Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/povAkQ-DHeyBilCjIUX3Q1XOY8A.cer
File: povAkQ-DHeyBilCjIUX3Q1XOY8A.cer (raw, json)
Hash identifier: +AO/n4BI8ygZuMtfAUurJ3FfiUz0AcGAAWQjrfndjAQ=
Subject key identifier: A6:8B:C0:91:0F:83:1D:EC:81:8A:50:A3:21:45:F7:43:55:CE:63:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A219
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/povAkQ-DHeyBilCjIUX3Q1XOY8A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 08 May 2023 18:18:39 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 142024
IP: 103.165.54.0/23
IP: 2407:46c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 06:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107033 (0x1a219)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 8 18:18:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A919B6FC/serialNumber=A68BC0910F831DEC818A50A32145F74355CE63C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e4:8d:3b:9f:ae:be:bd:0d:9d:f3:38:2b:80:
90:bf:f9:96:14:52:b1:77:ec:b4:7c:27:3b:11:72:
fa:62:81:77:27:19:fd:20:0b:ea:91:cc:4b:11:7c:
02:67:8e:3f:9e:4c:f5:e3:fa:9b:79:dc:35:d8:4a:
1d:54:91:98:30:d2:4c:ee:20:06:23:2a:86:0f:8f:
7c:84:7e:30:f8:70:a4:a7:1d:2c:ee:e3:9c:e0:35:
84:6a:40:76:65:4f:5e:04:83:d2:46:9c:82:f1:5a:
87:2d:80:6e:5e:9f:76:78:08:02:21:33:f8:a6:bb:
73:ef:ba:fe:4f:0c:44:b4:93:89:12:29:20:41:3d:
46:50:c4:1d:6b:95:a8:35:d3:08:20:21:08:4f:06:
ad:fb:b2:f0:69:ab:41:20:fa:73:e5:d9:f6:db:fd:
d6:2d:9b:15:8b:d7:15:b8:ab:51:72:2b:25:34:e2:
52:cd:c8:0d:36:c6:aa:e4:7f:17:ea:bc:9b:06:a2:
d5:46:58:f4:f4:03:45:85:c2:2e:dd:70:f2:e9:cd:
0f:c0:98:7f:0b:40:9b:96:75:4c:71:41:4f:26:b5:
2e:48:a3:9b:2c:aa:e0:71:5b:36:3f:3d:2a:b7:10:
24:de:98:2d:0b:4f:dc:47:75:82:7e:97:6c:9e:3a:
37:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:8B:C0:91:0F:83:1D:EC:81:8A:50:A3:21:45:F7:43:55:CE:63:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/povAkQ-DHeyBilCjIUX3Q1XOY8A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142024
sbgp-ipAddrBlock: critical
IPv4:
103.165.54.0/23
IPv6:
2407:46c0::/32
Signature Algorithm: sha256WithRSAEncryption
7c:57:1b:5f:a3:cc:44:87:5c:f7:2e:90:01:b6:87:94:d7:9a:
73:87:1f:f3:52:aa:a4:b5:96:51:d7:07:42:e8:6d:69:d0:72:
69:83:ad:9d:80:70:ef:2c:6d:9d:c7:ae:4f:9f:5c:37:db:cd:
90:ee:80:00:89:20:6d:51:b5:43:e4:86:e8:0a:f2:2d:ac:62:
ca:9a:c0:21:70:10:3e:03:71:0d:e4:0c:d0:60:1a:d3:2a:f2:
ed:8f:58:ea:b6:03:f3:45:55:fc:90:d3:c6:69:a1:6f:bf:56:
93:ae:12:38:32:99:46:f2:f3:8b:61:dd:d1:8a:03:f2:79:a9:
54:b6:61:56:d8:08:54:b9:a1:8b:a8:f9:b3:ae:2e:ec:46:f9:
49:46:0e:88:08:0b:c5:95:c6:95:6d:16:eb:c2:2e:88:9a:65:
55:34:ec:e0:a4:ac:3f:a2:82:2d:cc:8c:30:0e:f6:5c:aa:e3:
46:5f:4d:80:41:e6:c7:cc:f0:32:3c:4b:a7:26:d6:a3:13:cb:
cb:6e:02:a8:00:76:86:54:ab:30:d8:3c:0e:0d:ec:45:69:26:
32:65:a8:b3:37:91:4f:44:54:f3:2c:69:1b:e4:36:12:5d:ac:
fe:43:2a:5d:37:d8:bb:e6:55:61:34:5e:d5:92:a0:88:05:e9:
92:07:3c:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 07:41:41 2024 by rpki-client on console-ams.rpki-client.org