Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyMYIw4lgiCnzuQuCX0Zrpl2E6M.cer
File: gyMYIw4lgiCnzuQuCX0Zrpl2E6M.cer (raw, json)
Hash identifier: BLbJcZJIkgl+D+flECVJN1kJOrM7leEk32cDAZcaRFg=
Subject key identifier: 83:23:18:23:0E:25:82:20:A7:CE:E4:2E:09:7D:19:AE:99:76:13:A3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B411
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917E4CB/AC510912235311ECBC6BF063C4F9AE02/gyMYIw4lgiCnzuQuCX0Zrpl2E6M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917E4CB/AC510912235311ECBC6BF063C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Aug 2023 18:05:35 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 136751
AS: 140837
IP: 103.95.37.0/24
IP: 2001:df1:9700::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Apr 2024 21:54:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111633 (0x1b411)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 1 18:05:35 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A917E4CB/serialNumber=832318230E258220A7CEE42E097D19AE997613A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a2:0c:fc:38:00:eb:42:38:9e:1c:6e:96:22:
fa:49:ea:4c:1d:1c:22:0a:dc:07:a8:9a:82:9c:29:
59:c8:f0:7a:de:b0:2b:fc:88:d9:a7:0f:65:d1:10:
0a:68:d7:69:0b:20:42:d4:c9:5a:82:f7:9d:75:88:
d2:57:76:c4:48:4b:bf:53:f6:e8:97:68:34:c5:1f:
a5:f8:12:c0:97:a7:e0:d8:40:fd:05:08:70:fc:97:
c9:f2:3a:73:0d:34:e1:e7:cb:77:2a:0f:6b:ca:23:
c6:75:96:59:a8:83:ca:70:e3:f6:5f:ce:a8:b4:cc:
c4:f4:cf:4e:e8:8f:ec:6f:f8:7f:16:e4:86:fc:97:
56:f7:f2:11:ce:c2:5e:62:40:e5:43:fd:f4:38:6b:
f5:bc:60:cf:39:91:ec:6e:4e:84:70:51:59:1c:76:
2e:1e:86:61:17:8a:08:9c:a3:c6:55:7e:5b:e1:7f:
d5:29:9d:c5:d7:c4:29:db:c8:29:4f:f6:6f:68:80:
de:12:81:f8:43:e8:1a:4e:fa:60:aa:20:cb:9a:29:
a9:93:a3:0a:43:0e:16:7c:ad:f3:57:f5:d9:a9:2c:
e0:4a:69:41:99:19:17:bf:f3:43:97:64:de:e3:c6:
63:35:27:19:02:7d:3a:d0:a8:82:d4:06:84:7c:67:
54:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:23:18:23:0E:25:82:20:A7:CE:E4:2E:09:7D:19:AE:99:76:13:A3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917E4CB/AC510912235311ECBC6BF063C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917E4CB/AC510912235311ECBC6BF063C4F9AE02/gyMYIw4lgiCnzuQuCX0Zrpl2E6M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136751
140837
sbgp-ipAddrBlock: critical
IPv4:
103.95.37.0/24
IPv6:
2001:df1:9700::/48
Signature Algorithm: sha256WithRSAEncryption
b9:20:c3:72:75:62:28:b1:be:5f:f4:28:29:65:96:d0:6a:7c:
77:bb:f6:90:87:6a:a4:c2:8f:e2:78:74:d3:60:01:39:e4:aa:
21:46:82:82:ca:68:ed:4b:94:22:c3:7f:1d:2b:2d:99:af:90:
45:48:a2:f9:f9:54:55:b1:18:35:a4:3e:5d:b9:9a:0c:15:31:
ff:86:42:ae:eb:b2:7d:22:df:89:d2:2f:96:3a:d4:79:45:c9:
26:fd:a6:06:bf:5d:1e:ab:86:c6:d3:82:35:0d:ce:c5:e2:11:
cb:f0:4b:cc:18:25:f5:8b:87:b2:c3:04:b4:f7:a7:a4:b3:c7:
68:d3:8f:21:9c:6a:7a:d5:f1:cc:91:b8:eb:42:dc:37:45:cc:
9c:2a:13:12:9c:97:7d:b7:2e:9d:40:66:da:77:02:4e:43:13:
00:b4:76:62:4f:8f:8f:dd:ab:d7:44:ee:ac:ea:8b:e7:41:c4:
58:02:b5:44:47:e2:2e:65:aa:ad:ad:5f:3e:4c:8c:0d:91:a5:
0d:cc:ca:e3:55:b5:a3:d0:ac:54:eb:50:10:e2:02:b1:40:5e:
35:07:50:f4:46:13:11:db:cc:01:47:61:1f:0f:2d:68:21:7e:
86:d5:93:fa:f7:25:d9:75:f6:cb:22:65:cc:96:4a:ef:33:49:
2a:3c:1d:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 22:44:56 2024 by rpki-client on console-fra.rpki-client.org