Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer
File: ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer (raw, json)
Hash identifier: ya0av8yGkjbaw2kgBY2X6ITGNUukVoICSKha77oWuCE=
Subject key identifier: 79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CC9F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 23 Nov 2023 21:26:30 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 131292
IP: 103.68.208.0/22
IP: 2405:e680::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 00:38:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117919 (0x1cc9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 23 21:26:30 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91F5FA2/serialNumber=79A94D28E5424738091383D5F4975BFDBCEAAE79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:19:70:4e:44:d4:68:fc:02:fd:93:e0:7b:d6:
c5:ee:00:36:1e:c5:01:03:82:9e:6a:c3:04:cb:b6:
8f:b0:cc:73:20:cc:27:c0:2f:e6:cb:cd:d8:ec:32:
d0:22:95:80:da:a8:bc:e4:aa:e7:4a:63:fe:22:5a:
3c:3e:bf:ee:c9:d1:c3:77:22:03:bb:62:d9:f3:7d:
2b:00:65:52:13:b7:07:0e:87:3d:b6:43:0d:5a:44:
88:ae:52:47:0f:c4:7e:e7:c7:8a:73:23:ba:02:e9:
81:3b:cf:e7:ec:b4:0f:aa:dd:77:66:10:75:6d:f7:
75:04:bb:19:cd:fd:e3:d2:70:05:7b:15:0b:fb:cb:
48:f9:be:56:32:0d:40:f2:94:77:a9:1f:e3:9d:a9:
9f:f0:04:cb:73:0b:6a:10:ae:44:85:53:05:29:04:
b6:de:70:c6:c5:1a:87:13:30:3c:83:77:ed:8d:61:
9d:f6:39:81:c7:bf:bb:50:71:74:d3:59:17:83:f2:
91:e3:b4:7a:ef:be:5b:9b:ce:11:f6:a1:79:63:f2:
47:72:0d:d8:ad:99:12:e6:b3:30:b5:50:46:b4:b8:
7c:41:d7:e3:6e:b8:6f:53:33:8d:ac:6f:dc:1a:31:
25:1b:5a:8b:36:6b:5f:e5:31:02:17:33:af:2d:3f:
a8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131292
sbgp-ipAddrBlock: critical
IPv4:
103.68.208.0/22
IPv6:
2405:e680::/32
Signature Algorithm: sha256WithRSAEncryption
40:b6:00:92:9d:67:80:9b:56:57:e5:84:c5:da:51:08:6c:34:
44:7f:75:6f:4a:90:85:cf:c9:11:44:55:47:70:46:f3:82:b5:
ff:e0:16:0a:5d:b6:0c:6a:84:66:c1:0c:0a:ee:66:f9:6f:67:
4b:5e:7b:55:6c:28:39:5d:6a:fd:bd:54:92:6d:c8:3d:35:3b:
eb:1a:60:23:bb:97:ed:83:2f:11:18:23:8c:6e:a3:58:74:35:
bb:fe:73:c0:81:c0:7d:ed:71:2a:e6:b2:b6:9b:f8:34:db:b8:
a2:4c:dc:50:ca:30:16:8d:15:66:9d:66:67:b1:f3:bf:c2:1f:
66:ec:4a:89:83:03:01:9f:5e:cb:d9:a5:76:d5:d6:3f:ae:67:
17:8f:55:66:cd:b1:5b:02:ba:36:f3:bf:10:13:d6:51:30:01:
f6:68:31:de:87:5b:82:25:d3:dd:19:3e:aa:c1:ee:c0:01:4f:
be:1c:de:c2:76:46:60:01:c8:be:91:9a:53:d2:72:9d:b4:09:
cc:63:21:34:10:3d:a5:11:af:98:c7:73:1b:a9:a8:a2:4e:14:
72:84:b0:df:85:e1:fb:86:ca:06:f7:71:7f:d2:b3:a5:25:1b:
ff:0f:f2:90:bd:f5:5a:0e:0e:9e:2e:c5:0e:25:64:d3:53:25:
e5:79:d9:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 01:17:07 2024 by rpki-client on console-fra.rpki-client.org