Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mtNJ9FSFO7GJKv72BIwYclgFd2E.cer
File: mtNJ9FSFO7GJKv72BIwYclgFd2E.cer (raw, json)
Hash identifier: afeQT2m3Z/KMjEzj160xTmDEll6ELrQdvwul5iyt58Y=
Subject key identifier: 9A:D3:49:F4:54:85:3B:B1:89:2A:FE:F6:04:8C:18:72:58:05:77:61
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CC38
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/mtNJ9FSFO7GJKv72BIwYclgFd2E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 22 Nov 2023 11:47:17 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 151325
IP: 103.254.91.0/24
IP: 2001:df2:6b40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 03:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117816 (0x1cc38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 22 11:47:17 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A9169591/serialNumber=9AD349F454853BB1892AFEF6048C187258057761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f7:4b:77:dd:9b:6d:0b:53:0b:3a:d1:52:5d:
a1:cb:eb:43:ad:af:8e:a6:67:e3:93:fa:53:3d:ef:
f1:f5:60:6d:e6:0a:c3:34:c9:82:17:49:4a:33:f0:
a1:36:61:c2:20:14:99:7f:a5:22:f2:eb:ec:a5:c1:
de:00:d0:8b:b0:9d:7e:0f:a1:e6:25:85:1b:ee:1e:
a4:d6:e9:28:bf:a1:56:af:c7:c5:e3:f6:e6:a6:ac:
0e:e2:67:cf:e3:2c:a4:62:21:24:df:f6:f8:9e:ee:
1a:f3:fa:3a:df:ed:0a:11:12:17:2b:9d:ca:4b:31:
3e:78:b3:56:68:a6:72:cc:72:9d:6a:5b:02:e4:e3:
12:f3:a1:18:5b:ab:ba:31:c9:c4:df:a9:99:6f:32:
c3:e0:f4:69:41:ec:8c:f5:3e:5e:f8:89:3b:9d:48:
34:fe:4f:8e:3e:97:3c:be:df:2c:0b:01:af:84:86:
1d:9d:82:17:4b:b8:79:0a:89:d6:1d:d1:3e:32:8c:
0a:f5:a6:a8:ae:f4:3f:2f:57:34:7f:60:01:f2:12:
b7:ff:7f:6d:be:5f:3a:a6:7d:3e:8a:64:cd:1b:bc:
dd:b5:9f:37:f2:d8:f7:b3:12:d3:45:53:19:b0:80:
73:85:5f:fb:15:be:84:d1:b9:06:81:8f:37:04:b0:
43:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D3:49:F4:54:85:3B:B1:89:2A:FE:F6:04:8C:18:72:58:05:77:61
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/mtNJ9FSFO7GJKv72BIwYclgFd2E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151325
sbgp-ipAddrBlock: critical
IPv4:
103.254.91.0/24
IPv6:
2001:df2:6b40::/48
Signature Algorithm: sha256WithRSAEncryption
20:6d:4a:9f:47:b7:49:39:6c:34:06:a5:6c:16:8e:f4:54:c3:
9e:97:d9:74:89:52:bb:f9:df:65:c1:c2:a3:13:81:60:62:65:
45:ec:aa:11:9d:ea:36:4f:9b:20:c8:aa:e8:68:6d:ce:f5:3b:
e7:f7:7c:71:d1:5a:0f:65:0b:88:3b:15:9a:26:33:8f:f6:0f:
f0:3a:05:87:4c:11:d3:18:f8:ff:27:99:24:5d:ef:f2:17:d0:
b8:83:0a:ba:2b:13:74:6c:87:0b:74:8f:24:bd:e5:6a:58:64:
95:70:6b:bc:b2:72:43:8d:45:8e:1b:be:60:c1:fd:8d:bc:bd:
ce:34:c1:ba:ff:a1:ac:2f:f2:bb:4f:92:de:bd:9a:e7:99:c4:
8b:c6:d4:27:26:b0:f9:63:eb:ca:77:11:9b:b5:76:e2:54:c4:
b7:67:3f:fa:4b:ea:63:b0:9a:04:cd:c6:e7:7b:5c:87:64:1a:
75:18:f6:55:e0:66:8e:46:41:3b:20:49:47:c8:01:c5:83:7a:
f3:88:7a:b7:ab:a6:bd:a9:68:82:47:f3:fe:29:10:f9:b8:25:
e0:6c:ce:46:c4:85:bf:8d:4a:3b:25:0f:64:0e:6a:ac:e5:69:
db:ee:58:19:39:b9:b9:87:fe:f2:bd:0e:ec:64:01:01:d4:c3:
1f:d2:40:ba
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 04:05:19 2024 by rpki-client on console-fra.rpki-client.org