Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmh0PlxQ3Z9U0qaVxaDr9UDPm68.cer
File: cmh0PlxQ3Z9U0qaVxaDr9UDPm68.cer (raw, json)
Hash identifier: Hn6KZwBAK0lzfiHatkr4FGN/0G9PbivZ546IuAL0Suo=
Subject key identifier: 72:68:74:3E:5C:50:DD:9F:54:D2:A6:95:C5:A0:EB:F5:40:CF:9B:AF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C852
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911923C/DA0C9728D34711EC98FA2629C4F9AE02/cmh0PlxQ3Z9U0qaVxaDr9UDPm68.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911923C/DA0C9728D34711EC98FA2629C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Nov 2023 12:48:29 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 63945
AS: 137068
IP: 103.43.144.0/22
IP: 103.103.182.0/23
IP: 2401:f680::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 22:43:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116818 (0x1c852)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 12:48:29 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A911923C/serialNumber=7268743E5C50DD9F54D2A695C5A0EBF540CF9BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c5:c6:55:89:a2:64:2f:6a:54:e1:ee:69:17:
f6:77:db:70:06:f9:b2:cf:28:4d:17:45:ba:57:ec:
bc:a6:9d:ac:f0:95:26:a0:77:a8:32:96:3f:17:95:
06:eb:43:53:1e:39:76:af:74:59:78:0f:f5:53:f6:
97:e4:a3:ba:14:fe:7e:58:13:52:6d:9f:ac:7f:04:
f4:35:af:58:7a:d8:02:26:94:c5:d0:fc:b8:cf:74:
25:40:90:38:b3:b6:51:78:83:e3:5e:64:6d:cb:f6:
87:b6:1e:5e:af:03:ae:88:4a:db:8d:49:6d:31:38:
5e:14:07:0e:0e:a0:09:c1:55:4e:5a:39:ca:5f:a4:
b7:8e:0c:30:c7:f0:79:ef:b4:54:2f:1a:df:d7:1d:
34:5c:d0:0f:19:43:35:58:fb:a3:66:1d:20:a7:ce:
59:1a:e1:14:2c:59:4e:28:35:af:2f:eb:c2:72:67:
3d:40:84:56:7b:09:43:cf:b8:c6:5c:dc:81:8c:94:
3d:8e:7a:ca:73:e3:0a:dc:fc:66:5d:b2:b1:be:38:
a0:4b:7a:ad:2e:4d:7c:78:52:b0:c3:9d:db:2b:63:
92:43:af:b2:7a:22:9c:ee:27:43:a2:dc:4d:77:b1:
93:6d:f6:63:c7:35:3f:e4:92:4a:e6:a4:5f:d8:75:
c1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:68:74:3E:5C:50:DD:9F:54:D2:A6:95:C5:A0:EB:F5:40:CF:9B:AF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911923C/DA0C9728D34711EC98FA2629C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911923C/DA0C9728D34711EC98FA2629C4F9AE02/cmh0PlxQ3Z9U0qaVxaDr9UDPm68.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63945
137068
sbgp-ipAddrBlock: critical
IPv4:
103.43.144.0/22
103.103.182.0/23
IPv6:
2401:f680::/32
Signature Algorithm: sha256WithRSAEncryption
37:6f:85:3f:88:74:00:19:d8:9d:9c:65:8b:52:cd:2f:4a:89:
55:5c:4a:b5:0a:f4:af:f1:12:d7:97:6c:98:03:0e:d4:8e:71:
9a:64:02:06:16:3b:90:26:5a:ad:a8:00:dd:08:5f:01:70:b7:
b0:b4:df:da:a4:af:a0:3f:ca:2b:d4:c1:00:0b:13:85:5b:53:
65:67:60:2a:04:03:a9:ca:b1:65:08:ab:63:41:c8:dc:c1:a6:
cd:29:d7:bc:ed:a6:16:1d:54:1c:b3:83:ff:e2:b7:a2:d4:dc:
e4:f0:dd:f8:ce:be:f6:0c:b9:ec:63:90:56:db:3c:06:bf:2c:
4e:44:b2:ce:cb:c9:04:3d:31:70:4f:2e:95:18:3c:d5:63:dd:
b4:48:f3:0f:cf:9d:85:3b:9f:3e:ce:e4:ef:3c:e5:99:b7:bf:
3f:70:ee:8e:78:dd:e2:0a:90:da:d6:ec:27:08:ad:b0:16:13:
63:70:ba:ea:fc:c7:d7:da:5f:f7:68:fb:ad:66:49:8b:48:51:
0e:e4:1b:29:c9:53:97:8a:ba:5e:08:70:89:4d:8c:b4:58:80:
76:85:6a:81:a8:16:22:e1:ab:b0:2d:90:c8:5a:6b:44:e7:4a:
19:de:c3:d4:df:83:2e:53:58:5e:dd:03:cf:64:44:e7:4d:8d:
ca:9e:ef:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 23:22:06 2024 by rpki-client on console-fra.rpki-client.org