Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Hs5T4-cv5zdIJPCcm3f6RP6qc4.cer
File: _Hs5T4-cv5zdIJPCcm3f6RP6qc4.cer (raw, json)
Hash identifier: mAd1U/4PwFvqsQoIUqGTLsAr52RRjnqMu2N+43vpC74=
Subject key identifier: FC:7B:39:4F:8F:9C:BF:9C:DD:20:93:C2:72:6D:DF:E9:13:FA:A9:CE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BFED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/_Hs5T4-cv5zdIJPCcm3f6RP6qc4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 Sep 2023 22:05:07 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 134573
IP: 103.120.230.0/23
IP: 2001:df6:2500::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 23:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114669 (0x1bfed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 26 22:05:07 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91D2A6D/serialNumber=FC7B394F8F9CBF9CDD2093C2726DDFE913FAA9CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a0:3f:34:5f:74:a4:48:a6:01:b6:da:d2:48:
78:ba:23:49:80:e3:ea:1f:c9:91:f2:63:2a:f2:1c:
d9:7f:ab:c2:44:49:4e:9c:7c:88:ae:b4:25:12:b9:
0f:e3:d6:ea:b2:d1:ab:61:2b:c4:15:c2:a4:1c:f4:
dc:37:3c:c0:bf:61:74:fb:02:cc:20:a8:ae:d4:1c:
2f:e7:83:7a:04:9a:68:03:9d:70:f7:a6:d5:6f:38:
48:f4:c4:70:b2:cf:d1:10:9b:ad:7f:81:81:6f:84:
4d:9d:9d:08:79:66:ba:a5:26:41:36:27:6e:1c:d8:
a7:c3:c3:de:5c:d3:e1:03:08:eb:4d:b3:c4:f4:39:
46:e6:c1:a7:e0:20:f2:1c:fb:6e:f8:d0:70:2a:1a:
0a:7d:a8:d0:18:79:5e:cb:02:b7:3c:89:5a:66:1a:
3d:58:ab:75:87:e4:69:6c:b3:9c:6d:6c:04:35:74:
94:66:90:01:0e:75:b2:d3:58:8e:4f:ff:26:ee:6f:
fe:74:dc:60:03:b6:3f:6a:4e:fc:6e:01:0d:3b:a4:
6a:16:08:95:cc:98:88:b5:e1:0e:a7:ed:fb:f6:56:
46:dc:19:a6:c6:fb:ae:99:fb:09:32:cf:9b:c9:02:
ee:09:de:83:04:44:48:72:39:35:55:c5:4c:3f:3d:
75:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:7B:39:4F:8F:9C:BF:9C:DD:20:93:C2:72:6D:DF:E9:13:FA:A9:CE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/_Hs5T4-cv5zdIJPCcm3f6RP6qc4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134573
sbgp-ipAddrBlock: critical
IPv4:
103.120.230.0/23
IPv6:
2001:df6:2500::/48
Signature Algorithm: sha256WithRSAEncryption
51:92:4d:80:66:83:e9:d0:fa:6d:aa:fb:9a:29:db:84:e5:1e:
67:25:a8:f7:07:e9:81:23:11:d4:a7:f6:25:9c:7f:6d:12:b3:
32:44:c8:e8:3f:12:47:1e:94:fa:14:78:69:a3:b2:7e:6a:99:
65:fe:49:b9:8f:78:06:c8:1a:57:e1:40:f9:ed:14:61:19:e6:
6e:e4:fc:96:29:e1:58:37:3a:c6:f4:c9:2c:f7:65:4c:e2:09:
8a:67:db:85:39:e4:a5:43:3c:90:d3:a1:48:81:08:09:ba:f3:
0d:3f:ce:ce:aa:38:c5:42:50:61:f9:22:00:1d:0c:a9:0c:19:
70:46:ab:d5:d6:33:59:17:a5:08:31:0c:54:55:4d:e4:db:f7:
02:a5:6d:34:b1:45:14:74:b2:9d:93:9f:57:60:35:1a:b0:ef:
04:6c:98:35:53:87:17:ad:ca:52:d4:3c:90:57:50:32:f5:aa:
8d:1a:67:3e:f2:16:f3:b3:47:0f:85:5f:b4:52:56:ba:38:33:
14:f1:29:76:99:6e:eb:db:30:79:e1:98:45:fe:15:41:40:4e:
f1:9a:d5:f4:07:55:6e:6e:01:42:08:ef:dd:a0:05:8c:bd:3b:
88:d0:fd:c7:1a:c0:cb:4a:b7:5d:6a:2d:e0:f1:82:37:3b:3d:
81:b8:d2:b8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 20 01:10:22 2024 by rpki-client on console-ams.rpki-client.org