Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byZ-RWYIP-sjaiw5I7cDlgC955Q.cer
File: byZ-RWYIP-sjaiw5I7cDlgC955Q.cer (raw, json)
Hash identifier: KA1yPN0MbEuq2VjH9BvjtRJ969gb7qMyzYVkxqShxIk=
Subject key identifier: 6F:26:7E:45:66:08:3F:EB:23:6A:2C:39:23:B7:03:96:00:BD:E7:94
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DE4A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/byZ-RWYIP-sjaiw5I7cDlgC955Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 09 Feb 2024 20:19:22 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 140068
IP: 103.148.14.0/23
IP: 2001:df2:b780::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122442 (0x1de4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 9 20:19:22 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91E0C24/serialNumber=6F267E4566083FEB236A2C3923B7039600BDE794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b8:66:76:e8:21:86:80:54:6d:69:05:1b:ec:
ea:9d:3a:ac:61:e7:f4:02:e5:54:9b:28:f7:d0:e2:
cb:f1:a5:9e:02:01:53:34:0a:13:b0:1a:c3:81:83:
d1:73:00:4d:bb:e9:0f:e7:40:14:51:ec:bc:bb:34:
37:a3:c5:47:91:64:f9:d4:de:79:72:8a:ff:06:0e:
a6:2b:1b:74:de:ed:99:8e:af:05:06:4f:38:ff:99:
2a:9c:00:3c:9b:05:e7:51:3a:65:df:e8:5e:19:d0:
e3:73:02:ce:45:77:60:2c:b4:e2:72:62:dc:e2:81:
ea:44:9f:d0:ae:c8:1b:0e:3b:21:d8:c8:ec:1c:77:
05:11:56:b3:7c:98:c5:c4:e5:65:d1:eb:b4:15:d0:
21:a6:15:a6:16:18:9d:b8:ad:30:38:51:71:fe:70:
79:c3:4e:3b:f5:bf:0d:79:11:0a:d7:20:33:b7:39:
26:90:35:ab:11:3f:92:74:f9:78:00:17:0c:56:73:
67:69:2f:bf:28:88:a2:5b:cc:45:76:21:1f:39:55:
4f:32:3e:a0:e6:8e:e4:f0:ae:43:bd:ef:c5:f3:b7:
c1:25:18:85:45:de:25:c1:38:db:8a:4a:b3:d8:0d:
5b:52:5b:91:cd:c8:9b:30:af:c4:1f:64:d1:08:8d:
13:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:26:7E:45:66:08:3F:EB:23:6A:2C:39:23:B7:03:96:00:BD:E7:94
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/byZ-RWYIP-sjaiw5I7cDlgC955Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140068
sbgp-ipAddrBlock: critical
IPv4:
103.148.14.0/23
IPv6:
2001:df2:b780::/47
Signature Algorithm: sha256WithRSAEncryption
42:0d:cc:73:2b:62:e7:26:d7:aa:fb:1d:f3:66:e7:2e:85:1f:
54:06:21:f6:2d:d4:76:a1:6d:d3:1a:fe:c1:94:79:ed:4e:d5:
55:6e:7f:77:35:6d:cf:0e:ba:a8:9f:b9:10:8e:86:43:54:12:
7b:18:8b:3c:49:21:4d:dc:fc:cc:19:1c:0d:19:b7:9f:3a:9e:
74:15:82:09:92:74:e8:ca:66:ff:27:dd:3a:af:85:18:19:2d:
0e:cf:e3:66:e4:42:54:7a:98:ef:0f:fb:76:d9:8a:ad:0c:44:
6e:b2:ea:39:bf:9c:d5:f3:ed:d3:b1:89:fe:33:73:2a:2a:d5:
97:ed:7b:9e:b5:fa:10:66:39:9f:37:13:8c:87:06:06:e1:0b:
3a:ad:86:a5:80:c2:d1:f2:ad:3c:44:c6:ed:06:cf:b0:27:65:
87:bd:67:cb:49:70:2d:ab:bd:62:99:84:1c:6c:b0:18:53:8b:
24:b0:ad:1b:83:45:67:cc:1d:b3:0e:06:db:e9:7c:4f:77:37:
03:b3:9e:88:e6:82:b9:16:cb:4d:a9:57:01:88:ad:b2:1e:87:
96:bf:f5:4e:bb:d7:a8:ca:eb:9c:e6:5b:df:f2:f0:d0:c4:48:
a0:37:cc:c7:4a:6c:3b:09:8a:fa:7c:ef:1f:ec:81:06:6a:53:
cb:fe:90:ba
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:59 2024 by rpki-client on console-fra.rpki-client.org