Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer
File: cOaM6FoDjZ4wcEODfKbmsaZglu4.cer (raw, json)
Hash identifier: yAO5L2z6tx/jzp7aeU0coiWF0D6ZvrRMlU9288UMccY=
Subject key identifier: 70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D64B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Jan 2024 02:12:06 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 139714
IP: 103.143.250.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120395 (0x1d64b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 3 02:12:06 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91F6ADE/serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3f:80:3e:de:1f:e1:32:5b:b5:0d:bc:24:41:
85:15:d3:05:c1:ce:38:cb:cb:f7:63:40:ee:d8:60:
14:eb:ec:92:a2:69:5d:31:79:19:67:14:e4:c5:21:
75:7b:a1:b5:83:03:6c:3c:af:8f:59:f0:59:ff:69:
02:f8:58:82:1f:c7:a5:9d:a4:78:8b:ee:20:6e:3e:
9a:b8:c6:5b:e1:71:10:b0:5f:c2:33:7e:a9:f1:09:
e5:09:a3:8c:aa:03:80:b1:6f:16:20:c8:5e:c8:3d:
0c:cc:4e:1c:ca:ab:41:46:70:4f:52:f2:5c:7b:c0:
18:3f:4b:82:b1:97:cb:3c:80:98:e4:4a:7c:f2:23:
53:77:d8:6b:d3:13:29:e5:b7:9a:3a:31:91:b2:e3:
25:27:b0:93:d5:4e:29:31:83:74:cd:52:c5:67:fc:
ed:7f:f0:96:74:55:62:07:2f:dd:17:9c:47:95:59:
83:0a:ac:cf:84:c6:28:76:b2:81:98:e5:9b:3a:82:
fa:46:54:cf:f8:59:cf:4d:99:ac:48:b7:1f:b8:7c:
3e:7f:31:0d:0f:82:6a:4a:9e:eb:32:2d:1d:bf:28:
2d:be:86:86:61:e0:8a:c9:c8:04:48:e7:88:cc:5e:
a3:ae:cd:34:ea:57:13:74:03:14:c7:91:a3:01:86:
8e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139714
sbgp-ipAddrBlock: critical
IPv4:
103.143.250.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:b8:48:9f:65:08:01:12:f3:b4:bb:ec:58:5f:27:33:7c:74:
4c:a3:33:5d:f2:ac:31:9b:43:29:5e:3e:eb:d2:5d:b1:de:42:
9a:47:5a:21:70:e2:cb:7e:5b:3e:42:26:22:4c:70:fc:98:0d:
5e:39:e6:f1:f3:f5:9a:4f:7e:e4:6c:3f:32:e2:64:40:e6:28:
7a:8a:97:fc:20:f9:ca:d5:d5:82:77:14:16:b4:54:4b:89:20:
77:ce:b4:3d:39:66:ed:c0:a4:dc:db:b2:f2:97:ba:3d:f9:ec:
5d:dd:79:20:e8:01:ab:f0:54:a2:a3:da:5c:2e:eb:c4:76:f7:
5a:fe:35:04:32:7e:e8:6f:fc:c0:ba:2b:ec:04:fb:23:b6:af:
fb:f5:f0:4a:97:ad:92:c5:cc:0d:14:98:ba:a9:af:a4:70:fc:
30:cf:03:57:b3:be:f4:38:3e:c1:fd:0b:d9:80:02:d9:42:11:
0c:44:4d:00:a3:76:aa:ec:e8:75:f3:f5:de:0c:b5:04:ae:96:
10:da:dd:0d:83:80:51:eb:4b:b1:1a:98:d2:d2:af:81:00:0e:
f9:24:3d:d3:1d:69:05:76:83:54:f2:4e:c0:1b:95:15:b2:46:
79:62:f4:80:89:7e:da:53:9e:1c:61:59:d6:f2:3c:12:86:bb:
58:8e:ef:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 05:37:11 2024 by rpki-client on console-ams.rpki-client.org