Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMMEPUtGxI8SbAboKXDrtItkY8g.cer
File: jMMEPUtGxI8SbAboKXDrtItkY8g.cer (raw, json)
Hash identifier: LPGCQE35JhR+7eouPZCb9OnK3VFTMA0W0eBIBXDnUck=
Subject key identifier: 8C:C3:04:3D:4B:46:C4:8F:12:6C:06:E8:29:70:EB:B4:8B:64:63:C8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DBF9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A64F6/E1CF3C5690DB11EEB9CD2A76C4F9AE02/jMMEPUtGxI8SbAboKXDrtItkY8g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A64F6/E1CF3C5690DB11EEB9CD2A76C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 31 Jan 2024 07:59:25 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 58534
AS: 133217
IP: 103.127.120.0/22
IP: 2404:1fc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 03:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121849 (0x1dbf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 31 07:59:25 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91A64F6/serialNumber=8CC3043D4B46C48F126C06E82970EBB48B6463C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5f:f0:95:dd:7b:8b:1a:6e:df:68:f6:ef:ad:
89:63:9e:67:53:86:60:0c:51:0d:23:a1:75:9b:0a:
9e:1d:8e:3e:9e:45:2b:ed:ce:e4:57:f5:a4:99:f5:
31:7a:a9:14:e2:e2:6a:16:dc:59:bc:21:c1:3c:78:
43:be:0f:18:14:36:eb:47:80:dd:29:d9:16:c4:5e:
a6:0c:9f:0e:9b:d2:f2:e4:2b:b5:c8:81:c6:e6:ca:
ab:87:a3:de:3a:6b:2d:84:02:d9:0b:55:d0:0b:6c:
6b:f5:1a:6b:72:1f:d3:b5:f8:54:72:4b:a8:f0:9e:
22:d9:69:f2:a8:c5:1e:f6:e4:24:2f:98:c2:a5:5c:
6d:82:72:63:ad:64:13:94:0f:5c:c0:8f:db:3e:af:
f0:44:a9:a2:34:ca:ad:2e:94:5f:33:6f:88:89:1e:
fa:4e:7b:49:da:9e:04:68:49:e6:8a:91:1e:d5:82:
82:dc:03:8d:b4:41:41:a5:e6:87:ed:ec:7b:3d:2c:
ca:b4:ae:4c:db:27:78:b0:fa:f1:7e:a9:b6:01:15:
76:e2:0a:65:07:e2:b3:f0:f0:bd:ab:2d:fb:26:63:
95:c2:f9:03:37:0d:b7:0e:35:ee:0c:dc:66:99:e2:
9f:22:d8:06:48:2c:0c:f2:16:83:b8:ae:5f:f0:d7:
2d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C3:04:3D:4B:46:C4:8F:12:6C:06:E8:29:70:EB:B4:8B:64:63:C8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A64F6/E1CF3C5690DB11EEB9CD2A76C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A64F6/E1CF3C5690DB11EEB9CD2A76C4F9AE02/jMMEPUtGxI8SbAboKXDrtItkY8g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58534
133217
sbgp-ipAddrBlock: critical
IPv4:
103.127.120.0/22
IPv6:
2404:1fc0::/32
Signature Algorithm: sha256WithRSAEncryption
70:4f:20:0f:2a:38:bd:50:4c:cf:00:09:ce:c4:e1:e0:42:f4:
d5:8f:62:98:0a:00:3f:18:fd:e8:ed:a6:1f:47:65:2b:62:c4:
b6:f2:77:77:5b:1d:25:42:06:2d:af:18:a1:bd:68:ce:45:09:
1b:fc:91:b9:58:2c:a5:0c:59:9f:83:b2:28:d6:36:e4:ee:24:
63:17:89:46:e4:6b:00:83:c7:e3:5b:a1:71:ac:84:50:9d:65:
1f:d5:af:5b:6f:5e:de:b1:f2:dc:77:4c:42:fc:61:d8:79:bb:
fa:df:8c:89:f6:7d:1b:12:71:38:8f:5b:f2:8b:d8:f1:ee:66:
09:d7:0c:05:68:19:db:5f:f1:b5:83:1f:42:cd:41:6d:bc:4f:
44:e3:35:c4:3d:e7:a9:43:b6:02:06:68:d2:ef:ea:17:5f:fa:
42:ff:5d:4a:3a:43:66:09:6e:f2:c4:89:f0:7b:98:62:38:48:
54:1a:9a:d0:b3:f5:02:27:c6:c1:41:2f:ec:51:d4:02:e8:aa:
ab:4d:27:5b:4b:01:2c:ff:a3:e9:c4:c2:0a:42:3a:0c:19:62:
c4:2a:0a:6e:15:ba:9d:ab:2b:13:ae:4b:1c:43:16:b9:5f:6e:
0d:5b:be:b9:f2:79:5b:ae:c3:fb:b3:b6:88:db:37:89:12:b5:
57:72:df:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:05:16 2024 by rpki-client on console-fra.rpki-client.org