Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer
File: YbAiM19NheFtR3oAatyOPy_alGA.cer (raw, json)
Hash identifier: KfkC76iEuO1aRKL/cUSoVK21mRNwI1ilv22JKOTbyTM=
Subject key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020E00
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 17 Sep 2024 17:34:45 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 142646
IP: 103.171.180.0/23
IP: 2407:c740::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134656 (0x20e00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Sep 17 17:34:45 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91A7C77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:87:91:bb:b0:ec:5a:ce:c1:2f:90:bc:57:d4:
67:58:e9:22:9a:2e:be:d5:2c:70:0d:99:a4:6c:ac:
94:3c:36:9d:39:fe:cc:3e:86:bd:0d:a8:de:dc:a1:
d3:2c:99:5f:9c:f1:f9:15:9e:33:e0:9b:07:03:f9:
9c:d2:43:ce:9a:dd:71:4a:5a:cd:ea:ed:59:a7:56:
01:2c:ef:7b:49:05:03:86:f8:04:5f:a9:95:bd:4d:
42:10:fd:a9:15:ad:b4:6b:5d:6e:21:ed:78:ca:3e:
24:b2:23:5e:5f:4e:41:5f:0a:7f:f0:7b:c2:66:03:
1f:c1:aa:9f:d7:17:2d:34:ac:79:06:8a:8a:23:af:
a5:45:ab:35:db:dd:2d:26:a9:cb:da:36:65:19:86:
a8:46:35:58:9f:dc:6a:d6:2b:06:f2:27:60:3b:67:
5b:b6:f3:8a:6a:b0:ff:b2:40:90:f4:72:5b:89:3c:
74:ef:6a:ff:7b:80:e7:fa:23:c2:af:af:82:0a:88:
2f:30:34:1f:99:dc:99:eb:ea:c2:6f:95:7d:e0:79:
f7:fb:75:f2:69:42:e1:7d:f3:3d:3f:7e:f7:b6:49:
07:a2:e7:08:b1:5e:de:66:fb:a4:a4:11:5e:e4:8e:
76:2a:c4:41:8e:a7:2c:b7:1d:0b:7b:32:a3:3a:62:
23:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142646
sbgp-ipAddrBlock: critical
IPv4:
103.171.180.0/23
IPv6:
2407:c740::/32
Signature Algorithm: sha256WithRSAEncryption
1f:dc:7d:0e:bf:ea:b4:ac:58:97:b3:5b:d0:a3:18:78:60:c0:
0d:75:10:69:88:a8:9a:14:f4:c9:75:6b:e7:54:1a:c8:67:54:
2e:53:76:ce:25:08:ad:2d:ec:1d:35:11:75:bc:53:0e:44:09:
d8:64:d5:bf:65:dc:cb:89:75:71:85:36:4d:7b:d0:c1:eb:cf:
1d:f5:96:ed:de:44:2e:31:c6:8a:a0:56:0c:7b:44:38:73:49:
18:a7:c4:ff:05:0b:b8:d2:75:f1:f5:58:1f:92:cf:b1:c7:ab:
9a:6b:93:53:d9:4c:6b:e3:9f:25:5d:e6:44:87:87:43:4f:5a:
82:68:07:9b:84:46:a7:e1:b7:a7:89:13:6f:de:9a:33:10:4f:
b3:e4:4a:9d:4d:5e:64:5f:07:4c:cb:71:f3:dc:5b:1b:f8:57:
ea:7c:e7:93:94:11:f8:7c:29:5b:2c:6d:f3:ca:36:f2:70:ae:
e1:5c:cf:1b:70:ad:ce:e1:bc:46:03:8d:4a:47:3a:5a:3b:a5:
6a:ab:6e:d6:7f:43:f4:e2:5e:7e:f6:cb:6c:9c:c7:09:55:b4:
3b:a5:a0:3b:d8:fa:d0:82:f4:14:58:ad:7a:86:a6:64:2e:e1:
77:82:a9:97:f2:69:6a:3a:5e:7d:0c:f3:ce:21:25:b1:2b:74:
83:0d:d0:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:09 2025 by rpki-client