Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer
File: lATO33S5SXRR7zK7ehK-1x0sI-U.cer (raw, json)
Hash identifier: MblHUsQbIpm9MsRv9pEE6vKtaW6qSIXsTOc4XzjGA8U=
Subject key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AE7B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Jul 2023 15:06:11 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 151473
IP: 103.229.252.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 02:22:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110203 (0x1ae7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 5 15:06:11 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:01:02:04:84:51:37:12:ce:80:a1:d9:d0:41:
11:c7:22:b3:07:0d:c8:24:a3:a3:d0:a4:35:2f:cf:
20:8d:74:11:f3:ef:40:0f:cc:be:67:bf:0e:b6:cf:
f9:60:57:af:74:43:d0:f7:4b:19:a8:5e:b9:5f:b2:
12:22:39:17:d3:9f:92:20:fd:15:ed:bc:ad:9c:49:
89:99:bd:66:e5:86:cc:99:e1:b2:78:97:d0:a1:a3:
61:71:ec:75:3c:4e:6a:cf:88:0c:cd:4f:2f:f3:15:
42:10:cf:34:dc:a6:bf:2f:91:24:2c:b5:55:68:05:
cf:30:be:af:a6:23:58:f9:52:fe:f1:e9:3a:4c:69:
47:d4:71:94:53:7a:33:88:9e:c8:ed:9d:85:dc:21:
b9:5d:1c:1c:4f:a8:65:51:7a:4d:7c:f0:61:7c:4b:
6f:aa:88:62:2f:56:99:c7:b0:a2:cb:fd:76:ce:e9:
62:f2:7a:f3:a0:f6:9f:ac:e3:c2:4e:85:a9:b9:ef:
76:36:03:d5:df:e2:af:82:cc:ee:7c:ab:7d:f3:ad:
ef:51:22:eb:16:09:82:6b:6e:8e:30:75:07:b2:d4:
80:ad:b2:36:eb:95:2d:e4:69:74:04:5e:65:be:1f:
21:40:bf:98:cb:5a:7f:12:44:3e:2f:78:20:5f:84:
80:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151473
sbgp-ipAddrBlock: critical
IPv4:
103.229.252.0/23
Signature Algorithm: sha256WithRSAEncryption
26:08:8b:42:87:2b:ec:8f:88:3b:36:f2:25:f5:e2:37:3b:ac:
bc:e1:79:55:de:cd:ce:59:0e:23:1e:7d:37:e7:56:a4:6f:ed:
25:c1:2b:08:67:cd:54:53:03:4c:59:28:aa:13:b6:2f:37:dc:
0a:98:42:ae:f2:39:77:b7:3e:db:9a:01:fd:67:df:11:ef:61:
4a:80:ef:3f:86:71:cd:8a:62:44:a2:2b:20:02:0c:fa:72:70:
75:36:ee:da:81:e6:37:97:6d:15:4f:6f:c6:32:66:a6:63:c3:
3b:ce:1b:c5:12:a4:77:30:d3:84:06:99:3f:5d:20:c0:d5:c0:
51:bf:4b:d5:b9:65:d4:07:04:18:82:fd:a3:d8:e5:bf:6c:18:
75:e9:43:79:c7:12:20:4d:1e:d9:1f:b2:2c:e0:90:2d:6a:91:
ff:16:78:ef:8b:c6:f2:70:ff:8d:49:bf:16:ee:3e:15:2e:61:
36:30:c8:e3:f1:04:08:34:aa:2d:d3:22:da:88:af:5f:12:2b:
de:3b:15:e9:de:99:ae:2a:3d:44:95:de:b4:97:d7:54:2c:a4:
25:06:be:00:56:c7:b1:21:cb:64:16:78:26:3d:1d:7d:af:34:
23:0c:04:66:6e:d2:ff:f0:2e:15:45:f8:1d:3e:62:07:6c:0a:
f9:43:13:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:13:20 2024 by rpki-client on console-ams.rpki-client.org