Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer
File: bPYEPvYahE8I4lOhk9XZRlSWJ50.cer (raw, json)
Hash identifier: XtW2w4woygLywz8My9hvaq/2mhPqNiOQRFQx7K1kjTI=
Subject key identifier: 6C:F6:04:3E:F6:1A:84:4F:08:E2:53:A1:93:D5:D9:46:54:96:27:9D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BEB3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Sep 2023 21:09:22 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 146960
IP: 103.172.74.0/23
IP: 2001:df7:6580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 23:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114355 (0x1beb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 20 21:09:22 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91F3D37/serialNumber=6CF6043EF61A844F08E253A193D5D9465496279D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7f:ab:b6:61:1a:03:66:31:ce:3a:e8:71:f6:
b6:ac:fb:50:48:a1:1e:3e:d5:50:d7:0f:54:05:c3:
99:35:60:99:a1:1f:56:83:15:01:33:7f:e9:7f:f5:
44:cf:54:83:11:58:18:1e:52:f2:ac:d3:b3:27:9f:
05:e4:cf:4d:f4:b3:97:13:e0:66:2e:2e:21:b0:de:
ef:e5:f5:c4:9a:4a:ef:fb:51:7e:19:10:54:c7:68:
71:e1:1c:3d:a3:1e:a9:77:d6:59:76:b8:43:89:ff:
8e:43:aa:8c:c7:2f:17:05:a3:82:63:e7:cf:16:25:
31:ae:d4:d9:12:40:80:94:9c:4d:5f:af:fc:fa:8b:
c9:45:2d:e4:fd:73:e2:74:00:23:a4:a2:11:81:25:
f1:c3:94:b2:e0:e1:6d:2d:fa:72:c5:7b:d3:af:3d:
4d:32:5d:cc:05:c2:74:e6:5c:f8:cc:fd:8b:20:77:
7b:ee:5e:66:97:c9:95:a8:30:2f:e6:be:4e:55:4b:
17:3e:4f:1d:0e:a2:4c:fb:a6:b7:5f:0e:69:3f:e1:
76:10:b4:78:0a:55:16:fd:32:48:11:fe:3d:11:ab:
33:09:aa:6d:59:e8:a2:28:75:83:9b:b1:86:4a:68:
0c:01:d0:3d:bd:6b:a8:16:38:28:5e:68:3b:ad:9e:
3e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F6:04:3E:F6:1A:84:4F:08:E2:53:A1:93:D5:D9:46:54:96:27:9D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
146960
sbgp-ipAddrBlock: critical
IPv4:
103.172.74.0/23
IPv6:
2001:df7:6580::/48
Signature Algorithm: sha256WithRSAEncryption
27:88:48:af:ff:cd:7d:fe:f0:15:a1:ee:d3:da:41:f2:25:5b:
49:32:10:d1:2a:59:c3:f4:83:fa:9a:c9:0f:9a:bd:69:cf:ca:
bf:7d:70:10:ec:a7:70:2c:65:c0:70:99:6f:a6:4d:3f:b7:b9:
63:24:fb:d3:1f:83:e9:6b:bf:80:29:cc:71:f7:80:08:f8:62:
a6:52:2d:ce:d5:bb:90:a5:80:6e:08:53:e6:de:7e:b7:67:f5:
c9:85:48:4f:af:fc:0f:a8:57:a9:32:d6:9e:4b:e1:4f:1e:15:
a2:00:3f:d7:ca:84:bf:58:05:8f:f6:b0:de:e7:f0:e5:55:70:
c4:d9:2b:a4:e6:19:ef:a2:9f:e2:cb:4e:cd:6d:dd:ec:fe:8f:
ca:be:73:bf:d9:a2:f1:73:e2:96:be:9f:0e:c6:f4:f7:ee:fa:
08:6a:ff:66:82:04:a2:22:14:1a:bf:63:74:ce:9f:32:9e:9b:
20:5a:1c:8d:42:04:7d:ed:fc:89:af:f3:03:48:a4:84:a7:52:
11:4d:8b:cf:37:1a:50:a0:f3:24:57:cc:65:44:e0:49:c0:9d:
2a:18:4b:e2:61:2f:60:de:e8:54:a7:95:2f:bd:df:a1:b4:3b:
04:82:02:c6:ad:ab:ce:27:9c:ea:da:cc:b2:9c:b2:f3:2c:f7:
38:d3:8d:b9
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 20 01:03:04 2024 by rpki-client on console-fra.rpki-client.org