Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwOm1WxxgCG9nInrPEvtgX7VauU.cer
File: dwOm1WxxgCG9nInrPEvtgX7VauU.cer (raw, json)
Hash identifier: hBgtXNyNSujXLcXEASz0S/iXxjOJn2fISPY1OkqImto=
Subject key identifier: 77:03:A6:D5:6C:71:80:21:BD:9C:89:EB:3C:4B:ED:81:7E:D5:6A:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B988
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/dwOm1WxxgCG9nInrPEvtgX7VauU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 29 Aug 2023 16:23:23 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 134696
IP: 43.242.128.0/22
IP: 103.251.88.0/22
IP: 2401:8d40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:07:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113032 (0x1b988)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 29 16:23:23 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A918F20B/serialNumber=7703A6D56C718021BD9C89EB3C4BED817ED56AE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:df:26:f5:16:7d:cd:2f:20:e9:6c:70:c2:e9:
a0:8f:7a:62:68:b2:4e:be:11:87:a0:96:a8:c7:df:
fe:b0:6f:48:64:e1:a5:32:ae:d9:f1:1b:59:ff:ca:
18:36:b5:b7:87:3b:54:7d:a4:83:b6:b5:ac:fc:8d:
f3:d7:53:d1:53:f8:48:b9:8e:37:14:69:64:53:b3:
06:e2:f6:ca:ed:c4:48:fa:98:ed:9d:b7:51:77:d9:
15:45:64:c2:3c:15:a5:34:26:39:fc:33:1e:87:10:
25:53:80:21:8a:df:55:1f:6c:77:86:14:c6:09:aa:
5d:14:7f:2c:8b:e7:62:8d:a1:40:75:6e:af:f2:9a:
b6:9c:82:5f:71:d5:27:dc:67:5e:f2:34:07:5a:dc:
b9:66:b2:6a:8b:de:2f:4a:12:e6:4d:75:00:28:0e:
59:a7:aa:db:2c:54:0e:7a:47:62:ab:e3:44:66:53:
ad:5a:34:8f:7e:84:a9:80:5f:82:9c:33:9a:20:da:
38:7a:ca:df:1e:9b:a6:fd:05:92:0c:b6:11:2a:c9:
c0:74:cd:da:92:21:7c:8e:2a:31:e6:b2:97:35:1c:
9e:9c:21:c0:1b:99:5a:4e:e6:2b:a1:3c:46:8a:bc:
49:68:da:70:a9:b9:ed:3c:07:1f:d8:73:8d:91:9e:
06:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:03:A6:D5:6C:71:80:21:BD:9C:89:EB:3C:4B:ED:81:7E:D5:6A:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/dwOm1WxxgCG9nInrPEvtgX7VauU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134696
sbgp-ipAddrBlock: critical
IPv4:
43.242.128.0/22
103.251.88.0/22
IPv6:
2401:8d40::/32
Signature Algorithm: sha256WithRSAEncryption
32:04:04:53:6b:9f:0a:8c:64:26:d9:34:2d:77:58:10:21:5b:
64:95:f6:b6:db:c2:c8:4d:bc:27:a3:de:26:fb:b0:99:50:39:
be:84:e1:0b:f6:a9:88:68:33:91:81:94:fa:8a:9b:ea:69:ea:
6c:7c:95:9f:d3:01:70:30:ca:93:7e:eb:f2:51:72:82:4f:0c:
b4:0d:9e:fd:e7:83:95:dd:04:c3:08:6d:9f:7f:78:13:8e:3d:
d6:0a:28:5b:fe:1e:b8:e2:58:52:be:d6:58:79:93:e9:81:1a:
5e:31:09:46:75:8f:59:2c:4c:1f:6c:23:db:c9:2c:07:1f:59:
91:e4:d7:13:e7:6b:82:ea:f7:14:4c:8b:89:a4:76:6e:1a:62:
d3:80:b1:77:d0:d0:c7:74:55:e8:83:14:d6:c7:ba:07:02:46:
b6:ee:1e:b8:93:90:03:8e:79:3b:18:40:fd:4f:e3:a3:4b:e3:
91:00:e7:f0:61:e1:f1:c4:01:fc:fb:ff:a5:e2:c2:1f:dc:00:
02:21:58:5f:fc:89:c9:54:03:ae:96:43:e4:da:76:f0:94:0c:
25:e4:b6:d9:b3:9f:c2:ac:04:c7:d4:5e:91:31:c7:2b:eb:5d:
e7:6d:69:82:cd:65:ed:fe:94:5b:29:81:1a:b5:2a:b2:e1:a6:
0f:f6:db:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 06:38:52 2024 by rpki-client on console-fra.rpki-client.org