Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxVOxxr_DOw2jHltJXw6nAWJo_8.cer
File: oxVOxxr_DOw2jHltJXw6nAWJo_8.cer (raw, json)
Hash identifier: AQNf4jN8sgI/h8H6B7vlOudNAxAJBnc7hcrECOAN3tM=
Subject key identifier: A3:15:4E:C7:1A:FF:0C:EC:36:8C:79:6D:25:7C:3A:9C:05:89:A3:FF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DC3B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914A2C1/7FFDFB64C09E11EEAD3B8554C4F9AE02/oxVOxxr_DOw2jHltJXw6nAWJo_8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914A2C1/7FFDFB64C09E11EEAD3B8554C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Feb 2024 01:09:15 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 151678
IP: 103.23.94.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121915 (0x1dc3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 1 01:09:15 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A914A2C1/serialNumber=A3154EC71AFF0CEC368C796D257C3A9C0589A3FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0d:62:b1:5f:f2:96:13:44:bf:55:a4:a6:34:
e5:44:10:9d:01:5f:87:be:25:d2:37:a5:72:2c:5e:
ca:11:1c:10:4c:cd:a5:64:d1:fc:11:cc:9a:7c:8f:
d2:6f:0c:5e:fd:74:30:90:1c:53:74:b3:23:0d:dd:
42:32:48:e0:14:10:ab:32:4a:d1:25:e9:7f:42:fa:
97:c4:27:bf:8e:6e:11:0b:66:08:14:25:33:ad:39:
c1:25:1c:54:b0:50:70:5a:e9:b9:57:a1:d9:14:cb:
1b:01:9d:e0:63:55:92:bf:d9:88:d6:92:ff:e0:95:
85:3d:61:c3:f5:e1:d7:fe:9c:12:60:d5:e3:fb:61:
f9:d7:2f:6e:77:72:f1:d7:ec:13:b1:14:54:3b:c0:
b3:cc:3d:09:c0:6d:8d:d7:e9:95:c1:f8:69:97:9a:
b7:82:46:ca:75:b6:43:4d:7f:d4:6b:72:44:e6:55:
6e:18:f1:88:a7:7d:f2:58:a0:35:8d:6d:20:0b:51:
fc:00:62:18:37:b0:b0:59:91:18:e8:de:06:6f:c3:
91:9d:e3:9d:47:80:cc:c2:ae:e7:a2:03:ea:6c:c4:
68:ae:56:84:79:34:76:cb:b7:d3:88:8f:86:3f:aa:
df:6a:2b:fd:40:7f:f2:60:49:ef:fb:cc:10:cf:da:
7f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:15:4E:C7:1A:FF:0C:EC:36:8C:79:6D:25:7C:3A:9C:05:89:A3:FF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914A2C1/7FFDFB64C09E11EEAD3B8554C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914A2C1/7FFDFB64C09E11EEAD3B8554C4F9AE02/oxVOxxr_DOw2jHltJXw6nAWJo_8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151678
sbgp-ipAddrBlock: critical
IPv4:
103.23.94.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:f1:1e:65:91:f0:06:aa:27:d6:c6:d0:b5:00:f1:e4:3c:bd:
12:be:0d:29:29:66:cd:8f:e5:7f:8c:03:6b:46:6c:b3:73:bd:
1b:97:17:a2:06:32:1e:0f:84:68:1e:ec:f4:d2:1d:90:e1:1b:
c7:ba:ee:ca:90:35:3c:0f:2f:bc:1b:f0:d4:00:18:fa:c8:26:
20:c9:a8:8e:c3:af:2a:0e:67:19:99:fe:8d:a3:c0:24:11:9d:
cf:c2:ad:84:f2:db:fc:62:5b:a3:62:9b:37:30:28:f6:c3:38:
d2:ed:ba:91:27:ce:26:a7:e6:63:02:e1:44:e6:70:fb:85:e4:
01:77:75:e4:a8:08:1d:80:24:b9:b5:d7:45:e4:9e:dc:9c:9d:
1b:dd:6a:c3:73:10:9a:1c:d8:55:c4:a0:6e:d5:e9:43:af:66:
7c:37:c1:af:7d:71:a0:85:2e:7c:3a:78:b1:b5:3f:c2:7e:63:
a8:7e:b0:ba:26:b8:0c:bc:cb:8f:26:22:5d:ec:97:78:ca:f4:
e3:ea:97:20:d1:d2:75:96:5a:0f:ce:9c:bd:ed:de:67:cf:7c:
a6:0f:c0:37:18:4b:e0:a1:76:a1:57:6b:5f:5b:84:92:30:9c:
b1:1f:4c:cb:fa:40:f1:21:e8:18:88:11:bb:5b:b9:85:04:03:
3f:1a:e6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 11:35:40 2024 by rpki-client on console-fra.rpki-client.org