Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer
File: rKpuJqXy3KoUzfyezI6c9oKaQCE.cer (raw, json)
Hash identifier: HDOKnVFJbLO5dEwRawAxmeUKRcdtJvpYTW1E861ji3w=
Subject key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B48D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 02 Aug 2023 19:48:18 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 140718
IP: 103.152.32.0/24
IP: 2001:df3:f380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 18:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111757 (0x1b48d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 19:48:18 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9b:c4:4c:2b:f8:69:e8:06:9a:3e:5c:9f:1f:
4d:d2:58:1e:30:23:cd:f2:48:fb:74:da:0b:b6:14:
64:88:3d:d0:c2:c8:02:5e:9a:af:99:fc:e8:a4:86:
08:ac:e4:25:52:ae:df:38:02:be:f0:bb:d9:5e:35:
97:69:5b:e9:2d:1b:88:43:5e:78:f9:7e:40:cb:0a:
da:a7:44:0c:19:5e:47:88:ae:29:6d:ea:6d:7f:fb:
4e:9d:4b:35:2d:0d:02:15:da:32:c3:95:44:9f:ec:
fb:9d:a5:cd:1b:c3:39:ed:c2:b4:a3:db:8a:19:4d:
e2:c3:4d:0c:e1:cf:6e:8c:ea:f9:de:de:83:10:3b:
59:42:4c:01:15:15:e7:a8:df:c5:c3:cc:0a:27:92:
25:96:84:db:53:2f:24:b8:a6:31:14:9a:ff:b9:ba:
7b:50:f8:d5:c8:f5:f3:cb:06:4c:b2:1e:61:30:ea:
d9:a7:c3:31:27:fd:cf:bf:3e:c1:83:11:12:10:c0:
ee:fb:b8:fb:23:d8:a7:06:26:1c:2c:9e:69:de:02:
6e:45:c5:9d:c8:24:07:a6:75:8c:17:bd:fa:3a:7b:
bb:5c:9a:7b:0a:37:a6:e1:9b:3e:a9:37:2b:0f:75:
25:7a:4a:1f:c1:7d:97:c6:7a:89:57:3e:c2:f9:49:
b2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140718
sbgp-ipAddrBlock: critical
IPv4:
103.152.32.0/24
IPv6:
2001:df3:f380::/48
Signature Algorithm: sha256WithRSAEncryption
47:da:1b:da:7c:e5:b6:5d:24:0f:e7:a5:e2:48:12:45:65:94:
5b:b2:e4:ff:ce:4d:17:22:9b:28:67:6f:46:37:d2:c4:ab:6d:
f8:15:66:84:82:f1:70:d5:34:38:88:bc:aa:2d:26:aa:1c:3d:
ea:eb:45:c3:22:2c:ff:8c:19:8e:e8:16:dc:8c:30:a0:17:d3:
e8:e0:7c:de:e7:84:32:ee:07:95:13:49:10:06:d5:70:00:e5:
b8:b2:78:3c:98:96:b1:60:af:f1:57:4e:7f:d2:cd:a7:e9:bc:
7f:61:3e:d5:3d:38:c5:73:57:f4:ec:87:7a:14:c4:ea:aa:a9:
0a:9e:0b:4a:c1:21:02:8a:be:ca:89:55:5c:41:ef:d9:4d:ea:
cb:31:0b:39:f6:d7:b4:7a:e2:6c:96:5a:52:00:82:f9:ab:a8:
60:55:e4:33:6e:e1:56:3f:9f:d9:6c:7d:ef:0f:a7:5b:dd:ea:
72:99:be:21:69:ea:ab:7f:04:a9:bf:5a:aa:7a:66:38:8d:f4:
67:41:95:aa:a0:5d:fd:fe:c2:99:a5:be:9b:0f:69:01:ef:3f:
eb:b2:a1:20:4c:bd:f9:11:e8:cc:5f:78:97:ff:7b:fb:55:d9:
4b:37:97:46:d7:b9:d5:09:d5:12:af:fa:fe:a5:e0:3e:01:48:
a7:78:50:89
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 1 19:14:22 2024 by rpki-client on console-fra.rpki-client.org