Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer
File: ck2EEAslmZMZA4aasFIgd2yLrEI.cer (raw, json)
Hash identifier: pYLiWhd9I1eScUBcx69lRrYi4D3v1Tto9Qvdi3sgwDg=
Subject key identifier: 72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BE9A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Sep 2023 16:04:02 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 132685
IP: 103.73.194.0/23
IP: 103.126.242.0/23
IP: 2001:df4:7a00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114330 (0x1be9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 20 16:04:02 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A916A39E/serialNumber=724D84100B2599931903869AB05220776C8BAC42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:31:26:86:99:14:c9:da:df:bd:e2:87:a9:eb:
a9:5b:67:82:ef:25:68:84:ba:2d:20:b6:47:f2:fb:
c5:9a:5b:2e:24:23:ca:bd:b7:5f:67:e0:0c:86:87:
c6:74:8d:f5:34:41:12:ed:a6:fe:28:a1:ee:ab:03:
49:9d:4d:4e:1d:fb:da:59:8c:74:ad:d0:dd:02:d9:
13:3f:b4:38:5d:0f:3c:3d:45:f9:2f:c3:ce:67:f9:
51:c1:d5:45:c5:10:cd:8b:dd:44:47:e2:07:ee:99:
31:33:4c:e0:f0:33:a8:c0:10:b1:32:fe:f9:a7:6c:
b8:95:bf:cd:83:16:2c:22:12:dd:15:40:74:d3:e4:
84:fc:3b:fb:65:9c:ed:e5:99:e1:3e:de:a7:7b:48:
f9:77:ef:aa:54:96:6b:99:ea:65:7f:18:37:13:42:
a1:fa:17:02:64:4d:57:c4:59:07:a8:b0:4c:8f:67:
a7:ce:9a:df:a7:28:60:94:f9:5b:3d:ef:31:69:26:
0f:d4:01:97:50:c1:c1:65:0c:c1:2b:53:71:27:c4:
39:7b:79:c2:5a:5a:1c:85:4c:80:fd:30:e5:d3:8b:
81:2f:87:94:a4:6d:72:07:26:fc:7a:d7:f6:33:1f:
5b:21:ff:47:89:83:22:63:b5:34:83:1d:8c:af:0b:
7b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132685
sbgp-ipAddrBlock: critical
IPv4:
103.73.194.0/23
103.126.242.0/23
IPv6:
2001:df4:7a00::/48
Signature Algorithm: sha256WithRSAEncryption
95:2f:8a:b0:ba:ce:33:02:8e:ba:68:7f:58:6b:a2:36:9b:b0:
72:37:a1:5c:8c:d8:41:57:cf:cd:86:33:51:74:c3:c1:f5:7d:
4d:b0:ad:79:f0:4a:7a:dc:72:ab:f8:e2:94:79:13:8a:17:89:
b4:82:02:ba:d5:9e:c3:04:6d:14:a4:23:d3:c3:6c:67:01:ea:
85:43:c0:5a:33:c1:f1:e6:57:4a:8e:21:cc:86:51:7d:58:05:
9c:b1:a4:da:67:79:b9:41:df:b8:8d:8b:55:b6:89:3c:23:a4:
72:52:9e:3c:15:1c:b0:9b:fa:08:ad:04:24:98:21:56:4b:9a:
9e:4b:cb:65:94:5a:80:29:b2:b8:fb:d8:69:79:24:e0:9e:11:
9c:1c:81:09:ff:ab:36:1d:89:97:25:76:35:35:c0:3e:00:3b:
a6:d7:ac:3d:72:34:29:72:5f:6e:c5:aa:b2:a8:c6:b5:7d:53:
e6:7c:2d:c1:49:1b:2e:ad:29:92:90:dc:c8:f1:08:12:e1:f1:
75:11:b7:08:6b:40:b4:77:cc:3a:90:ef:c7:af:0c:7e:b0:e9:
2e:1e:50:80:d1:29:ad:f5:9a:f2:d6:44:b7:3b:66:92:c1:a8:
a7:ac:05:36:63:6a:44:59:de:6f:fb:e4:31:30:3e:98:69:5b:
7b:94:c6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:03 2024 by rpki-client on console-ams.rpki-client.org