Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h81xgndjHgvdtrTzot8esxEio4E.cer
File: h81xgndjHgvdtrTzot8esxEio4E.cer (raw, json)
Hash identifier: xX3abBw/dSOu4u6O/GYbVmpP78eEFuRehVYh0sFgRMw=
Subject key identifier: 87:CD:71:82:77:63:1E:0B:DD:B6:B4:F3:A2:DF:1E:B3:11:22:A3:81
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DDC1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 Feb 2024 18:30:01 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 135042
IP: 103.207.19.0/24
IP: 2001:df0:6200::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122305 (0x1ddc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 6 18:30:01 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91F2DDD/serialNumber=87CD718277631E0BDDB6B4F3A2DF1EB31122A381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:79:e7:6c:e4:ef:9e:38:e8:9c:cb:b4:97:61:
0b:b4:80:ef:e8:df:73:8b:e8:5c:ec:71:c3:80:81:
f9:1c:5f:cc:31:85:66:7a:ac:12:f0:25:ea:e4:f1:
18:b4:b8:ca:92:12:6f:e6:ef:65:f2:2d:78:b5:48:
83:23:d1:0d:4e:73:c0:6c:7f:7d:24:9e:8e:9d:f0:
dd:7b:e9:05:f8:0c:1c:a3:12:65:1c:a7:24:7b:16:
78:a0:9c:2f:13:f2:2e:63:f0:2f:6b:bd:a8:11:a0:
79:4f:3b:1e:f7:b5:1d:c9:f4:ff:88:c9:bc:7d:4b:
32:17:21:b6:2f:e4:7a:ac:d6:05:4c:90:b0:96:3f:
d4:e1:5a:b2:de:f7:81:4c:53:b6:7a:89:26:fb:4a:
b9:02:91:44:5c:ee:5e:87:7d:d3:44:7f:d4:e5:fa:
3e:86:6e:68:06:ae:f8:0a:f1:81:99:93:37:40:f9:
ff:c5:ac:5f:43:63:e1:d9:53:aa:6a:6f:4c:17:c2:
c3:54:f1:bb:2a:e5:d1:2e:05:4c:2b:0d:78:7e:97:
36:bd:14:73:69:ad:54:70:c6:ad:59:10:a9:89:12:
d4:8c:2a:0d:8a:d6:f5:53:b0:74:2d:98:0e:0b:f9:
28:12:e9:31:56:31:b8:90:22:0b:a0:5b:1a:8d:fd:
ac:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CD:71:82:77:63:1E:0B:DD:B6:B4:F3:A2:DF:1E:B3:11:22:A3:81
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135042
sbgp-ipAddrBlock: critical
IPv4:
103.207.19.0/24
IPv6:
2001:df0:6200::/48
Signature Algorithm: sha256WithRSAEncryption
44:3a:93:ac:3f:bd:7f:e9:5e:df:ed:8d:ad:8f:3c:a3:2a:16:
57:16:95:33:1c:a9:e3:bc:5d:f9:4a:df:aa:e3:99:22:f8:f5:
de:97:b9:94:e7:0e:ac:20:75:e2:61:f4:7c:a2:a8:41:ab:ca:
46:c5:83:e7:50:46:88:86:61:2a:6f:d8:04:bd:02:d7:0d:61:
7e:e0:b8:50:36:a4:4c:ac:a6:34:94:b5:2c:4d:96:32:b3:ca:
67:46:32:a8:bf:60:cd:77:d3:a8:04:be:f0:d7:6a:22:a8:53:
6d:bb:67:f8:e8:aa:55:60:bb:c1:18:7b:03:1c:69:3e:11:fd:
35:98:1a:9c:7c:8e:fb:4b:fd:d6:95:75:d5:b9:8a:43:da:69:
9e:3c:e8:05:9c:7c:a1:dc:d6:6f:59:17:c4:d6:88:05:9c:7e:
aa:08:31:40:2a:66:03:d8:3f:7f:09:9d:9e:b4:aa:64:69:79:
05:2c:42:1d:a6:27:d5:12:1b:de:08:34:ee:26:c9:06:a9:6b:
5a:10:9d:f5:59:cd:d6:2e:65:81:e4:c6:a5:5a:f8:84:3d:9d:
25:24:f2:e4:7c:e4:29:42:ec:35:93:f0:0b:a0:85:82:68:da:
56:54:7c:c5:54:6d:86:e4:01:f6:8a:4e:c9:bd:ee:fd:ea:60:
f7:dc:10:af
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:31 2024 by rpki-client on console-fra.rpki-client.org