Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer
File: n2xg5qKluzMFUknUcjhHf4nhOnA.cer (raw, json)
Hash identifier: hezq33scNqcZyaeJRBW2fVx1yxA3h0PVkXHCe/ZkTLo=
Subject key identifier: 9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AAAC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 19 Jun 2023 06:15:01 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 136609
IP: 103.93.239.0/24
IP: 2001:df1:5300::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:07:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109228 (0x1aaac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 19 06:15:01 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91D1E30/serialNumber=9F6C60E6A2A5BB33055249D47238477F89E13A70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:8d:38:ca:a4:94:4b:8f:d4:0d:5f:45:87:a6:
91:77:a5:b8:0e:1b:43:58:63:a8:9d:20:e8:81:e6:
b1:e5:04:50:9e:9d:ad:9b:c0:ff:a1:d4:48:df:ab:
da:ee:8b:ac:42:5d:b2:fa:87:cf:40:a1:f1:ce:bc:
00:d9:a3:21:d8:d4:fc:8b:a2:26:fd:e2:b0:e2:3d:
df:18:c7:bb:59:2b:b7:e9:43:c3:41:f3:7d:b7:bd:
53:6b:7e:6e:98:d3:6a:f4:dc:41:1a:c9:5c:f6:a2:
03:de:b8:d6:eb:3f:55:66:4f:ba:2c:22:b0:74:33:
09:da:d9:62:eb:f5:b2:24:fa:bf:5b:f3:ed:00:67:
90:81:90:67:0b:70:c7:58:a9:dc:cb:3f:07:dd:69:
54:76:99:53:01:00:16:9b:cd:24:b6:c2:ba:8e:fc:
fe:75:3c:e8:48:81:80:59:fe:04:f5:df:c6:d4:ce:
05:c4:4d:ab:ae:38:c5:3f:2c:76:87:8c:94:64:6e:
29:00:93:94:a0:df:67:bb:2e:32:ba:5d:6b:6d:ff:
81:d9:9d:a6:2d:af:41:2a:86:41:7a:17:57:d4:50:
8e:26:be:5a:e3:98:92:dc:dc:79:fc:fd:35:7a:8d:
44:fe:8b:eb:fe:f2:7f:1d:18:2d:4d:d5:fb:69:82:
30:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136609
sbgp-ipAddrBlock: critical
IPv4:
103.93.239.0/24
IPv6:
2001:df1:5300::/48
Signature Algorithm: sha256WithRSAEncryption
80:10:69:3b:c8:81:71:2f:cc:22:7b:30:85:d4:a5:b8:32:a3:
71:eb:4c:0c:70:9b:0d:58:40:92:32:f3:f5:b9:86:c6:87:5f:
0f:a3:de:8b:ec:30:b2:60:f5:a4:b8:ab:47:c5:4c:96:71:4a:
22:71:0d:6d:4d:a4:48:08:fb:b2:49:81:89:02:ad:19:3b:fe:
5d:a2:a4:17:86:53:23:8a:61:cf:74:16:86:cb:ea:20:ef:71:
46:f7:1d:7c:94:f4:cc:a8:8d:00:22:ed:ba:9d:3b:12:db:e5:
a6:e7:67:f7:f4:b1:96:cd:fd:e7:12:67:63:b0:4b:86:e6:3a:
b9:e6:8b:d3:f3:fc:20:6c:39:5e:66:f4:fa:f7:d1:36:dd:0e:
47:8a:95:41:68:b3:b9:09:c4:a7:5b:02:38:0e:ae:cd:20:33:
cf:62:5b:41:7e:11:55:77:a8:a5:63:9a:ac:73:e9:2c:48:aa:
b8:33:e6:71:90:fb:7f:73:07:24:39:ec:05:4b:5e:8b:92:8c:
3b:90:ad:97:f7:16:df:45:64:37:c5:cf:1d:a7:72:4e:64:2f:
22:9e:4a:ba:91:f9:09:50:64:d0:a0:67:38:d5:7d:d7:bf:22:
de:52:a4:9f:a4:d9:de:ae:56:05:6f:bb:bb:85:d1:3c:45:7f:
f4:c4:7f:e9
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 06:38:57 2024 by rpki-client on console-fra.rpki-client.org