Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer
File: oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer (raw, json)
Hash identifier: OvOJOlFsaK9rIeoV7RkYvwbWWWSNJXHXbllnRiyWjhg=
Subject key identifier: A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FBA6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Jun 2024 13:43:02 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 132290
IP: 103.140.82.0/23
IP: 2001:df0:b380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129958 (0x1fba6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 27 13:43:02 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9138B72/serialNumber=A0CBB2CF7AED83C21973C70B64C0A4156C5BF5D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5f:72:31:ba:c6:3e:10:8d:22:ad:94:f1:59:
1c:3e:55:cd:7b:10:7f:c5:06:d5:9c:f9:d7:69:30:
24:ad:84:8e:8a:6f:08:4f:b0:1d:2b:d7:b0:d3:3e:
2c:f1:7e:87:7d:b0:f4:f8:63:37:a8:2e:e3:13:1a:
2f:2e:69:1a:f0:d6:12:8b:0d:e2:4e:02:d8:a7:01:
32:e2:97:c9:e6:b6:71:2b:04:da:12:62:4b:3a:13:
d2:63:ff:55:50:b9:f4:d9:bd:8a:ec:63:14:73:ce:
1b:a1:c0:b4:c7:01:76:97:26:da:67:be:7b:2c:b2:
9b:bb:5a:21:60:71:f0:7a:57:e7:a0:e2:07:7d:6f:
10:be:ce:8b:20:16:1a:38:46:e0:8b:ce:95:e4:39:
9f:df:0b:2f:a4:5b:22:39:98:9c:e3:bc:1c:bc:89:
b5:00:09:70:f2:f9:e6:1c:a6:ae:9f:a3:9e:40:f2:
e3:71:02:68:43:f8:4c:60:d6:4d:b6:fd:a6:b3:ec:
ca:50:ed:76:49:cc:a7:34:ca:3b:1d:6c:43:45:0c:
a1:0a:21:8b:90:8a:0a:c9:d0:ae:af:5a:65:5c:48:
1d:d5:2d:48:5f:77:70:76:39:60:1a:04:2a:c0:0e:
7d:0d:7f:cd:0d:55:b0:5e:14:5a:e2:56:d2:7c:90:
86:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132290
sbgp-ipAddrBlock: critical
IPv4:
103.140.82.0/23
IPv6:
2001:df0:b380::/48
Signature Algorithm: sha256WithRSAEncryption
1d:4c:8e:e1:fe:ed:4b:7d:56:92:d9:9f:d5:f6:20:7b:2f:2e:
00:9b:dc:45:75:ad:fa:9c:c0:b1:6c:f3:30:a3:0f:9a:2b:75:
24:4e:81:d4:2b:b7:e8:24:33:49:36:28:60:6d:75:f5:6c:f6:
af:ae:24:73:6b:86:50:1f:4f:94:cf:40:e7:24:f2:ac:aa:3c:
a1:70:e7:d4:6e:d8:68:d2:44:87:5f:b7:b3:7c:74:89:fa:61:
e1:f4:28:8c:2a:53:dd:68:c0:67:9a:83:7f:3f:fd:5f:76:df:
35:1e:a0:d5:20:9f:1c:80:3e:79:31:7b:15:2e:39:6d:b0:33:
8e:6f:5d:0b:22:59:d4:e2:3a:13:89:41:97:1e:95:c6:a7:c6:
67:bc:72:ce:29:76:10:8d:06:e2:ba:06:e1:f3:b4:d0:3f:ef:
ef:9f:03:29:6f:fe:db:58:6a:43:ba:5f:c6:19:8a:bd:53:f5:
af:3a:0e:c8:cd:59:45:48:bc:36:b3:46:7b:a5:08:7a:c2:f5:
e0:cc:ea:b7:5e:58:01:45:3d:1e:9b:0e:77:80:79:43:df:19:
b0:8c:70:d6:58:dc:6b:7a:1b:a4:fd:24:dc:22:84:ad:f0:e8:
c0:ed:84:ff:b8:8a:9a:90:26:d3:b7:0f:b8:81:b9:b8:6d:8e:
f3:9c:ac:2f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:48 2024 by rpki-client on console-fra.rpki-client.org