Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZ2DbhwxYjzFhkSKp1K3RoU7hB0.cer
File: pZ2DbhwxYjzFhkSKp1K3RoU7hB0.cer (raw, json)
Hash identifier: fWRbV45B12vSzGZzIN9Y+eYbM9Ug+7In5dpVsrg1+bo=
Subject key identifier: A5:9D:83:6E:1C:31:62:3C:C5:86:44:8A:A7:52:B7:46:85:3B:84:1D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BB05
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/pZ2DbhwxYjzFhkSKp1K3RoU7hB0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Sep 2023 21:48:52 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 140981
IP: 103.154.48.0/23
IP: 2001:df4:6880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 09:10:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113413 (0x1bb05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 1 21:48:52 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91D1E4C/serialNumber=A59D836E1C31623CC586448AA752B746853B841D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e7:b7:b7:9a:b1:87:fc:8f:75:f7:db:0d:a0:
f8:c6:d4:84:3d:0b:49:b8:3d:05:c1:7b:50:a6:fd:
d4:17:f8:f8:0b:dd:f7:b2:8e:48:60:5f:1e:2a:42:
50:bd:a7:8a:0e:10:ad:5a:e7:b6:1e:88:78:60:52:
2e:48:10:fc:f5:17:f0:6e:ca:3f:31:19:0e:c0:48:
b8:c1:90:36:99:de:a7:cf:f8:08:ad:af:9d:06:b4:
56:dd:01:72:8c:53:38:9c:5a:99:be:99:ea:89:5b:
a3:78:7f:bf:82:48:1a:47:af:f9:1b:28:31:e3:be:
cc:0c:a5:97:0f:2b:4d:af:0f:3e:28:e4:69:2c:14:
36:f6:8b:05:b9:6e:f0:95:e0:17:7b:47:38:e9:54:
14:0a:51:36:12:04:f7:06:8e:77:04:13:01:05:4d:
16:68:6b:4f:dd:e0:74:03:81:9e:75:b8:70:e9:fd:
a9:84:a6:f2:c3:a6:2f:e1:69:04:cc:16:fd:83:f3:
38:06:2e:58:b3:d1:ce:ae:6f:2f:01:c7:25:19:bb:
b8:18:83:2e:01:a9:6a:2d:07:fd:20:a5:e2:b8:ea:
92:f4:32:21:fa:29:f2:18:c6:68:fe:ec:90:10:21:
7e:ab:00:a6:a8:86:71:4c:d1:1e:3f:ea:71:ed:f7:
a7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:9D:83:6E:1C:31:62:3C:C5:86:44:8A:A7:52:B7:46:85:3B:84:1D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/pZ2DbhwxYjzFhkSKp1K3RoU7hB0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140981
sbgp-ipAddrBlock: critical
IPv4:
103.154.48.0/23
IPv6:
2001:df4:6880::/48
Signature Algorithm: sha256WithRSAEncryption
b2:68:fd:c1:aa:12:e6:cc:f8:7f:71:89:a3:a9:03:a3:f7:d1:
f7:f5:1d:7a:47:0d:bb:6f:1a:d1:69:b2:b8:4a:c4:72:11:a9:
8c:5d:04:76:f6:47:85:f9:b8:0b:4c:c6:1f:8c:6b:de:89:3c:
d0:7b:1a:d2:f3:72:18:fe:c0:6e:68:b3:d3:5a:09:29:24:8a:
a3:5f:b7:92:96:44:b0:2d:16:15:50:58:82:cd:5b:13:ac:18:
ab:bb:30:1b:68:37:46:8c:25:51:32:a4:ce:0b:cf:45:c3:61:
a6:a4:47:25:be:f5:ae:9e:5b:87:33:c8:53:d4:4e:c7:b8:02:
7e:cf:0a:98:44:35:f9:a5:e4:1d:0d:70:a2:9d:99:1d:45:e7:
54:e1:ed:9c:cd:1a:49:aa:b0:21:4a:88:e7:93:16:d6:f7:9c:
17:40:31:44:2e:37:1f:ba:e4:a8:e2:b4:8e:19:cb:ee:c8:23:
e9:cf:06:8b:45:00:5b:51:07:58:b3:7c:4c:b9:4e:8d:2a:fd:
85:8f:cc:0c:06:b4:60:46:25:40:61:04:13:68:c7:0e:2a:e8:
c8:e0:fe:cb:78:71:19:00:cb:5a:dd:21:d7:e2:5f:bc:7a:ab:
cf:56:a2:30:eb:f0:7a:53:07:a2:05:14:4a:20:3b:30:24:8a:
12:1e:25:c8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 24 10:32:00 2024 by rpki-client on console-fra.rpki-client.org