Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b7CqV86Epc0prEfZ19CJSOsh8Go.cer
File: b7CqV86Epc0prEfZ19CJSOsh8Go.cer (raw, json)
Hash identifier: RGp164dbMIaMi4gBucibzCMgvktMIZHGz8oLQvLSFJo=
Subject key identifier: 6F:B0:AA:57:CE:84:A5:CD:29:AC:47:D9:D7:D0:89:48:EB:21:F0:6A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D307
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C6861/5CC21000254C11EAB702D41BC4F9AE02/b7CqV86Epc0prEfZ19CJSOsh8Go.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C6861/5CC21000254C11EAB702D41BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 19 Dec 2023 21:26:21 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 64063
IP: 103.200.92.0/22
IP: 2407:3380::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 14:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119559 (0x1d307)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 19 21:26:21 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91C6861/serialNumber=6FB0AA57CE84A5CD29AC47D9D7D08948EB21F06A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8d:40:30:54:5f:b1:18:53:c4:eb:33:0d:8e:
e6:86:8b:88:6c:f6:6b:cc:dd:f5:1d:51:4c:75:89:
73:6d:b7:f5:16:b3:b3:1e:c4:0e:0d:fd:a3:1d:4c:
3e:e2:84:6c:60:31:c1:51:8a:a0:18:f7:a5:25:55:
47:53:92:fc:5b:ea:be:e7:0d:72:68:3b:f3:b1:95:
e3:1e:f0:f7:5d:ba:a9:11:2e:20:89:3b:ae:4b:eb:
18:b8:54:f0:6a:91:2f:c9:e9:3f:09:2c:a9:78:96:
b3:10:c5:94:d2:c3:6e:f5:b2:e9:14:09:b6:4a:86:
3a:51:e4:2b:7d:6f:b8:69:ad:9f:02:58:f4:e6:49:
5c:f4:13:ce:9e:f0:43:0c:0a:d1:af:78:36:1b:2d:
ed:7e:0f:53:7c:95:ac:d6:d3:7b:ff:eb:75:2f:a7:
f0:96:78:4a:f4:cf:fa:e5:af:75:36:b2:02:10:2e:
08:7f:b0:73:3f:51:7d:32:61:08:b5:a6:c0:cb:72:
93:fc:b8:37:d8:35:fd:8d:2d:4e:19:ec:8e:fd:2f:
6b:ae:d0:08:67:6a:9d:5a:8d:f3:01:71:5c:73:8a:
5c:d3:fa:b0:61:0a:e4:96:95:54:ba:6d:86:aa:3b:
94:07:ac:a0:4f:a7:79:0d:20:8e:ed:17:ab:c8:98:
30:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B0:AA:57:CE:84:A5:CD:29:AC:47:D9:D7:D0:89:48:EB:21:F0:6A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C6861/5CC21000254C11EAB702D41BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C6861/5CC21000254C11EAB702D41BC4F9AE02/b7CqV86Epc0prEfZ19CJSOsh8Go.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
64063
sbgp-ipAddrBlock: critical
IPv4:
103.200.92.0/22
IPv6:
2407:3380::/32
Signature Algorithm: sha256WithRSAEncryption
11:25:9b:59:7a:6b:3b:b9:f9:6b:37:f1:e4:a8:7a:53:a5:e3:
bb:cf:e2:20:47:5a:b2:7e:33:e5:a9:78:30:15:c2:f6:56:89:
07:82:19:15:f6:10:20:a4:c4:14:6f:cc:88:54:7b:bd:12:08:
8b:01:96:7c:da:17:f5:16:e9:be:0f:50:84:99:96:f0:27:62:
07:6a:69:89:78:a0:e9:11:bf:c6:e3:1f:62:58:83:a0:8e:8d:
7d:7d:34:92:a5:e2:41:33:71:66:e7:59:71:a3:ad:30:8f:5f:
87:cb:a2:31:ca:03:46:d3:ae:38:37:78:cc:36:7b:0e:74:8f:
50:f9:66:86:65:b3:7b:e9:72:32:32:42:9d:68:1c:6b:c2:99:
ba:07:e1:35:67:d5:d6:61:a1:de:4f:2f:f0:2c:a0:d1:a2:b8:
41:6f:b5:bf:b7:c3:77:06:4b:92:0f:6b:60:1b:bd:96:8e:40:
a3:ef:96:85:24:08:0d:14:c9:5c:4c:b0:ed:ee:04:69:02:14:
61:d0:b2:f4:cf:a6:1b:a3:cb:48:c1:12:5f:0e:3a:3a:84:ba:
da:06:88:2b:42:d2:ed:75:43:f2:a5:37:4d:15:5d:70:8e:fc:
9a:4f:25:0a:33:50:77:a7:42:75:f2:4e:13:ec:2a:be:7b:b7:
7a:c7:74:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 16:13:18 2024 by rpki-client on console-ams.rpki-client.org