Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer
File: ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer (raw, json)
Hash identifier: s+92B/+QInAEPPIQRekYTeLY1w9IBBuoTaH42M5nJeE=
Subject key identifier: 8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AD32
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 30 Jun 2023 18:39:47 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 17765
IP: 203.4.188.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109874 (0x1ad32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 30 18:39:47 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91AC4FA/serialNumber=8AF7D8B864FD90452FFD6DE93B51456C79EFB3C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:60:70:9a:26:54:72:7f:94:65:6e:97:78:15:
41:db:1a:1b:97:a7:ce:a4:a0:50:90:3b:29:d9:e9:
4a:52:62:57:a9:1f:80:13:80:db:6c:25:f8:86:19:
1a:32:5a:6c:32:7c:7d:c9:14:19:6c:34:a6:82:52:
dc:d8:b5:d1:13:f8:48:cf:01:3a:3a:be:19:dc:51:
53:32:29:80:2a:4a:e8:7f:ce:96:d8:cf:6e:1a:09:
80:7b:fd:5e:3d:9c:97:b3:d2:29:a6:cf:15:1f:e2:
df:cb:c9:2e:3f:36:d6:ef:1c:1e:bb:79:d3:06:7e:
20:48:03:f8:99:60:17:39:bb:db:68:e9:82:41:5c:
69:b6:05:55:4e:67:63:eb:8e:03:30:f9:63:33:a3:
43:45:92:f1:a8:f8:c8:35:aa:3e:36:44:2e:f1:ee:
03:32:8b:cb:e7:24:1a:6c:ce:74:ef:94:f3:85:17:
3d:db:cb:9c:97:3c:d9:59:c1:69:ab:57:22:4c:1f:
f3:b0:f8:e6:8d:df:96:4a:95:e0:67:e6:86:10:14:
25:c7:c0:6f:c7:e5:eb:4b:88:a3:3b:4e:b5:d6:81:
64:a0:a6:f5:5f:bc:37:98:67:e2:2c:2b:5f:8d:e9:
f5:01:0f:bf:79:6e:1e:82:28:a2:77:d2:52:ae:98:
6d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17765
sbgp-ipAddrBlock: critical
IPv4:
203.4.188.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:a2:58:29:53:a1:34:ea:05:6e:cc:91:15:98:62:2a:71:7f:
f7:ee:5c:8c:4c:0c:c7:65:5b:67:bc:79:f1:3b:c9:79:6a:1a:
81:51:56:da:cb:76:40:a9:51:90:cb:79:38:12:01:a1:b1:be:
30:d9:13:22:b5:9f:f0:1f:d0:c5:f6:85:cd:03:78:a4:4c:04:
54:dd:83:5c:1c:e0:dd:19:08:91:8c:ef:2b:10:9b:3b:24:df:
91:9e:be:72:dd:96:a5:16:eb:0a:6d:aa:cb:7c:23:45:23:89:
dd:ae:ed:20:57:37:bc:43:86:5a:2e:fd:dc:9e:2a:1b:24:d0:
2d:33:76:2f:5d:d1:24:ed:3e:9c:a6:a8:fd:69:80:1a:ff:e3:
b6:ff:27:c9:63:32:c1:90:8f:ac:2e:14:35:25:a2:0f:9c:ea:
97:93:63:6b:c1:d3:c0:30:6f:77:e6:a5:c5:82:bd:d3:cc:f0:
1a:e3:63:ee:50:49:ad:06:7f:8d:ab:b3:21:54:cb:7c:85:a3:
21:f8:29:cd:67:b5:3f:98:c8:af:df:ed:cd:e2:85:11:b0:04:
2a:96:25:b3:53:6f:d6:87:ac:db:0d:9c:52:45:53:1a:38:e1:
6a:e8:f2:b3:34:21:be:87:7e:e5:aa:dc:3f:6a:20:44:44:c6:
39:ca:d8:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:06 2024 by rpki-client on console-ams.rpki-client.org