Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer
File: gYkRn4AeKAprTdViZT7xA2lh0Js.cer (raw, json)
Hash identifier: o76112MC3Ctl0+ifIPuyNEEf8ynIQ/Lx3Ia8CBfWFmU=
Subject key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C95A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 07 Nov 2023 02:16:23 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 17921
IP: 103.143.216.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 00:57:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117082 (0x1c95a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 7 02:16:23 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4d:04:48:f1:98:2d:2c:37:0b:c9:c2:be:b7:
c7:64:4e:99:5a:0b:21:25:3b:78:a9:60:c2:47:f5:
a2:2f:17:78:b4:f3:de:e7:15:f0:d3:b2:13:e6:46:
1c:74:6b:43:9c:2c:17:57:88:4c:56:25:d9:1a:a5:
60:e0:fb:77:48:d8:0a:21:20:5e:9a:70:29:51:11:
cf:69:b0:45:0e:5b:84:ee:41:b7:53:2f:e0:6d:74:
a1:53:7b:33:f1:d8:ff:1d:48:8e:5d:2e:4a:73:ff:
99:db:c1:36:e9:65:76:d7:4c:87:d4:ba:da:74:18:
dd:36:39:d5:49:dc:82:94:24:bf:9e:fd:a6:a6:d1:
b4:79:28:ff:2e:dd:38:a2:fb:42:e2:2d:52:8b:24:
e8:b6:dc:40:a3:33:a6:3c:8d:37:d2:25:1e:64:bf:
ad:9a:94:ce:70:8f:62:1f:05:87:55:7d:1c:2a:bf:
d8:04:b5:d5:f2:ff:e3:b5:41:11:36:90:53:f5:8b:
25:69:30:c7:fe:e0:b7:c5:31:03:f4:50:86:de:c7:
e2:75:59:6d:33:fe:55:36:a6:b7:2f:d1:6b:a2:fa:
8d:90:bf:ae:dd:29:8b:5b:02:ed:55:80:96:d9:86:
fd:f6:e7:55:7d:cc:54:ce:0f:ba:8d:08:0b:7c:07:
43:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17921
sbgp-ipAddrBlock: critical
IPv4:
103.143.216.0/23
Signature Algorithm: sha256WithRSAEncryption
67:ec:95:a1:9f:b3:92:e6:cc:8e:82:86:8d:f1:32:14:d6:fa:
67:a6:d3:ac:7a:7c:37:3b:fb:47:20:8a:66:69:ec:5a:cc:4d:
1f:39:e7:6c:dc:55:18:4a:57:6b:b4:b0:92:af:98:30:a5:5c:
16:73:e9:b6:64:aa:b9:45:be:2f:b6:0e:49:7e:75:21:6a:82:
d8:33:95:34:88:a9:08:db:67:6d:25:ae:d5:e7:ae:6e:a9:9a:
98:99:6d:c1:2b:18:d7:31:8d:fe:68:0e:a6:32:78:ce:93:07:
44:eb:f2:a0:2b:fc:d7:99:23:42:bf:53:a8:5a:93:ac:a9:0e:
2f:8b:ab:6a:48:22:34:16:7c:c3:2f:5c:22:b8:09:a5:b4:7c:
83:fd:2e:79:29:f8:f0:2e:aa:0b:bb:35:13:19:8a:5f:2c:4c:
50:7b:d7:18:34:b5:3d:19:2c:af:db:fa:dd:27:aa:eb:05:cd:
72:d0:cf:f7:98:bf:e8:09:7f:0c:4f:88:37:e3:eb:06:24:68:
b1:56:e8:01:ed:e0:81:bb:76:25:0e:7a:15:1b:ba:15:e2:bf:
58:b7:70:09:1a:44:bd:70:d4:fd:27:dd:1c:40:ee:6e:e3:a9:
35:e8:d5:c3:f1:0d:75:40:8e:eb:91:8c:2c:8d:a1:1e:24:72:
64:27:6d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 01:40:32 2024 by rpki-client on console-ams.rpki-client.org