Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer
File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer (raw, json)
Hash identifier: A0+A4SdqslY2K1E9y3YYlldSDAXJ0ORxpfWJ2mI3oiQ=
Subject key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BE38
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 18 Sep 2023 19:31:33 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 136905
IP: 103.98.128.0/22
IP: 2401:9a40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:07:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114232 (0x1be38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 18 19:31:33 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7b:9e:38:39:f0:5c:36:87:0f:11:05:e6:70:
26:e5:76:c6:77:ce:be:77:68:3b:4f:d8:5a:53:22:
c2:ed:0a:d3:2c:6d:d2:76:56:16:b9:27:f0:55:9e:
e7:bc:31:f7:ec:c8:d0:e5:c4:f0:3e:fb:84:0d:9c:
3f:1c:52:75:f6:49:07:04:ed:54:01:2f:58:ee:dd:
db:80:b2:66:a9:c1:db:06:87:7d:25:de:bc:0e:6b:
bf:5b:36:e2:25:f0:ac:26:b0:01:3b:8f:f7:a9:b6:
b8:cb:9d:bb:6d:c3:8e:9d:d0:6c:ce:66:d9:ab:3b:
a7:a9:f4:eb:90:64:54:a9:e0:a2:d1:55:19:7a:dd:
66:bc:f2:d9:1e:0e:87:9c:a8:87:98:a3:e9:0e:dc:
ba:0f:20:e4:39:5d:51:71:f5:5c:b6:51:0f:20:44:
61:61:59:24:25:35:15:8c:14:3b:fd:98:77:d3:93:
ca:19:c8:f4:dd:ce:f3:06:0a:92:8a:fe:a8:fc:80:
1c:96:a3:de:ea:67:ba:45:39:6d:34:d8:31:e1:ff:
85:38:30:d0:43:5b:13:d9:3d:10:c2:18:2b:8a:a2:
cb:e0:91:52:3b:f3:a1:dc:3c:d3:b7:60:05:d0:28:
95:a5:5a:3b:5e:86:7e:77:97:02:96:b0:f8:a0:ea:
0e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136905
sbgp-ipAddrBlock: critical
IPv4:
103.98.128.0/22
IPv6:
2401:9a40::/32
Signature Algorithm: sha256WithRSAEncryption
74:16:ac:4f:a3:ae:f8:02:6a:be:05:f1:7a:ba:83:ad:f2:aa:
45:a3:b9:56:cb:94:bc:3d:dc:2e:1f:78:a4:69:1a:08:a4:6e:
00:5b:c4:1f:16:c5:ba:a7:59:52:0e:69:97:0b:63:36:1d:a0:
ac:3b:46:b1:95:c5:f8:bd:5c:5b:9b:01:d5:50:b2:39:54:a9:
4c:e7:40:41:63:a0:ec:27:68:20:97:71:fb:71:78:dd:b3:98:
58:89:62:74:5a:59:ba:2d:ec:ad:11:25:f2:c6:d1:67:61:88:
f8:ea:5d:30:f8:cd:92:1e:b4:eb:06:24:b9:42:ab:35:e2:49:
c2:c1:4a:a2:c5:24:a8:6b:1a:86:77:3b:a4:67:60:0f:69:cb:
b8:95:eb:6c:c2:50:25:4d:50:9e:53:b0:4b:ba:37:f5:59:19:
ec:9d:d6:42:6e:43:3c:29:e3:15:3a:30:12:24:ce:3a:e1:90:
3a:b1:66:ed:c6:69:89:43:4b:ae:01:aa:2d:a8:a0:23:4e:6b:
97:35:96:dd:2e:74:8f:b0:6c:94:41:da:37:1c:26:f4:20:f2:
f2:ff:7c:43:fc:78:d2:8f:e9:02:d5:7b:d3:21:c9:fa:6d:03:
6a:fb:06:af:0a:3e:92:46:70:a6:66:d1:17:6d:ec:5d:8b:a5:
d8:94:71:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 06:38:54 2024 by rpki-client on console-fra.rpki-client.org