Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer
File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer (raw, json)
Hash identifier: XwJQ6kfIjUi2cvEjal3Bt6+I1JNmSzgc4Nfj17DraPw=
Subject key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BB6E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Sep 2023 19:50:59 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 132438
IP: 103.73.44.0/23
IP: 2406:ec80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 16:32:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113518 (0x1bb6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 4 19:50:59 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a7:bc:bf:24:ff:95:a0:7d:86:15:28:ca:c7:
0a:ef:ff:be:84:9c:15:71:06:4a:5c:c0:0a:8e:e5:
15:8d:eb:47:6a:d1:aa:11:d7:a1:8a:00:c4:e9:74:
c3:6f:7c:aa:54:c9:59:b4:bf:39:1a:6d:46:5b:06:
7f:1d:44:36:f6:51:0f:bb:42:27:ba:90:8f:91:11:
20:e6:02:85:b7:2e:f3:d2:e9:3e:14:4b:75:0a:66:
26:3c:9f:43:63:08:f6:95:1d:cf:33:08:24:67:c7:
d7:b2:cc:f2:10:2a:0f:90:2a:b7:19:88:bf:2e:a2:
07:32:17:e5:6e:b3:66:2e:42:04:10:c9:a9:67:a9:
12:e6:fb:92:35:21:a2:a6:32:a1:b4:fd:7d:7c:04:
43:15:62:da:93:e9:33:fe:06:45:54:dd:61:ab:c5:
a8:cd:46:8a:1f:43:7f:3a:f4:ca:cd:68:62:e9:c5:
1d:86:ba:bc:c3:06:a5:c7:9a:7c:96:33:e0:e9:b1:
2a:19:e5:80:f8:b4:11:1b:cb:9b:96:54:59:c1:01:
fb:cb:26:62:0d:e3:3f:a2:b9:46:53:6b:ba:8f:3b:
ba:22:33:09:01:5e:4a:67:a6:1e:a3:6e:c0:3c:87:
97:08:cc:fe:d3:50:5e:97:cb:25:78:c4:83:b6:fb:
1a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132438
sbgp-ipAddrBlock: critical
IPv4:
103.73.44.0/23
IPv6:
2406:ec80::/32
Signature Algorithm: sha256WithRSAEncryption
4c:ba:9c:8e:19:17:57:0d:7c:da:fb:76:94:21:90:a0:dc:b4:
80:f2:c2:40:2c:09:59:9e:0f:78:92:47:5f:29:47:60:33:97:
7b:ba:6a:63:87:bf:36:a9:f9:fd:64:9f:dd:2c:3d:6e:2e:00:
ef:d7:36:d6:0f:39:2b:83:2c:21:f8:cc:a4:57:ab:87:d4:91:
d8:b8:69:2c:c0:d6:c3:76:9f:91:72:fd:5f:c3:15:16:17:e4:
1a:10:02:0f:f2:eb:30:36:97:20:95:21:2e:bf:9b:d6:fe:2c:
cd:5c:52:fe:b7:1f:3e:14:12:50:c1:1e:da:74:8b:8f:73:dc:
a1:aa:6a:b6:1f:10:40:36:99:fb:87:d8:52:62:61:92:4b:3a:
24:b1:91:03:00:70:49:a6:02:ab:27:6b:a2:74:f3:9b:ac:f5:
fd:2b:ba:85:e5:79:f1:0b:36:e7:8d:fa:e0:4c:42:9a:6e:d7:
3f:e8:4d:74:d4:2e:40:1d:ab:05:8d:38:80:29:8e:13:94:ff:
c8:70:d9:7a:b6:08:f5:ae:ba:5d:6d:a0:0a:65:b3:d8:86:11:
be:ed:3e:36:ea:9e:dd:a9:4a:13:fa:fd:9b:7e:16:5d:d6:55:
1e:03:e8:bd:36:a2:22:9f:c3:a9:fa:c8:a5:90:e5:78:61:87:
5b:98:0d:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 17:12:33 2024 by rpki-client on console-fra.rpki-client.org