Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eXUDPcXUVA8WrsEhKG7EFMp4fW8.cer
File: eXUDPcXUVA8WrsEhKG7EFMp4fW8.cer (raw, json)
Hash identifier: tVdw4RfSj9jTUu4hK13uEgWBIj4lVtgzG8d5+ThptSI=
Subject key identifier: 79:75:03:3D:C5:D4:54:0F:16:AE:C1:21:28:6E:C4:14:CA:78:7D:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BAA5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BC5BC/13EAA47C862311EAA0059881C4F9AE02/eXUDPcXUVA8WrsEhKG7EFMp4fW8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BC5BC/13EAA47C862311EAA0059881C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 31 Aug 2023 20:50:09 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 139305
IP: 103.141.14.0/23
IP: 2001:df0:e480::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 May 2024 16:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113317 (0x1baa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 31 20:50:09 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91BC5BC/serialNumber=7975033DC5D4540F16AEC121286EC414CA787D6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:48:c1:7b:9f:d0:ac:c9:bc:8c:c5:6a:c1:72:
41:f9:9f:3b:39:bc:6d:d2:89:8e:2b:eb:72:8b:6d:
25:ed:3b:32:dd:62:cc:e0:1c:6d:1f:1f:bb:2e:67:
bb:58:d5:ec:96:1f:8a:b4:f0:bb:b5:8f:9c:d9:72:
f6:4d:f5:23:ed:da:78:e9:7e:e6:49:12:6d:39:1e:
61:65:84:14:a3:ad:2c:f7:e1:aa:1d:e4:ac:27:5b:
30:ba:69:f1:5d:28:40:60:ec:06:c7:21:cc:26:c6:
2a:c8:a2:c9:98:64:50:47:e4:23:c5:8c:52:d0:45:
a1:20:42:45:86:be:b9:dd:85:8d:97:e0:86:15:88:
a3:dc:76:47:e1:ef:31:84:50:ff:6f:bd:2b:36:78:
53:6e:ca:d3:dd:d2:b4:b7:ee:ad:ff:65:66:e9:f7:
bc:1c:66:67:82:9e:28:7e:a1:ca:60:2d:15:83:bd:
24:70:bc:45:37:96:98:eb:22:d3:0f:ff:10:06:75:
a5:c2:b7:f3:76:f4:0f:85:2b:e8:8b:6d:c9:6f:3c:
02:0d:d9:78:5d:d1:7f:7a:50:5c:df:2c:91:14:25:
10:d2:84:2d:3e:b3:37:63:07:40:69:e9:aa:83:23:
3b:71:1a:a5:40:f6:34:a2:73:79:d7:b6:61:de:0a:
0c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:75:03:3D:C5:D4:54:0F:16:AE:C1:21:28:6E:C4:14:CA:78:7D:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BC5BC/13EAA47C862311EAA0059881C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BC5BC/13EAA47C862311EAA0059881C4F9AE02/eXUDPcXUVA8WrsEhKG7EFMp4fW8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139305
sbgp-ipAddrBlock: critical
IPv4:
103.141.14.0/23
IPv6:
2001:df0:e480::/47
Signature Algorithm: sha256WithRSAEncryption
3f:b1:87:10:ef:de:4a:b6:a0:03:6f:12:fb:ed:33:24:52:c8:
0d:2b:44:e3:0c:ed:d1:e6:b2:1d:77:6c:52:21:47:5e:b0:16:
8f:98:de:01:4c:35:4d:91:ba:eb:0d:3b:08:26:81:df:77:f9:
20:51:2c:54:4c:82:50:d0:95:0b:8c:fe:87:2a:c2:4a:dd:db:
82:68:40:ba:d8:23:56:6f:e7:eb:f7:98:ef:1e:37:d2:e4:95:
09:44:88:cd:19:8f:f4:55:db:59:79:5e:ed:73:78:d6:e7:ea:
4c:ab:9c:56:b5:65:ca:ff:f7:13:0a:a5:f1:aa:c7:7f:e1:bd:
0e:61:89:64:ba:3c:8f:74:8d:04:3f:48:93:be:16:47:c2:54:
21:d8:0d:06:49:f4:1d:ce:4d:b0:1e:25:6a:93:b9:e1:db:8c:
6c:47:1a:62:80:f0:49:55:eb:d0:b2:4b:56:a8:b2:b6:ec:af:
0f:63:f2:b9:f0:29:64:5f:da:23:7d:6c:c3:be:d7:9b:8e:f5:
02:5d:de:e4:62:6f:b1:b5:61:5a:d1:41:cd:2a:a6:83:99:ed:
db:52:9f:1e:0b:af:09:40:d5:c4:7d:de:a6:73:b8:a8:34:46:
84:82:cf:23:ce:ff:e2:67:af:10:87:11:f5:a6:b7:7b:e5:ee:
71:09:b7:2b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat May 4 17:20:32 2024 by rpki-client on console-fra.rpki-client.org