Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer
File: YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer (raw, json)
Hash identifier: iJ/Bw8gtK9QevlgKdC8H8XV2WU0aypb+Hg/q4lQQ52w=
Subject key identifier: 60:AB:3C:FF:AB:88:A5:13:42:B8:16:F0:59:01:9F:07:3E:95:00:AA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C59F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 23 Oct 2023 13:37:57 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 139680
IP: 103.143.150.0/23
IP: 2405:5640::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116127 (0x1c59f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 23 13:37:57 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A913A839/serialNumber=60AB3CFFAB88A51342B816F059019F073E9500AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:90:a5:e4:81:4d:04:c8:8c:4d:3f:77:f6:14:
5c:40:2a:bc:85:82:a9:ea:60:1f:74:ba:be:be:7c:
f4:d6:e4:dd:61:aa:16:78:9b:08:11:58:bd:1d:5e:
66:c9:d3:f1:d5:04:24:bd:bd:4e:60:5d:e2:d5:1a:
7d:7a:7c:5d:f6:f5:51:23:1f:c9:45:03:dc:c5:57:
ed:e3:6b:57:c5:1c:7f:f5:bd:60:fb:c8:ef:f1:bb:
19:d0:0d:bf:ce:1c:ea:98:7d:3f:db:fc:2e:8b:1d:
a2:48:3b:fb:36:ad:ce:72:a8:5f:c5:a4:55:21:b5:
63:99:41:b6:cb:a9:9f:f2:22:80:40:dd:64:1e:ee:
c9:6a:28:3b:5d:67:0d:4a:0e:28:bc:e7:46:5f:08:
aa:c7:f2:43:37:a6:f0:09:2e:24:75:f0:e6:b4:6a:
75:1b:fe:65:ba:ca:4f:81:7d:0c:07:5a:3e:d5:3e:
88:71:c3:ad:d0:bd:6c:f0:f2:95:23:fb:1c:d1:8d:
5e:8b:8b:5b:e1:b8:66:80:57:7e:bb:ef:75:c9:73:
53:1c:54:ba:17:ed:4c:2f:53:13:9b:8b:38:0e:77:
e7:1e:7f:c5:f9:75:8c:ef:cc:66:d7:c7:be:40:8f:
6a:bb:6d:a4:62:ef:b4:00:c5:38:f6:94:20:b4:25:
f2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:AB:3C:FF:AB:88:A5:13:42:B8:16:F0:59:01:9F:07:3E:95:00:AA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139680
sbgp-ipAddrBlock: critical
IPv4:
103.143.150.0/23
IPv6:
2405:5640::/32
Signature Algorithm: sha256WithRSAEncryption
27:20:83:73:fd:75:14:b1:01:56:9e:66:75:86:b6:e0:40:cf:
19:f1:ae:28:ae:26:17:07:69:1c:9c:1a:ea:fa:70:dc:25:e4:
96:5b:61:b9:69:69:1b:6b:ca:a5:89:7e:9e:37:1c:4b:7f:e2:
46:06:33:4a:a6:14:cc:7f:ca:94:27:dc:0d:51:e2:1b:80:a0:
d9:9e:a0:c0:42:41:52:c0:46:1c:f8:7a:e6:fb:bb:ad:32:17:
77:7c:5d:6e:db:0e:5c:e9:be:72:c8:06:83:26:f9:16:84:29:
bb:f9:cc:7f:5f:35:8a:1a:6c:0e:fb:f6:da:72:8b:3d:4a:5e:
b7:25:9d:d1:ac:e4:14:e2:98:e6:ea:dc:02:c9:c1:40:37:a6:
34:e2:dd:52:21:a5:a1:73:c6:29:9e:0e:a6:10:63:fb:b7:6b:
ce:ef:b9:d6:99:5d:30:1f:03:6f:a2:c8:9a:57:f3:b1:c8:39:
ca:e5:51:5a:b9:ee:c6:83:b2:3c:8f:68:1b:b3:9f:fe:43:b5:
eb:73:93:ce:87:14:ab:e0:7c:67:bd:3b:07:33:94:dd:ec:9f:
fb:8e:63:ba:7c:21:80:3c:a0:73:dc:41:49:3d:ff:8a:32:0a:
5f:64:aa:7c:fc:27:1b:c0:d4:3a:df:38:f5:c2:bb:29:48:3c:
09:c9:0d:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:00 2024 by rpki-client on console-ams.rpki-client.org