Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bWlDJ6eLD158LQx0Y3dIHe3doAI.cer
File: bWlDJ6eLD158LQx0Y3dIHe3doAI.cer (raw, json)
Hash identifier: etZEMZo1JC7MMI8lD+oN1Ay/ri+xJ1KZIMHnZ94jwyI=
Subject key identifier: 6D:69:43:27:A7:8B:0F:5E:7C:2D:0C:74:63:77:48:1D:ED:DD:A0:02
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EA77
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/bWlDJ6eLD158LQx0Y3dIHe3doAI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 08 Apr 2024 16:36:18 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 151184
IP: 103.131.58.0/23
IP: 2001:df2:4140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125559 (0x1ea77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 8 16:36:18 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9186392/serialNumber=6D694327A78B0F5E7C2D0C746377481DEDDDA002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:34:52:32:fb:95:46:8a:32:23:15:fa:28:c4:
16:63:dc:b0:f7:64:ee:5e:12:9b:09:d0:ab:a2:72:
05:cf:20:f1:91:fd:13:4a:ac:30:12:00:ca:06:5d:
65:1b:ba:49:46:7a:ec:98:79:a8:b4:68:14:1d:f7:
51:d5:be:8b:22:22:bc:62:df:ac:77:28:cf:59:33:
50:66:37:e4:c0:74:55:db:ea:97:cc:b2:10:62:7a:
be:67:f2:18:70:35:39:79:40:ba:9f:07:65:fe:92:
8c:79:6a:c2:a1:ad:04:d4:1b:e7:20:ae:8e:07:4b:
27:3f:54:c4:b5:2b:3f:36:c3:a7:39:b0:3c:b2:1e:
f6:9d:2f:c1:6a:be:bd:52:a7:11:31:af:4e:70:dc:
b8:6f:2f:98:4c:0a:54:c0:51:92:3b:02:64:71:5c:
9a:06:27:d5:81:9a:67:b7:a6:cc:df:2f:32:20:8d:
fc:12:84:49:12:55:6d:a3:ad:50:a4:63:02:fb:66:
1f:a0:f0:ad:5e:84:c1:2b:70:0f:a2:bb:62:9a:64:
ae:3a:81:77:12:1b:c6:bc:29:57:25:0e:97:85:7b:
cc:f2:03:31:59:ff:7c:f5:90:dc:17:32:e5:12:07:
a5:16:fe:e7:66:19:c8:05:cf:b7:af:3c:55:52:93:
92:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:69:43:27:A7:8B:0F:5E:7C:2D:0C:74:63:77:48:1D:ED:DD:A0:02
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/bWlDJ6eLD158LQx0Y3dIHe3doAI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151184
sbgp-ipAddrBlock: critical
IPv4:
103.131.58.0/23
IPv6:
2001:df2:4140::/48
Signature Algorithm: sha256WithRSAEncryption
37:96:aa:cf:74:57:20:64:36:b5:ef:8a:0e:36:a0:6f:6c:ff:
40:79:e5:50:ae:d2:fc:c5:e3:1d:2e:59:ec:b9:cf:d0:57:6b:
97:ef:46:ef:8f:49:29:85:22:75:21:b8:6f:f0:5e:c2:96:00:
1b:06:40:51:c7:0a:39:b4:2d:ab:a2:1e:b1:62:21:df:e7:b6:
15:34:1d:dd:d3:11:6d:ba:75:8f:42:0c:53:36:76:b8:27:36:
29:bd:ea:f5:5a:26:57:19:af:77:8d:0c:34:6c:c6:f6:b4:0a:
10:81:6c:7f:3d:6a:63:f6:66:ac:d0:ec:68:ec:9f:69:74:d8:
70:74:55:f6:84:c0:b4:57:2a:2f:6a:7c:e5:2d:de:5f:9b:c3:
8d:95:1a:5f:9b:6f:a9:93:7a:a8:51:a3:34:4b:45:cc:86:81:
59:93:25:81:c3:f3:07:06:0d:d6:f8:b2:34:d2:f1:dd:c4:dc:
5b:a1:5a:98:dc:78:03:65:24:2c:f9:12:3b:00:d8:58:5a:c5:
d2:67:e0:6a:8b:71:ae:3b:ce:14:04:4a:67:77:04:57:89:fd:
00:f2:bc:4b:12:f4:c7:c6:03:54:0e:37:2e:e4:f8:66:5b:78:
32:54:2d:9c:58:13:c9:d5:87:96:8c:fb:20:f0:11:cb:96:5c:
f7:1d:2b:8c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:29 2024 by rpki-client on console-fra.rpki-client.org