Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer
File: YeT4YWtiQmYakffQErbNHkCTiQs.cer (raw, json)
Hash identifier: FqnZbEnGnXRJrW65MogRsWxbN+PxTahlAjN19ohro+0=
Subject key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E52E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 18 Mar 2024 23:28:38 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 138455
IP: 103.125.222.0/24
IP: 103.141.233.0/24
IP: 203.4.161.0/24
IP: 2001:df7:3300::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 06:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124206 (0x1e52e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 18 23:28:38 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c0:d1:fa:81:58:7b:d6:ce:ff:8c:c5:60:64:
f0:c0:3a:c0:e4:aa:42:da:8e:34:cd:b6:c4:67:3d:
ae:10:aa:34:23:d5:23:39:04:95:70:64:d4:b9:25:
72:21:1e:db:ab:49:86:3c:b1:72:88:ab:43:ff:79:
71:0d:15:d3:31:58:e0:a6:61:63:b7:dd:e6:c1:a7:
a5:e9:d8:d1:d9:d8:1c:50:9c:e5:b3:b9:82:55:a4:
de:d6:df:3f:08:7c:36:6f:cd:85:70:f0:5a:c2:ca:
b6:a3:6c:f2:a2:32:3f:77:7e:d7:67:0e:01:18:ea:
86:fd:75:dc:cf:7b:e7:13:35:c2:1b:1b:03:7a:3c:
48:46:2e:87:25:34:6e:96:67:56:b3:9a:20:8e:38:
d7:fa:8e:82:3a:c6:22:5f:0b:9b:f9:6d:c2:d1:8d:
e4:ad:14:8e:ff:84:e6:56:8a:e1:ed:2d:64:b9:3e:
d2:cc:e4:f1:9a:dd:74:64:d9:1f:36:3d:bb:6f:3a:
8b:ec:eb:e2:76:eb:cd:e9:9d:10:86:e5:7b:d6:b0:
0f:01:4a:af:83:d1:44:2a:15:ee:17:d0:78:37:8b:
6c:cf:44:27:0d:b1:8c:cc:fc:bc:d7:6c:0b:53:c8:
5a:24:d4:55:70:98:00:a4:82:cd:df:09:ea:df:aa:
90:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138455
sbgp-ipAddrBlock: critical
IPv4:
103.125.222.0/24
103.141.233.0/24
203.4.161.0/24
IPv6:
2001:df7:3300::/48
Signature Algorithm: sha256WithRSAEncryption
bc:16:75:0a:ae:7a:51:05:d0:09:7f:e4:66:23:26:79:6f:59:
5a:62:40:6d:79:15:4a:8d:a2:ea:10:dd:39:67:bf:f7:eb:33:
d7:38:e3:cc:9e:6d:16:66:4e:03:12:6c:59:f0:0c:77:f8:43:
f3:f4:f3:79:f5:66:f9:70:8a:1b:b7:49:0c:66:80:e9:6c:e9:
c5:f4:0c:27:cb:79:12:34:32:9f:e2:43:8e:52:90:ce:0e:20:
be:c6:1b:01:da:b7:96:01:11:7b:5a:30:b0:68:68:3d:58:09:
0a:ab:af:83:9d:ed:37:69:a5:ea:bb:49:4a:95:ea:77:54:6a:
87:d8:bd:a5:7d:a5:12:14:25:b7:22:1d:0d:9a:9a:92:b4:2f:
30:64:f3:4b:f6:31:de:39:13:6e:65:c8:ae:51:fb:b3:a8:94:
01:7c:ed:6e:82:9e:e3:52:9b:39:47:c1:c8:cc:56:2c:d9:8b:
82:31:27:d5:22:b3:2c:dc:de:c0:90:5f:09:3d:8d:13:eb:40:
5b:7b:60:14:74:46:a5:9b:b4:a8:b6:0e:60:49:d9:78:8a:6b:
7e:89:ae:0d:5b:49:ba:60:8b:b3:6a:6b:0b:b7:06:ba:49:6d:
e2:32:e1:2b:aa:eb:c5:26:77:de:ef:32:11:f8:bc:b8:ae:50:
27:b3:46:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 08:03:37 2024 by rpki-client on console-ams.rpki-client.org