Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qv-68mWqykyVF6_rf1T8yw-x3Bs.cer
File: qv-68mWqykyVF6_rf1T8yw-x3Bs.cer (raw, json)
Hash identifier: ZFD04zX3lkFTrkyCiOEZLSPZ9xbibTcVRA6W9lBbYgs=
Subject key identifier: AA:FF:BA:F2:65:AA:CA:4C:95:17:AF:EB:7F:54:FC:CB:0F:B1:DC:1B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A558
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916216D/A3991E24B7C011E3B499F1325911EA32/qv-68mWqykyVF6_rf1T8yw-x3Bs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916216D/A3991E24B7C011E3B499F1325911EA32/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 26 May 2023 15:52:38 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 132884
IP: 103.26.244.0/22
IP: 157.119.184.0/22
IP: 2407:d700::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 17:32:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107864 (0x1a558)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 26 15:52:38 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A916216D/serialNumber=AAFFBAF265AACA4C9517AFEB7F54FCCB0FB1DC1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:08:6a:f2:99:ee:03:8d:f2:4f:df:8d:7c:94:
77:17:5d:97:56:4a:17:a9:fd:2f:a1:c0:74:8c:ba:
8a:ff:74:41:f2:18:db:ed:a2:d8:e5:a5:e6:bb:4d:
61:dc:17:78:33:b7:e2:d3:c6:e3:e1:82:e1:3f:e3:
03:ed:6e:c2:e2:5c:00:e9:83:ca:1f:30:a5:01:e2:
cd:d7:65:81:24:b9:87:b9:4c:6c:d7:18:e6:45:3a:
57:e8:dc:82:ea:cd:b6:6a:90:21:46:69:34:f0:d3:
74:1a:5d:24:82:d2:93:44:bb:6f:f9:61:2b:d7:3f:
e0:66:96:48:9e:44:d8:3d:46:78:29:13:bd:59:26:
da:55:f9:4e:7e:c3:e1:01:2e:5b:a6:c5:5e:95:0e:
71:0e:28:9a:37:d3:c7:71:d9:b1:16:cf:14:5f:78:
f5:da:e8:89:ef:e7:8b:16:1d:0d:6d:90:8b:e7:dc:
b5:81:c9:e5:cf:df:16:72:f8:00:f3:b5:5b:18:8d:
2a:38:23:31:97:13:90:c7:75:78:3b:d6:9e:e2:dd:
1e:7e:c9:32:12:0a:6b:08:ea:93:a3:02:32:df:fb:
17:f9:7d:9e:87:28:17:f6:43:a3:62:d0:de:3d:a7:
e7:22:ca:15:e2:ff:4c:50:e4:70:fe:04:d1:ef:f5:
7c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:FF:BA:F2:65:AA:CA:4C:95:17:AF:EB:7F:54:FC:CB:0F:B1:DC:1B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916216D/A3991E24B7C011E3B499F1325911EA32/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916216D/A3991E24B7C011E3B499F1325911EA32/qv-68mWqykyVF6_rf1T8yw-x3Bs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132884
sbgp-ipAddrBlock: critical
IPv4:
103.26.244.0/22
157.119.184.0/22
IPv6:
2407:d700::/32
Signature Algorithm: sha256WithRSAEncryption
4e:96:e2:30:96:b6:92:35:80:13:2d:5b:37:cd:ec:48:ea:ad:
50:7a:b8:c9:57:7f:24:74:63:e8:8c:f7:d5:fb:5f:40:58:17:
6a:42:4a:0f:8d:96:74:0c:96:dd:2a:01:66:14:50:9b:5d:f7:
f1:d4:e3:14:4e:37:a7:8f:e7:57:a6:a8:7e:53:ad:0f:e1:23:
d8:7f:db:16:e5:98:dc:1f:a7:5a:f1:2d:05:a3:79:07:62:be:
34:30:70:1d:c0:b3:c8:9a:c8:ca:a0:25:b2:d6:d4:79:59:a5:
f0:a2:25:92:5e:92:3a:49:5c:32:62:b7:85:8c:4b:3b:ff:31:
2a:1c:f8:2b:07:74:01:06:d6:be:bb:c2:6a:c7:b1:3d:f3:8c:
6f:e2:80:d7:d0:16:89:36:28:dc:36:19:bc:64:73:6b:6c:8c:
f3:a5:3d:5d:de:cf:95:91:46:2e:d5:f9:27:28:48:cc:08:65:
d9:fe:10:c3:be:29:5d:6e:a8:86:e3:83:b7:43:9d:ab:4d:79:
c2:e0:ca:db:9f:e9:bb:ea:4f:5d:06:75:84:61:72:f1:d4:66:
83:41:18:55:52:8b:b0:2a:34:00:51:45:6a:20:af:c9:ce:20:
f6:90:43:4f:52:e4:0d:9d:1e:b0:ed:d0:f7:35:77:19:bd:20:
f6:f4:34:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 19:17:33 2024 by rpki-client on console-ams.rpki-client.org