Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer
File: YOVPYFHttB6nqVCJbNm71nASDWM.cer (raw, json)
Hash identifier: KyM+Jk3hZ1CUjqVaJDIG71Lnrq/NRh/lAlchxRjcbjI=
Subject key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EB31
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 12 Apr 2024 04:24:33 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 151842
IP: 103.224.72.0/24
IP: 2001:df2:fdc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:13:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125745 (0x1eb31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 12 04:24:33 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:90:c2:48:ab:4a:8a:64:16:38:83:ae:89:93:
f5:bc:72:4a:ad:5c:77:56:52:b7:db:1e:1f:b8:5f:
49:a4:c1:3c:ff:ed:0a:5e:8e:72:d6:34:ac:46:b2:
f8:32:34:8b:7b:ba:14:1f:4d:26:5e:d0:e0:39:de:
56:9f:03:fc:cc:c2:6d:99:25:6f:6a:74:b3:65:cf:
cb:e8:48:fa:66:68:45:99:e7:fc:e9:f2:3d:bf:b3:
69:cc:26:7f:94:ba:19:13:3b:04:d7:5f:93:95:fe:
95:50:ad:b8:a4:00:1e:72:06:a4:82:76:d4:9a:d5:
9e:7d:f8:52:ea:b9:49:b0:44:ca:a9:fb:2d:33:f2:
c2:8f:17:1d:ae:d1:0f:df:03:4e:f4:79:08:52:31:
07:69:f2:68:24:8f:3b:b3:d1:cb:cf:26:d0:cf:a3:
db:6c:d4:af:a8:6e:18:ff:64:7e:5d:1c:39:f2:5c:
12:a0:2d:d6:7d:e0:22:d2:ba:cb:6b:47:ad:a2:32:
0c:54:e9:bd:97:68:1f:e6:1d:31:82:e9:d9:96:58:
bc:a5:72:ca:7e:30:25:0a:44:f5:97:f4:6c:d0:09:
11:db:4a:3e:dd:f8:35:c3:04:03:60:b0:a0:80:32:
9f:90:20:54:0e:b0:7d:6e:f3:09:f1:f2:1b:90:01:
a7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151842
sbgp-ipAddrBlock: critical
IPv4:
103.224.72.0/24
IPv6:
2001:df2:fdc0::/48
Signature Algorithm: sha256WithRSAEncryption
03:f4:a9:92:f7:0e:9b:a0:f7:94:f9:83:ad:da:bc:41:89:e4:
30:d4:e7:5e:6a:61:54:78:5c:08:47:e1:25:76:89:05:3f:53:
0d:4f:68:6e:f1:90:70:d8:a7:73:ee:ec:ae:7b:cf:82:c1:b7:
60:84:60:50:c3:f8:07:ae:83:20:f3:4d:b0:94:19:f1:8a:c3:
f9:39:9a:45:b6:82:f2:0f:af:ae:b0:21:06:1b:b3:f6:c8:dc:
22:ae:3f:a6:0d:d5:5c:ab:df:af:41:d5:09:c1:8d:f5:75:b4:
88:22:e6:25:cc:32:8a:21:f1:53:04:a0:01:b4:42:9a:1e:ee:
de:81:c5:76:da:d9:e5:80:18:4c:e2:2a:ce:d2:a0:6d:ad:26:
b4:d7:6e:b2:92:17:6a:78:28:05:70:83:d6:25:f6:33:f0:ab:
04:d3:d2:b8:da:54:35:23:81:24:13:6a:02:fd:66:c7:6f:07:
71:95:5b:ab:85:84:e1:16:cb:66:f3:f5:70:3e:be:8b:e7:b4:
31:7b:e5:9d:9d:56:11:bb:3e:a3:29:80:d4:46:38:2a:c9:c0:
6b:76:96:11:5f:44:db:e5:71:c1:10:7a:d0:15:0c:0a:35:15:
8f:c8:47:6f:ad:6e:23:a8:42:eb:3c:1d:66:52:8f:70:cc:d0:
ae:22:99:05
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 00:53:15 2024 by rpki-client on console-ams.rpki-client.org