Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer
File: aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer (raw, json)
Hash identifier: QNQ8CUydNVcOTX93rQIF1+vfdSl7IrXeGe118W6sb7w=
Subject key identifier: 69:69:C2:0B:86:99:A4:8D:07:2D:4A:30:67:CF:F0:0D:5F:44:7C:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CAFB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Nov 2023 22:37:44 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 139347
IP: 103.157.237.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 23:18:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117499 (0x1cafb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 14 22:37:44 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91C8BEE/serialNumber=6969C20B8699A48D072D4A3067CFF00D5F447C98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:86:a9:53:e8:e7:61:01:f7:eb:f3:0f:25:d5:
d6:f8:a8:65:fc:ab:86:c8:66:da:49:c8:e3:6e:74:
4e:05:7a:9c:65:1e:cd:be:50:d9:3a:cc:42:d6:7a:
c9:3b:4d:b1:69:32:a5:e9:a7:a9:0c:97:b3:93:bf:
03:18:57:6e:22:f2:47:b5:1b:ef:18:f4:ab:53:ab:
b7:da:25:61:c7:e4:86:c4:3a:d6:74:67:30:b1:d4:
2d:cb:eb:b7:35:b4:d5:26:57:ba:6b:88:69:27:66:
6f:3b:8f:c6:5a:86:62:7c:9b:8d:00:b2:d7:43:8d:
24:2b:10:8a:e0:38:87:63:b8:d1:4e:39:9a:be:12:
f8:1e:42:8f:95:5d:6b:b4:a0:fc:92:3d:d3:1b:2b:
6e:7e:5f:5b:5a:50:a8:a2:63:42:7e:f3:8d:a4:96:
a2:8a:fa:e5:08:bb:2b:05:94:18:57:c1:2c:09:37:
ed:7c:08:04:fb:99:b2:6d:45:e6:a0:82:1c:1e:a8:
57:35:c2:da:a3:1f:f0:82:80:23:14:d3:5f:d6:0c:
6e:17:88:ec:a6:75:d8:00:bb:a7:ee:de:f7:17:df:
2e:f2:7d:ac:e6:4a:77:68:98:fb:5e:3f:a1:49:03:
7a:3c:64:4c:f8:e3:87:d2:ef:16:49:82:e8:e1:fc:
da:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:69:C2:0B:86:99:A4:8D:07:2D:4A:30:67:CF:F0:0D:5F:44:7C:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139347
sbgp-ipAddrBlock: critical
IPv4:
103.157.237.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:4c:f8:41:3c:91:80:cc:bb:56:15:4a:e9:e9:98:b3:4b:e6:
46:e5:9e:d5:28:ee:33:ef:e7:37:4a:bd:04:c0:36:85:56:69:
76:42:84:24:73:02:97:dc:16:9c:e5:a6:02:bc:b2:cd:ee:4d:
75:c2:72:16:3f:11:8f:c0:73:9e:76:d2:bd:e1:3a:3f:be:74:
e9:26:61:2c:3c:6f:d9:4c:94:2f:5e:81:16:0d:50:88:69:f0:
f8:f1:31:c6:8f:95:c5:60:2b:21:9f:10:c4:40:7c:b8:7e:f7:
a4:3c:7c:fa:9d:13:bb:59:96:06:b6:62:0a:61:6e:a9:3f:8e:
c2:1d:b4:88:d2:54:ff:38:c2:d3:9d:39:f5:2a:73:b9:b7:e3:
9a:fb:8a:2f:36:74:63:00:a4:30:74:79:b6:7a:f1:ae:12:53:
9b:fe:45:de:a5:d0:1f:fd:87:82:c7:9e:93:5a:a1:e9:55:61:
84:5a:2f:89:d3:88:03:b2:dc:79:2c:6a:c6:ce:de:f7:3b:61:
a9:67:97:18:9f:f2:b5:f8:ab:9c:e8:53:b7:f0:b5:c8:b1:56:
4c:82:82:e0:5c:9c:5f:08:92:ed:2f:86:45:60:ff:42:59:08:
92:c6:6b:45:20:71:e5:a3:35:7e:2e:02:33:15:0f:58:c5:55:
1d:6e:d8:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 00:11:02 2024 by rpki-client on console-fra.rpki-client.org