Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoO-mzHSkDa5Z7_3t-cbrdUppk4.cer
File: YoO-mzHSkDa5Z7_3t-cbrdUppk4.cer (raw, json)
Hash identifier: P9+o3lWi5aMMa2FhJkW3rwucaU/f1j8lQxmfVuYTnS0=
Subject key identifier: 62:83:BE:9B:31:D2:90:36:B9:67:BF:F7:B7:E7:1B:AD:D5:29:A6:4E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0202D2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/YoO-mzHSkDa5Z7_3t-cbrdUppk4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jul 2024 06:05:35 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 45447
IP: 103.22.144.0/22
IP: 2401:3900::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131794 (0x202d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 29 06:05:35 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9126996/serialNumber=6283BE9B31D29036B967BFF7B7E71BADD529A64E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a7:b9:84:29:92:2c:21:2a:ee:6b:e4:a3:90:
04:26:db:38:f3:68:95:d9:9b:69:d1:79:ea:32:eb:
56:c3:e1:5c:69:ff:72:7f:7e:8f:6b:a9:72:24:3f:
40:01:a8:49:ff:1b:27:4c:4e:99:6a:73:6b:d6:78:
8d:73:03:f0:f7:43:84:62:7e:75:b0:7e:4f:bc:a1:
4a:84:2a:26:04:ab:9d:8c:ab:0c:5f:22:70:f8:0e:
b5:bf:2a:42:10:1a:94:48:65:2c:6e:c3:73:ca:a6:
ba:c9:c6:90:a8:fb:a3:1d:31:c2:c9:93:3e:c2:30:
64:43:49:e8:c5:2f:ba:64:b8:f1:16:c9:92:48:62:
9c:6b:71:c6:38:7e:3e:bb:17:a1:0b:f2:6e:70:dc:
5e:e4:cb:8d:e6:f0:d5:69:a5:84:4c:93:85:51:32:
a7:eb:d7:58:4f:bb:11:34:1e:92:2a:a4:de:b8:7b:
72:1c:57:12:df:45:93:81:7c:60:c1:71:dc:50:22:
97:bf:73:4c:d2:43:dc:cc:d6:83:5c:c8:77:ca:e4:
01:43:32:a5:7f:7c:5f:8e:38:1a:39:1a:52:d6:7c:
35:0c:8a:9a:df:3b:5b:8a:10:93:d0:f8:03:8f:07:
46:fa:73:74:b4:35:56:e0:4a:3b:55:b5:c7:72:1f:
2a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:83:BE:9B:31:D2:90:36:B9:67:BF:F7:B7:E7:1B:AD:D5:29:A6:4E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/YoO-mzHSkDa5Z7_3t-cbrdUppk4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45447
sbgp-ipAddrBlock: critical
IPv4:
103.22.144.0/22
IPv6:
2401:3900::/32
Signature Algorithm: sha256WithRSAEncryption
cc:f8:2c:39:1a:ca:55:e1:51:11:11:1d:f6:4d:fb:df:45:bb:
b2:84:58:3c:14:96:02:0e:d5:d3:22:98:0e:5d:d7:56:60:3f:
2d:17:c4:97:42:3a:4d:83:cc:cf:3d:9b:c6:97:11:b6:85:2d:
a1:a7:7e:b2:46:71:29:4d:67:4b:6f:d9:f1:3d:1d:55:96:42:
a5:6b:6d:53:14:e5:fa:71:d4:46:a6:c4:ec:3a:08:6d:c5:43:
11:da:97:e3:21:10:67:92:b1:0c:f9:89:0f:04:c8:af:89:da:
dd:09:11:55:60:02:50:b6:ec:23:dd:3a:92:48:ef:73:ab:f6:
45:8a:5f:6e:0d:d0:ce:a9:c3:e1:ca:0d:84:fe:4b:5d:a9:e3:
16:3b:7e:47:2d:61:aa:ce:a9:b0:fb:03:aa:b7:2d:03:0d:12:
bf:a3:ce:8d:fc:7a:88:04:ba:44:33:54:a3:c0:03:1e:65:31:
48:74:4f:ae:a3:1f:f0:15:52:87:fa:25:b8:a2:81:a2:ae:b5:
e0:32:55:be:bf:71:35:f6:26:5a:88:72:19:c8:68:a1:7f:1f:
41:41:85:a9:b7:6d:83:13:2c:17:98:60:23:08:e2:76:8d:df:
50:e0:68:00:fe:d5:47:fc:e6:ee:1d:21:ab:1b:1b:98:50:9b:
05:dd:fa:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:47 2024 by rpki-client on console-fra.rpki-client.org