Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_I1R2lNSEj3a5jdlZPjVaB2ksxw.cer
File: _I1R2lNSEj3a5jdlZPjVaB2ksxw.cer (raw, json)
Hash identifier: V7XvuYCaZJLw5lov2bUMZAYqFzbC0iKz1yKF52/eOHI=
Subject key identifier: FC:8D:51:DA:53:52:12:3D:DA:E6:37:65:64:F8:D5:68:1D:A4:B3:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BB72
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/_I1R2lNSEj3a5jdlZPjVaB2ksxw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Sep 2023 21:03:40 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 135404
IP: 103.154.22.0/23
IP: 2406:5140::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113522 (0x1bb72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 4 21:03:40 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91FCB3B/serialNumber=FC8D51DA5352123DDAE6376564F8D5681DA4B31C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:79:44:aa:73:dd:ff:87:7c:84:c1:a7:33:d9:
6d:28:7a:7d:7b:71:8a:95:79:2a:43:81:e1:c0:3a:
58:e8:9f:79:d5:60:b7:80:f6:6e:5b:ab:99:e5:ef:
d0:cb:9c:19:d7:14:b8:da:97:d4:1e:3e:97:74:2e:
5e:22:ff:ff:c5:61:94:59:aa:e5:c6:27:c8:cb:55:
b8:b9:53:60:51:eb:59:cb:dc:36:dc:81:93:6a:c0:
77:d9:66:c2:11:ee:8a:21:71:04:c2:87:bf:9c:9c:
67:d9:e2:59:2e:b8:a7:3b:94:10:65:d5:ae:5d:59:
57:9c:0c:cd:7f:4f:be:ea:a2:75:b8:6d:3d:d4:ba:
4b:aa:2f:a3:43:8f:ed:66:7d:fd:4e:e4:91:7e:dd:
29:9c:24:32:07:0d:6f:e7:8e:31:c5:11:f2:60:f3:
82:9a:83:16:86:8c:bf:a3:28:07:21:2f:63:26:05:
0c:ad:3b:00:ee:d8:17:23:51:fe:3a:88:f0:15:4b:
22:0a:90:1a:6b:38:22:16:bc:ba:1f:98:f1:85:64:
a6:6f:56:ab:6d:15:f0:25:b9:f0:24:97:16:f9:19:
6a:74:98:18:b8:18:1d:25:02:4e:27:f6:57:80:92:
b0:ce:5c:84:20:19:54:4f:2c:b6:b1:d8:2d:52:fa:
3e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:8D:51:DA:53:52:12:3D:DA:E6:37:65:64:F8:D5:68:1D:A4:B3:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/_I1R2lNSEj3a5jdlZPjVaB2ksxw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135404
sbgp-ipAddrBlock: critical
IPv4:
103.154.22.0/23
IPv6:
2406:5140::/32
Signature Algorithm: sha256WithRSAEncryption
73:cb:26:ba:69:f6:ab:41:ab:28:0f:ac:83:26:85:10:c5:fa:
02:82:8b:8e:91:80:57:75:65:6a:cf:eb:b0:c9:ff:ed:2e:38:
5a:70:9e:c1:62:c6:a5:2d:10:fa:c7:5a:af:45:f0:1c:ba:89:
ff:fe:fc:50:8b:fe:7b:5f:d8:f5:ba:16:d3:8f:1e:6a:3a:a7:
15:cd:6e:0f:ff:15:2a:38:fb:da:fe:8e:8b:b4:b5:dd:16:8a:
c4:dc:26:fb:f5:ea:69:ab:12:51:ab:8d:3a:b2:7e:58:4e:78:
52:28:0d:59:27:df:5f:b2:fb:83:a3:6e:43:1d:a1:27:32:b4:
db:ea:a4:dd:e6:a5:dc:9a:d2:9d:19:bf:47:8c:3d:de:23:7c:
6d:e1:1a:21:0b:e4:d2:bf:e5:b8:5b:36:f5:71:61:7d:90:e3:
2e:0c:d4:16:5b:95:ac:34:56:c9:70:08:5d:96:46:5b:46:f4:
d9:9c:69:79:02:11:83:91:cd:fa:55:5a:82:88:3d:c0:d9:7e:
1e:32:be:d7:a1:81:75:b2:e4:d0:54:0b:1a:d5:ad:ba:93:70:
f1:b9:e1:e7:1b:2a:4c:14:92:8f:9b:36:0c:4f:b9:d2:3e:39:
00:1b:a1:cc:fa:13:2e:e3:96:b8:38:f2:02:e4:f7:9b:0c:03:
c8:20:62:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 12:24:37 2024 by rpki-client on console-ams.rpki-client.org