Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoO-mzHSkDa5Z7_3t-cbrdUppk4.cer
File: YoO-mzHSkDa5Z7_3t-cbrdUppk4.cer (raw, json)
Hash identifier: kabVioiFhACX0ODingk3lpVV1M9ioZydOzf2f5hxon0=
Subject key identifier: 62:83:BE:9B:31:D2:90:36:B9:67:BF:F7:B7:E7:1B:AD:D5:29:A6:4E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C615
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/YoO-mzHSkDa5Z7_3t-cbrdUppk4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 26 Oct 2023 00:10:36 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 45447
IP: 103.22.144.0/22
IP: 2401:3900::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 20:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116245 (0x1c615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 26 00:10:36 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9126996/serialNumber=6283BE9B31D29036B967BFF7B7E71BADD529A64E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a7:b9:84:29:92:2c:21:2a:ee:6b:e4:a3:90:
04:26:db:38:f3:68:95:d9:9b:69:d1:79:ea:32:eb:
56:c3:e1:5c:69:ff:72:7f:7e:8f:6b:a9:72:24:3f:
40:01:a8:49:ff:1b:27:4c:4e:99:6a:73:6b:d6:78:
8d:73:03:f0:f7:43:84:62:7e:75:b0:7e:4f:bc:a1:
4a:84:2a:26:04:ab:9d:8c:ab:0c:5f:22:70:f8:0e:
b5:bf:2a:42:10:1a:94:48:65:2c:6e:c3:73:ca:a6:
ba:c9:c6:90:a8:fb:a3:1d:31:c2:c9:93:3e:c2:30:
64:43:49:e8:c5:2f:ba:64:b8:f1:16:c9:92:48:62:
9c:6b:71:c6:38:7e:3e:bb:17:a1:0b:f2:6e:70:dc:
5e:e4:cb:8d:e6:f0:d5:69:a5:84:4c:93:85:51:32:
a7:eb:d7:58:4f:bb:11:34:1e:92:2a:a4:de:b8:7b:
72:1c:57:12:df:45:93:81:7c:60:c1:71:dc:50:22:
97:bf:73:4c:d2:43:dc:cc:d6:83:5c:c8:77:ca:e4:
01:43:32:a5:7f:7c:5f:8e:38:1a:39:1a:52:d6:7c:
35:0c:8a:9a:df:3b:5b:8a:10:93:d0:f8:03:8f:07:
46:fa:73:74:b4:35:56:e0:4a:3b:55:b5:c7:72:1f:
2a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:83:BE:9B:31:D2:90:36:B9:67:BF:F7:B7:E7:1B:AD:D5:29:A6:4E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/YoO-mzHSkDa5Z7_3t-cbrdUppk4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45447
sbgp-ipAddrBlock: critical
IPv4:
103.22.144.0/22
IPv6:
2401:3900::/32
Signature Algorithm: sha256WithRSAEncryption
1d:ab:54:5b:29:ed:3d:8f:44:03:45:b5:b2:11:ae:12:03:c6:
41:eb:51:b5:b8:8f:44:c4:ee:e1:1b:86:4f:64:32:13:34:d1:
53:3a:2f:54:a2:b3:7b:21:ca:50:c0:57:cc:70:0c:68:73:2b:
56:95:b3:fe:35:b6:a7:d6:56:68:8d:b7:9f:dd:4f:26:e5:f2:
8a:dc:53:48:f6:dc:55:c3:1a:40:a9:bb:6e:ee:f2:49:58:8b:
29:8d:c2:57:d1:4c:19:8b:22:e9:5b:ee:c2:9f:e8:6e:51:e3:
29:7e:63:85:4a:64:82:6b:f4:a0:a6:13:3d:33:73:69:b8:93:
e6:b3:87:7a:18:a4:b1:af:c6:63:41:fb:66:78:5e:a9:47:c2:
98:fa:7e:43:50:90:1c:4a:c2:2f:d2:66:cc:9c:5a:2b:5f:db:
af:ef:e3:19:8e:03:f4:c2:15:44:ac:92:8b:63:52:be:e0:d9:
cf:17:32:4a:03:a4:9c:98:d8:52:fe:09:b5:37:5a:62:6e:e9:
9e:70:ec:ee:12:e2:63:d0:b2:53:28:a4:30:d6:a6:c7:00:fb:
42:db:a5:07:2e:09:ab:99:87:0e:30:72:c5:7c:f7:ae:e1:43:
6a:52:31:9f:f4:d2:d6:04:ea:55:53:57:1f:78:31:7f:1c:62:
d7:e2:4b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 22:08:19 2024 by rpki-client on console-fra.rpki-client.org