Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer
File: bOLX0NlZgNdDytSEhphI26Elwps.cer (raw, json)
Hash identifier: 0loFjoyNPBqgBxr6qDpA188MTwaSemogh+sLae/SWKs=
Subject key identifier: 6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C4FB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 19 Oct 2023 07:45:28 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 151969
IP: 103.67.64.0/23
IP: 2001:df3:d40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 08:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115963 (0x1c4fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 19 07:45:28 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9120E98/serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7f:2f:cb:0f:48:c5:3d:9e:dd:27:ff:23:8b:
f6:5c:ee:a2:90:f9:3b:ad:cd:b0:92:09:63:e6:ee:
6c:13:5e:d8:7e:f5:12:1d:29:af:5e:14:ac:ad:af:
fa:54:2c:0f:b5:ac:07:65:64:ba:43:e9:94:d1:62:
ad:e5:14:5d:b0:cc:0a:4e:59:c8:23:23:15:5b:57:
a5:9f:54:2a:0e:6d:b1:30:8e:d4:d2:57:c6:87:e9:
80:77:c8:98:8d:e5:95:7d:02:66:b6:e5:c0:df:52:
87:e3:81:0c:e1:d9:45:22:62:95:72:e3:a8:d7:d0:
8b:e0:82:47:c3:51:0e:11:7d:26:c4:01:6e:ac:2f:
35:97:e8:6f:e5:37:51:e1:94:ac:e5:f4:d8:e0:80:
8f:9c:86:b6:7e:25:60:ef:eb:f9:1e:1b:02:f2:8e:
9d:19:77:7b:fd:2b:d7:f4:24:f2:47:01:54:9e:54:
f1:61:1a:d9:8a:ba:d1:5e:ff:c3:8f:8d:14:51:d2:
a9:0f:cc:23:30:00:da:76:e8:a8:17:91:6d:39:23:
1d:dc:2a:e9:d8:cb:74:0d:cb:f7:79:9d:c3:b6:83:
79:47:88:e6:0a:ed:b6:ae:d0:3b:81:e3:1e:e6:af:
27:93:e4:fa:e9:58:04:49:d7:fe:14:c1:e8:bf:5d:
6d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151969
sbgp-ipAddrBlock: critical
IPv4:
103.67.64.0/23
IPv6:
2001:df3:d40::/48
Signature Algorithm: sha256WithRSAEncryption
7d:71:10:9d:7f:5a:4c:d4:51:1a:5f:92:f5:d9:68:ce:35:c8:
2a:36:2f:d6:f5:42:3c:6c:2a:74:e1:e6:7f:49:fa:3c:da:be:
ff:39:93:11:ae:6f:1a:f4:12:35:85:2f:f1:59:b3:be:9a:cb:
3b:1a:5a:75:0a:45:c5:a8:d9:36:0c:17:65:cb:49:88:7b:ac:
dc:ba:c5:9e:03:cb:73:9b:97:b8:b2:a1:15:ab:89:95:71:28:
59:b6:f6:3d:a8:cd:a3:65:56:59:80:87:34:cf:1d:02:2a:c3:
e1:e6:f9:2a:82:4c:b9:36:21:ea:60:57:89:0b:95:64:26:ff:
ed:e8:cc:ee:6f:59:fe:48:c7:cf:e0:51:25:fb:f6:04:c1:7d:
e1:28:42:ef:3a:d1:49:b8:b9:f4:8b:d2:e4:c3:45:ba:37:97:
05:32:e8:36:d4:fc:dc:cd:13:02:80:59:b7:c1:68:c1:9f:18:
08:df:83:80:27:15:e0:7b:9e:bb:13:e1:db:f1:fa:cb:d1:1c:
9a:83:7b:19:b1:75:87:a6:f3:b7:93:7a:7c:00:fb:b3:d9:f3:
f2:5a:fa:0d:0b:f7:8f:76:08:5b:af:0d:7a:3b:75:f7:6b:00:
fa:d4:5b:cb:3b:f2:27:6c:f9:c6:28:23:bb:9c:87:68:07:f2:
df:27:1a:0a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 08:52:46 2024 by rpki-client on console-fra.rpki-client.org