Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer
File: o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer (raw, json)
Hash identifier: p/PLXTV3ZF4FW6L7LtXHpy/zwMVjPAnyBwYWyLBzf5A=
Subject key identifier: A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EC24
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Apr 2024 06:12:23 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 134598
IP: 103.121.40.0/22
IP: 2403:63c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 08:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125988 (0x1ec24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 18 06:12:23 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A916C10F/serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2c:34:f3:42:86:cb:81:b9:8c:ff:61:48:0e:
91:ca:7b:c6:f6:02:c9:ff:e1:96:c4:db:38:01:c4:
f7:2e:c9:9a:5e:c3:a5:ab:ea:8a:7c:8e:fc:69:4e:
2e:c5:36:bf:45:29:67:88:d2:2e:b0:21:c7:09:a4:
11:fb:ee:20:55:72:f0:fb:fc:e4:b6:68:9a:fb:0a:
bd:fb:9b:62:a4:28:0f:54:91:39:62:62:9f:84:ca:
fd:9b:0b:d4:80:5a:41:5f:29:04:a5:9c:3a:11:a1:
89:6c:3f:10:a2:ed:42:5a:c4:d3:b6:39:e9:6b:12:
98:f9:ae:8b:64:fc:06:24:36:55:99:93:bd:ff:a5:
93:50:c5:6d:d9:e3:73:55:b6:53:df:da:db:e6:85:
34:f0:cc:88:f7:a4:21:38:bc:80:9b:5c:df:57:71:
6d:7c:9a:d9:c4:f3:bb:50:0d:a4:ec:bf:cb:29:4f:
f7:d5:81:05:59:0f:6f:01:20:a6:d7:99:ec:ab:81:
f5:ef:ab:ca:9b:b8:d2:73:bc:b5:ed:a0:6e:36:c1:
e4:47:55:03:06:1a:35:76:01:31:3f:af:6b:4b:1d:
07:04:f5:8e:ff:2e:43:c5:c0:10:d5:cf:2b:8e:18:
a8:7d:dd:b9:29:a5:55:3e:16:d1:7f:50:ba:6a:e7:
97:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134598
sbgp-ipAddrBlock: critical
IPv4:
103.121.40.0/22
IPv6:
2403:63c0::/32
Signature Algorithm: sha256WithRSAEncryption
cb:03:2f:f0:a0:94:99:7b:7d:49:f3:b3:74:c1:6d:c4:80:a1:
b8:60:d2:ae:50:c2:9b:2c:3f:8f:a7:55:0a:23:43:70:e2:ba:
2b:cb:a4:f4:d2:ce:e3:48:c6:f6:6d:3a:39:39:94:e0:62:99:
9c:7d:60:3d:7a:e8:42:5d:c3:00:50:37:31:b3:37:86:b8:ae:
a5:f2:4c:c4:13:3d:9d:cc:0a:c3:45:78:bd:a9:e7:09:a3:e3:
65:58:ce:f6:b7:c6:fe:65:39:02:4c:98:b9:24:d9:ae:a2:00:
cf:fe:2a:41:63:1a:72:77:2a:5f:b1:5a:a1:38:4c:c7:f1:4a:
10:50:91:b7:f4:8c:cd:de:38:75:ea:30:7f:20:a9:82:72:4b:
ce:eb:f8:5f:e0:6c:e4:ab:23:57:f7:cb:34:65:9d:d5:24:69:
87:6d:d5:a2:d4:f3:4f:34:86:79:0f:c0:3b:16:20:4e:5f:8a:
ac:da:b1:30:6f:b9:1c:51:b2:59:1f:ee:4e:01:25:d8:43:01:
c7:bf:33:9e:cb:54:a0:89:f8:fd:6c:12:2c:c8:12:29:d5:06:
e7:7d:97:e8:fe:27:8a:ea:5f:8c:39:97:35:52:25:b5:f7:2f:
54:a2:0e:15:a2:8a:72:d6:50:30:54:6a:2d:12:db:89:b5:28:
80:4a:4a:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 08:52:57 2024 by rpki-client on console-fra.rpki-client.org