:67:56:3d:ba:15:
55:fa:c6:2c:8a:ed:62:0e:3e:99:cc:eb:e1:10:d9:
5e:99:04:d1:b5:a4:1f:83:0f:b8:57:0a:ff:3f:20:
80:55:bd:35:b4:56:cc:69:76:ba:ba:16:03:7e:d8:
1a:05:10:4a:c2:97:73:35:82:11:c9:ce:c2:37:07:
d8:47:80:ee:6b:a5:c3:da:ab:b1:7e:5c:fc:47:71:
7f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139076
sbgp-ipAddrBlock: critical
IPv4:
103.139.110.0/23
IPv6:
2001:df0:7480::/48
Signature Algorithm: sha256WithRSAEncryption
5f:ec:fb:fa:cb:09:84:59:14:b8:be:44:d2:da:ce:20:ba:7e:
fe:ba:92:68:04:2e:87:7a:64:77:9f:33:a1:46:04:7d:1b:1b:
df:d5:06:1c:37:52:09:20:23:01:2f:c9:e3:77:d2:04:da:13:
48:ad:ac:78:ef:9f:5b:14:fb:10:e0:5f:2b:60:c7:00:78:4e:
a9:e3:1a:77:4e:65:1a:09:cb:35:e7:34:95:12:f4:df:4d:e4:
55:19:23:26:ff:94:d6:88:1a:62:20:a3:c3:88:e6:39:72:af:
0b:b6:f7:81:56:35:ba:4f:eb:3a:e2:fd:95:ca:98:40:8f:83:
df:c8:b5:01:53:43:00:05:69:39:5c:ac:7b:30:fc:be:49:e8:
8a:97:8a:e7:1c:4b:c0:67:47:e1:97:c9:0b:66:ab:9f:5a:01:
32:19:7f:f8:d2:d8:e0:e9:75:ab:64:e8:c6:d7:3b:4e:0b:a8:
88:66:ae:aa:83:fb:43:18:7c:42:85:37:06:85:3e:9a:ca:45:
7a:9d:fa:b9:a3:19:18:a7:cb:35:2d:f9:1f:7b:64:a5:50:66:
d2:25:8a:d0:24:00:7f:bd:db:80:22:16:65:2c:45:2d:36:29:
31:4f:ea:c2:c5:20:f5:d2:9c:4a:07:66:9a:a0:14:97:3f:3f:
87:16:3a:fd
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 18 10:06:14 2024 by rpki-client on console-fra.rpki-client.org