Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer
File: fvLsMxvWVD0y25gMUGJsBAfKiYI.cer (raw, json)
Hash identifier: 1mVxFw27Bt71kVIJIlHubGLvYxLlN4a24IG+MAUjgIU=
Subject key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D627
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Jan 2024 21:36:27 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 136035
IP: 103.80.100.0/23
IP: 2001:df7:2200::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 19:45:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120359 (0x1d627)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 2 21:36:27 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a3:3c:6d:69:63:c1:bb:80:08:6e:75:f0:16:
07:a7:e6:bb:0b:19:80:bb:62:ff:5b:6c:5d:95:47:
5f:a4:cd:d3:3a:b5:25:1f:6b:88:69:07:91:49:3b:
6b:11:42:01:22:77:7e:8f:6f:7e:19:30:04:a6:61:
07:1b:26:d5:61:c1:ca:15:0b:7c:8a:3b:cd:fa:a3:
9e:50:3e:bd:e5:98:bb:97:4c:96:08:6a:89:05:6d:
e6:c0:07:9e:a4:91:e4:86:a1:ad:59:cc:8f:78:35:
f2:86:a5:b3:c8:f2:63:fe:58:c5:8c:18:92:5c:f2:
27:62:d0:8d:b0:dd:c9:08:8a:64:bd:b0:5c:8f:6e:
b9:b3:e3:f7:6f:34:a8:60:85:fd:81:61:21:b0:cc:
94:d8:e8:65:58:8b:10:74:52:29:93:2c:85:40:4a:
a3:78:41:98:ec:0a:de:b3:16:15:37:00:b3:c5:1e:
93:47:56:8f:f8:02:42:d0:03:b2:c5:ac:e6:20:c8:
3d:0a:63:91:1c:6b:e7:b1:1a:b5:d0:ea:06:be:2f:
c4:aa:98:9f:e1:d1:d4:cd:1b:8b:12:5e:ef:e9:42:
be:3c:bd:d9:0f:8c:34:92:82:33:20:07:84:7c:41:
81:4e:d9:45:f4:a0:8b:0e:4b:89:db:c4:18:3c:86:
68:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136035
sbgp-ipAddrBlock: critical
IPv4:
103.80.100.0/23
IPv6:
2001:df7:2200::/48
Signature Algorithm: sha256WithRSAEncryption
27:cb:a0:08:46:bb:ce:e5:13:bd:83:ee:ab:39:2f:ec:83:64:
3f:27:09:90:4c:29:7f:28:de:b2:70:42:fa:fe:0d:84:61:cd:
63:a0:52:56:4f:7b:8a:64:48:59:6d:3c:4e:85:38:1b:68:f4:
d3:49:7a:a4:4f:0e:52:52:ca:ed:25:8d:16:7f:44:da:b0:0f:
eb:3d:00:a5:fa:ac:ca:a8:5e:c9:4a:9e:bf:92:a3:b5:28:39:
50:96:ff:c6:5e:18:90:87:9b:39:cb:dc:d1:1b:23:d1:7b:92:
35:9a:f8:c3:be:f0:6c:15:20:6b:55:40:ae:cc:91:01:27:c9:
b4:7c:b6:49:2a:77:33:15:90:ac:e7:69:93:0b:1c:09:5d:b1:
7f:4d:ff:98:d4:8a:23:f9:24:d0:fe:86:b1:07:18:c0:c9:47:
f7:7e:36:42:57:68:75:26:f9:a2:46:36:d9:3b:c4:ec:c3:08:
fe:17:ed:65:0d:df:88:4c:34:74:04:a0:98:a9:10:de:08:11:
f0:d9:cf:49:50:35:d3:6b:79:cf:b7:a6:43:d3:59:35:f0:8f:
ea:a8:4a:2b:f5:aa:6a:4a:45:66:72:13:1b:70:d9:6b:de:9a:
f1:cd:13:74:81:92:e7:fb:4e:2b:93:fb:0f:72:a0:af:2d:9a:
a1:82:32:1e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 1 20:50:02 2024 by rpki-client on console-ams.rpki-client.org