Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer
File: pTalTbQeRB3nTDP29zbFrXpmhcY.cer (raw, json)
Hash identifier: vCPuVwewhHT5MqvXEajmYEtIAA2w3dOKc8///SuC4LA=
Subject key identifier: A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BF2F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Sep 2023 19:09:31 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 9653
AS: 151415
IP: 103.228.124.0/24
IP: 202.3.64.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 08:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114479 (0x1bf2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 22 19:09:31 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91DC75C/serialNumber=A536A54DB41E441DE74C33F6F736C5AD7A6685C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cc:a0:12:4a:28:31:45:ee:02:db:24:8e:bc:
0a:5a:e2:30:42:34:01:11:f5:53:70:87:06:02:94:
14:f1:b9:5f:78:22:03:5c:84:17:04:21:1a:da:51:
28:9b:6c:a5:eb:90:7e:f9:8a:a4:fd:02:b3:23:13:
b1:30:d0:39:ad:db:b1:a9:6d:e8:f6:19:b6:2a:b2:
1e:fb:7c:cf:68:58:7d:eb:0d:89:d8:19:b9:06:54:
72:de:a1:ab:f7:11:60:c0:2c:95:71:d3:dc:0e:81:
cc:9f:ae:1f:d3:f4:b7:19:22:cb:52:93:be:14:c4:
3d:dd:d5:47:5e:63:eb:b3:8b:80:1c:df:5c:41:5f:
1b:28:f9:8e:80:3f:fa:63:34:d8:04:17:be:e4:f0:
fa:e0:97:f3:73:db:91:83:13:e2:a6:22:3f:0b:23:
c6:1f:8c:ef:06:e9:f3:5a:e5:5e:27:c5:92:06:b7:
bd:16:73:73:6d:76:91:f8:81:31:8f:1e:84:dc:4d:
85:e6:77:10:2c:77:b6:2f:13:9f:d3:57:60:6d:ac:
b4:32:f1:30:8f:48:5a:04:03:50:09:e7:d2:d3:d5:
8d:b4:5d:c3:46:3a:76:3a:8c:7e:d2:8e:35:36:6a:
ff:71:32:21:48:7f:d7:fc:e2:a8:68:5d:70:f4:49:
97:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9653
151415
sbgp-ipAddrBlock: critical
IPv4:
103.228.124.0/24
202.3.64.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:a0:a2:8e:3b:8c:2f:66:d1:0b:99:95:2f:31:5f:a4:bf:93:
66:aa:07:51:95:25:f7:1b:ac:98:5f:68:ff:17:3b:3d:34:fe:
85:ce:05:7a:b1:0e:e5:95:5f:92:96:6e:6d:13:f0:93:55:50:
41:bf:5f:be:f6:21:bf:28:f7:2c:da:f0:13:06:de:60:1f:94:
19:8e:2b:92:e0:d9:3a:cf:f5:c6:c3:3d:2c:0c:3d:53:2c:04:
40:34:8b:70:9a:b5:20:80:cf:88:c3:40:0d:3d:f1:b8:7b:e7:
8b:45:73:58:44:c9:a9:d0:1a:7a:e5:1b:74:5a:25:72:f4:ec:
1e:70:70:4f:29:ac:c9:50:20:68:3e:0d:01:d6:52:42:89:21:
81:63:05:7f:34:cd:90:2f:df:9b:93:4c:1f:66:77:f4:52:11:
b5:4f:a9:d8:15:d1:25:db:88:05:25:74:2f:1f:49:1c:c6:47:
04:7d:4f:38:3f:64:42:db:9e:04:b9:ef:6c:24:49:d6:63:e2:
be:0d:2f:40:12:ee:14:93:a1:fa:08:c8:36:f3:9f:8e:3d:fd:
0e:0c:f1:16:78:19:3a:9b:3d:29:70:4f:01:4a:c2:83:86:2a:
50:c5:76:b1:9f:58:97:c3:d6:95:38:6b:6b:51:29:43:c1:c7:
46:54:e1:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 08:35:55 2024 by rpki-client on console-fra.rpki-client.org