Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z15jpMF4xvVmAmQCRHJGTrmOG10.cer
File: Z15jpMF4xvVmAmQCRHJGTrmOG10.cer (raw, json)
Hash identifier: d5PEgS/HkN7sipr3j9/HtVYEuibOJ+OV8OzakB9OrAw=
Subject key identifier: 67:5E:63:A4:C1:78:C6:F5:66:02:64:02:44:72:46:4E:B9:8E:1B:5D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C5D6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B01FF/B8C1E7D4412111ECAC525483C4F9AE02/Z15jpMF4xvVmAmQCRHJGTrmOG10.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B01FF/B8C1E7D4412111ECAC525483C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 24 Oct 2023 17:39:02 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 141151
IP: 103.155.100.0/23
IP: 2001:df4:c180::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116182 (0x1c5d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 24 17:39:02 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91B01FF/serialNumber=675E63A4C178C6F5660264024472464EB98E1B5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:71:37:22:ba:63:75:6b:88:df:05:ae:d2:58:
f1:c8:b1:7f:68:f9:8c:ea:b4:d6:ac:bc:93:c2:cc:
62:b5:bb:55:e0:1b:a5:0d:93:03:ce:ce:40:12:e8:
95:28:96:2c:83:6c:23:c2:11:9f:1c:52:e6:a2:4f:
d4:30:81:c3:ca:55:9e:29:c7:15:0c:d8:51:15:54:
7a:b6:55:42:5a:f1:b0:29:e5:97:92:71:73:27:f1:
b5:a1:10:8d:af:a5:58:aa:64:75:b6:26:0b:85:50:
c3:90:fa:b6:22:2f:57:a0:12:f2:d6:5d:94:8d:b4:
ac:e2:3e:48:39:73:cf:b2:1e:c9:9a:50:90:cd:4c:
a5:f8:38:14:a0:2a:2a:e2:5a:a2:29:88:cb:3b:90:
d4:f8:0d:90:be:bc:d6:ca:4b:d4:36:ab:c9:cb:d5:
0b:95:45:f6:78:fb:08:3d:83:59:7f:1c:c1:13:e6:
cc:39:86:02:ff:d2:30:89:fd:a7:5d:24:60:c6:9d:
46:2a:3c:68:88:0a:54:2f:57:a8:39:16:49:df:c2:
20:b5:49:6b:3b:90:48:87:bd:db:ab:f8:c6:f4:c5:
26:c0:dc:39:c2:15:f4:48:85:1f:b3:cd:3e:77:c9:
13:0a:d1:63:a8:9e:1a:38:87:37:26:e1:b6:49:2c:
a3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:5E:63:A4:C1:78:C6:F5:66:02:64:02:44:72:46:4E:B9:8E:1B:5D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B01FF/B8C1E7D4412111ECAC525483C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B01FF/B8C1E7D4412111ECAC525483C4F9AE02/Z15jpMF4xvVmAmQCRHJGTrmOG10.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141151
sbgp-ipAddrBlock: critical
IPv4:
103.155.100.0/23
IPv6:
2001:df4:c180::/48
Signature Algorithm: sha256WithRSAEncryption
6d:3e:05:60:62:d8:b6:b9:a8:c4:f4:cf:34:95:6c:68:02:a3:
d6:c4:21:41:f9:62:e6:b9:0f:a0:78:df:0e:86:e5:cd:40:0a:
79:1f:fa:ab:7b:44:24:ea:22:9b:8e:62:bf:c6:99:0d:ef:42:
7e:ed:bc:9d:37:43:46:66:19:fb:3a:12:37:80:05:67:61:fa:
cb:da:e0:c6:e2:db:bd:41:07:28:a7:f0:06:b8:d5:38:9b:fb:
63:34:2a:2a:72:74:e6:c3:00:57:e2:f0:00:8b:10:17:b0:02:
56:3e:2b:85:ef:31:80:e5:ef:d6:56:f5:03:3d:0c:de:d8:30:
bc:dc:e2:93:df:f3:bd:25:bb:95:6e:5e:55:b1:8e:18:3d:d4:
6d:57:c1:25:85:b0:d3:bc:b1:4c:9b:3f:bc:a6:83:e5:23:4e:
5a:1c:56:4a:c7:33:ea:89:94:41:9b:8b:8c:ea:fd:86:af:72:
27:90:5b:7a:4e:0d:2f:71:aa:9e:ee:f1:a6:70:03:69:7a:04:
fb:c7:e7:e4:d2:09:ce:15:77:6e:ea:8a:66:4c:f5:0e:b9:17:
d6:39:cb:80:77:0b:d2:c5:f5:cf:46:fa:59:f6:47:7e:6a:4c:
fc:e6:a6:1c:a6:95:35:6f:49:14:ad:3d:ee:16:9c:07:dd:24:
13:a8:d7:01
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:57 2024 by rpki-client on console-fra.rpki-client.org