Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iz8j61_ij1gF49J7lTe7r6fN-UY.cer
File: iz8j61_ij1gF49J7lTe7r6fN-UY.cer (raw, json)
Hash identifier: MwehnLXtLrR2iWtmtuZyLHBhW3Am2vhUHty1C1ulflM=
Subject key identifier: 8B:3F:23:EB:5F:E2:8F:58:05:E3:D2:7B:95:37:BB:AF:A7:CD:F9:46
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DAD0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/iz8j61_ij1gF49J7lTe7r6fN-UY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 28 Jan 2024 20:03:44 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 150701
IP: 103.61.18.0/23
IP: 2001:df1:c0c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 21:46:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121552 (0x1dad0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 28 20:03:44 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91E6C2D/serialNumber=8B3F23EB5FE28F5805E3D27B9537BBAFA7CDF946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cf:33:67:19:cc:a0:d1:9f:b9:2a:ed:b8:71:
9b:1b:5a:84:dd:a7:73:21:b2:f4:d4:d1:82:95:5a:
d3:b2:b7:9e:25:9d:9c:44:40:0f:cc:6d:cc:28:dc:
3b:dc:2f:32:28:2d:87:ec:33:b0:fa:de:11:77:93:
6c:cc:17:2f:93:6d:24:4f:8f:2f:d3:30:20:b0:72:
f9:f5:ff:79:39:07:09:f7:de:5a:b8:de:bc:03:63:
1d:27:13:57:5d:4d:89:66:2e:e4:af:82:74:c1:a1:
79:47:43:c8:58:ab:4e:14:29:ed:d9:7a:2b:cc:a8:
49:82:72:d5:69:a2:23:2b:a7:be:24:04:2f:ce:6e:
ff:ae:08:9d:2e:16:8c:23:29:95:22:a8:9f:fa:0e:
05:1c:4d:a8:c5:51:2e:7e:8a:04:ce:9c:0e:bf:f3:
83:f7:37:35:c8:8d:48:17:7c:bf:6f:75:39:22:b8:
bc:03:b1:73:7d:67:f6:a9:aa:43:13:83:02:5d:17:
52:eb:ac:dc:e6:b8:6a:3d:dc:20:ed:9e:07:13:ca:
a5:15:dd:ce:1e:61:3a:02:31:05:9d:f9:fb:40:d6:
c6:35:00:6c:1c:ba:e5:cb:5e:e6:de:d4:08:6a:58:
36:b8:fd:17:14:13:e7:42:ee:57:0a:36:d1:1e:b1:
7c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:3F:23:EB:5F:E2:8F:58:05:E3:D2:7B:95:37:BB:AF:A7:CD:F9:46
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/iz8j61_ij1gF49J7lTe7r6fN-UY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150701
sbgp-ipAddrBlock: critical
IPv4:
103.61.18.0/23
IPv6:
2001:df1:c0c0::/48
Signature Algorithm: sha256WithRSAEncryption
04:5c:4c:0a:e0:88:73:1e:da:38:24:5d:d8:f5:2e:34:a8:72:
20:74:3b:08:b6:51:fd:ac:34:40:83:2b:01:67:55:cb:55:6a:
d1:17:b1:bc:e8:00:fd:bb:f8:61:94:7d:fe:3d:60:73:62:aa:
68:d6:04:9c:4a:a8:44:05:85:dd:82:17:1d:25:4b:72:82:13:
2b:87:65:10:01:11:c6:77:b3:9b:b1:a9:3f:19:29:d1:a0:ab:
b9:49:63:ae:39:68:3c:0a:13:78:ed:cd:91:2c:0e:61:90:7b:
2a:bd:c1:48:2e:96:ef:75:19:8c:5e:46:86:8f:1b:ea:b2:bf:
08:3a:db:6e:cf:ba:a9:1d:b3:87:3e:35:49:8b:a8:3a:4f:34:
38:e8:9e:46:1e:04:67:bb:b5:f1:b1:a6:ad:2c:7c:f9:b8:c3:
db:ab:a0:94:b3:dd:9e:b3:29:21:5e:36:62:d5:2c:ac:2b:bf:
95:14:80:58:54:d5:88:3e:bb:78:20:0e:9b:06:9c:30:73:83:
5e:96:a2:30:9c:6d:b9:89:8c:aa:da:e0:91:b6:c4:d5:cd:42:
ae:7b:84:6c:69:12:f3:a1:17:d7:19:d0:b8:0e:f1:45:d9:99:
ce:5b:04:c2:02:51:df:36:c3:ec:50:56:ff:b5:e7:b7:e7:37:
9d:a3:77:39
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 24 22:30:32 2024 by rpki-client on console-fra.rpki-client.org