Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if6Hw1yRomVecR6xVLheb47OI1M.cer
File: if6Hw1yRomVecR6xVLheb47OI1M.cer (raw, json)
Hash identifier: BcoHyyvQHoSgeiUz2REJ7LXXaCbAJcBLNVG8UpdU494=
Subject key identifier: 89:FE:87:C3:5C:91:A2:65:5E:71:1E:B1:54:B8:5E:6F:8E:CE:23:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FEF1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912E5AE/33F74DDC3DCC11EF89B5B073C4F9AE02/if6Hw1yRomVecR6xVLheb47OI1M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912E5AE/33F74DDC3DCC11EF89B5B073C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 Jul 2024 08:21:19 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 132392
IP: 103.20.18.0/23
IP: 2001:df0:402::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130801 (0x1fef1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 9 08:21:19 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A912E5AE/serialNumber=89FE87C35C91A2655E711EB154B85E6F8ECE2353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a6:8d:14:7c:bc:a5:cb:60:bf:2f:d8:5e:74:
c0:0a:63:48:67:1f:6f:c5:c7:ae:21:e7:df:d1:7e:
c5:4a:55:b6:c0:c7:38:07:d8:6b:f8:03:8f:0c:ab:
a4:10:8b:95:6d:53:3d:af:f2:9b:33:90:84:5f:3f:
e3:ad:f5:d3:e8:5e:71:c3:91:f5:96:a4:d0:d4:e5:
31:ec:67:59:56:30:93:03:9d:c2:80:37:89:9e:ec:
8b:6f:d5:7e:41:b7:c5:a9:54:91:1d:35:a6:a0:32:
0c:3c:bf:1c:dd:9e:74:02:b4:0b:df:34:b5:eb:89:
45:f9:92:74:0b:71:28:d5:6d:bd:1c:8f:2c:ac:32:
ff:35:29:d6:36:23:78:e5:d3:1d:ff:eb:4c:ac:8f:
e5:ca:c9:3d:0a:09:c1:f6:4d:8c:2f:ce:48:2a:42:
cd:cd:1b:45:dc:27:3a:fc:42:cd:d0:20:28:97:95:
dd:4a:13:6a:7c:b6:d2:6a:61:3c:de:f0:b2:dc:64:
d7:8d:68:6f:74:ba:18:89:ee:e5:68:d0:b6:d1:b0:
26:62:ce:97:81:f6:72:16:a3:b0:45:9b:4e:73:65:
02:43:79:49:0e:80:06:29:d1:f8:7c:1e:29:c9:d0:
e6:c6:66:72:0a:1f:bd:7c:99:61:83:5a:6e:91:17:
dd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:FE:87:C3:5C:91:A2:65:5E:71:1E:B1:54:B8:5E:6F:8E:CE:23:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912E5AE/33F74DDC3DCC11EF89B5B073C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912E5AE/33F74DDC3DCC11EF89B5B073C4F9AE02/if6Hw1yRomVecR6xVLheb47OI1M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132392
sbgp-ipAddrBlock: critical
IPv4:
103.20.18.0/23
IPv6:
2001:df0:402::/48
Signature Algorithm: sha256WithRSAEncryption
7f:44:5d:7d:55:d3:af:8b:4b:04:13:68:e5:37:13:6b:68:7a:
27:bc:ae:d6:c4:c9:75:12:61:30:48:73:cf:19:c4:84:83:b3:
04:2b:39:72:b6:bd:93:fb:a0:50:67:79:ea:47:57:d5:79:d0:
6e:a0:c4:a1:56:b0:bf:5b:8f:78:96:61:14:24:9f:8f:36:4a:
2d:d6:9d:93:a0:19:5e:d0:2c:1b:33:b4:c9:e5:0c:8e:1d:52:
65:7b:60:28:48:cd:64:e0:5a:af:36:a8:fb:df:24:20:ed:d0:
34:d9:b8:a2:59:a1:79:9c:50:c5:bc:b6:de:36:03:c7:84:cd:
3c:69:33:b8:92:4a:11:1b:ff:2b:0d:ee:29:e9:cc:09:12:aa:
5e:26:5d:14:3c:2c:8c:a8:22:ad:de:f8:53:7b:f0:78:b3:80:
12:1a:e1:e8:89:5a:81:a8:9b:a5:8d:1f:03:20:30:0d:4b:00:
83:59:54:5b:17:b8:8f:90:fe:c7:e9:1b:26:48:8c:3d:0e:20:
f1:8f:ae:ce:25:ce:01:d1:f8:69:e8:87:04:a2:52:d5:bd:e7:
4e:3e:05:31:2f:ef:2f:90:80:c4:24:26:2e:ba:ac:5c:30:09:
c8:c1:bb:52:89:2a:0f:0d:f0:c2:36:30:49:ef:d5:01:12:bd:
82:92:2c:fb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Sep 7 22:12:53 2024 by rpki-client on console-fra.rpki-client.org