Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Hs5T4-cv5zdIJPCcm3f6RP6qc4.cer
File: _Hs5T4-cv5zdIJPCcm3f6RP6qc4.cer (raw, json)
Hash identifier: q47MwbvHbV304EE5HlOZK3+VqbGhxR11vpqVIVwAmtY=
Subject key identifier: FC:7B:39:4F:8F:9C:BF:9C:DD:20:93:C2:72:6D:DF:E9:13:FA:A9:CE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020B7B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/_Hs5T4-cv5zdIJPCcm3f6RP6qc4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Sep 2024 03:31:03 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 134573
IP: 103.120.230.0/23
IP: 2001:df6:2500::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134011 (0x20b7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 3 03:31:03 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91D2A6D/serialNumber=FC7B394F8F9CBF9CDD2093C2726DDFE913FAA9CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a0:3f:34:5f:74:a4:48:a6:01:b6:da:d2:48:
78:ba:23:49:80:e3:ea:1f:c9:91:f2:63:2a:f2:1c:
d9:7f:ab:c2:44:49:4e:9c:7c:88:ae:b4:25:12:b9:
0f:e3:d6:ea:b2:d1:ab:61:2b:c4:15:c2:a4:1c:f4:
dc:37:3c:c0:bf:61:74:fb:02:cc:20:a8:ae:d4:1c:
2f:e7:83:7a:04:9a:68:03:9d:70:f7:a6:d5:6f:38:
48:f4:c4:70:b2:cf:d1:10:9b:ad:7f:81:81:6f:84:
4d:9d:9d:08:79:66:ba:a5:26:41:36:27:6e:1c:d8:
a7:c3:c3:de:5c:d3:e1:03:08:eb:4d:b3:c4:f4:39:
46:e6:c1:a7:e0:20:f2:1c:fb:6e:f8:d0:70:2a:1a:
0a:7d:a8:d0:18:79:5e:cb:02:b7:3c:89:5a:66:1a:
3d:58:ab:75:87:e4:69:6c:b3:9c:6d:6c:04:35:74:
94:66:90:01:0e:75:b2:d3:58:8e:4f:ff:26:ee:6f:
fe:74:dc:60:03:b6:3f:6a:4e:fc:6e:01:0d:3b:a4:
6a:16:08:95:cc:98:88:b5:e1:0e:a7:ed:fb:f6:56:
46:dc:19:a6:c6:fb:ae:99:fb:09:32:cf:9b:c9:02:
ee:09:de:83:04:44:48:72:39:35:55:c5:4c:3f:3d:
75:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:7B:39:4F:8F:9C:BF:9C:DD:20:93:C2:72:6D:DF:E9:13:FA:A9:CE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/_Hs5T4-cv5zdIJPCcm3f6RP6qc4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134573
sbgp-ipAddrBlock: critical
IPv4:
103.120.230.0/23
IPv6:
2001:df6:2500::/48
Signature Algorithm: sha256WithRSAEncryption
9e:42:3c:da:ce:84:ea:7b:0f:1e:8a:55:cd:88:89:c4:56:3c:
8d:94:29:a2:26:dd:13:ab:35:12:f7:50:0d:b8:21:bc:ad:90:
f7:87:a7:dd:77:3c:5c:01:ef:06:d5:e1:dd:a9:ab:9e:5d:e9:
68:67:3e:c4:ba:0e:9d:b3:e0:10:1b:c5:d0:f6:aa:b9:47:92:
d5:d2:b8:d9:32:17:cd:a9:7a:54:df:4e:24:a0:66:9d:28:57:
b6:f0:49:4e:0a:e4:cc:e6:54:e2:8b:b5:17:91:7f:15:7f:b3:
e8:98:29:9d:20:17:b6:19:57:c3:00:a6:60:6b:4f:c5:1d:b7:
d4:5a:66:72:40:71:71:b1:b7:a2:57:80:86:ba:64:e0:dd:62:
9e:c9:52:c4:73:fa:d6:be:9c:88:68:24:d7:fa:ae:b7:4b:ad:
df:1e:d7:4c:87:01:4d:9d:46:0d:c9:10:93:dd:ab:21:a7:b0:
2e:67:83:1e:24:68:e4:ef:d3:64:09:d6:35:04:c0:cc:06:96:
4c:ca:f1:c0:33:fd:39:01:71:e4:7c:de:e8:09:9a:fd:77:c5:
39:8d:a4:95:27:fd:25:bc:bd:d5:d3:da:3f:4d:d4:7c:c4:fb:
42:03:4f:c3:9d:f4:ef:c0:02:18:cc:be:fc:41:a0:e2:b0:60:
6a:d8:f3:f5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:47 2024 by rpki-client on console-ams.rpki-client.org