Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer
File: oo2gvpAdmDpDPYM1idFnv0hvZPw.cer (raw, json)
Hash identifier: 2jus4qjwtzSTRUEjM3uhOQV+7uUdqXwv3143jfEQySE=
Subject key identifier: A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CA44
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 10 Nov 2023 13:21:20 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 150389
IP: 103.29.8.0/23
IP: 2001:df1:74c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 03:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117316 (0x1ca44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 10 13:21:20 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A912720E/serialNumber=A28DA0BE901D983A433D833589D167BF486F64FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c3:a5:a2:bf:be:1e:19:eb:22:14:2b:f9:d2:
18:9b:b6:c3:96:22:0e:37:6e:5c:0c:cb:e0:ff:a5:
d3:24:33:f9:56:d3:91:2b:d0:1e:09:99:bd:22:3a:
5d:37:9a:a3:a5:3b:d2:d6:87:c6:c8:47:c7:3f:70:
04:65:98:22:e0:d7:5e:a8:fe:5b:2e:22:e5:00:04:
e4:90:18:34:d4:a8:4e:54:fa:a2:6d:0f:a2:01:f0:
77:6f:4a:a3:30:cd:8f:c9:68:13:5c:c8:b2:4e:68:
aa:ac:3f:aa:2b:62:c5:4c:e2:31:6b:5b:55:bf:9f:
5e:bc:36:4c:ff:7b:d5:ac:4f:54:98:bd:16:31:13:
27:65:53:9e:e0:c7:bb:97:32:97:db:ed:ba:0a:ec:
ce:e8:bd:ba:29:fa:d8:06:d7:4a:81:72:c6:76:70:
44:b6:b3:dc:15:ff:e4:41:6f:63:f9:4f:d6:78:ac:
db:5f:ac:71:ca:85:60:08:1d:d5:77:d4:0c:5f:f9:
cb:84:75:a7:1e:2e:90:19:90:2f:1d:ee:4f:99:a9:
30:6b:32:fc:73:f9:5e:36:de:f6:1d:e5:55:b8:eb:
06:0c:6e:93:d2:60:9c:ef:3e:57:57:e8:7a:25:e2:
13:c3:52:2d:45:70:bf:46:4c:92:ca:43:64:c0:04:
b8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150389
sbgp-ipAddrBlock: critical
IPv4:
103.29.8.0/23
IPv6:
2001:df1:74c0::/48
Signature Algorithm: sha256WithRSAEncryption
82:45:0f:01:d6:c2:02:1e:6e:21:c6:95:92:16:f5:98:1f:a7:
e3:e7:ba:f0:53:7c:6a:b0:0e:85:9f:ae:6f:33:dd:78:c6:c6:
cc:c5:55:e8:1d:b7:f1:39:4b:2e:98:a3:8f:6b:84:9e:4d:db:
be:3a:24:9d:37:db:e1:d3:d1:18:a9:31:8f:a1:52:a7:17:e0:
b0:70:2f:a8:ba:c4:a5:6c:c7:a4:d6:f1:62:45:1e:9d:ca:86:
d5:8e:4e:3d:ce:55:82:73:3a:4f:01:df:e6:5a:81:0c:10:3e:
a9:62:f9:2c:aa:cc:10:46:09:86:d8:d4:78:de:ff:86:08:c0:
fd:f3:79:c1:ac:b6:5c:b6:88:ac:4c:d2:eb:96:bf:e0:62:9c:
5f:31:b3:d9:5c:da:1e:8a:76:cc:66:ca:97:6f:0a:1c:76:de:
23:f8:49:21:ef:54:0b:f8:64:cd:23:79:e0:a4:8a:ad:c3:bb:
c7:6a:96:eb:19:65:49:93:b4:68:6b:06:1b:0e:51:38:cc:cd:
8c:00:0e:d2:74:e4:59:85:33:56:cb:82:2c:8e:1f:bb:a1:c8:
2b:21:18:fd:38:0f:5d:53:57:5e:7c:ea:74:74:12:f5:5d:89:
a8:23:19:ed:68:d0:74:10:95:c3:54:aa:2e:85:4d:8c:6c:93:
d5:09:d5:b4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 04:21:01 2024 by rpki-client on console-ams.rpki-client.org