Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer
File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer (raw, json)
Hash identifier: G2uW4LiUOdQ7f2c4Nutk8R2LX+pJIjUcn/CHnVRzzvQ=
Subject key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D119
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 Dec 2023 11:51:20 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 151671
IP: 103.255.96.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119065 (0x1d119)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 11 11:51:20 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:93:a9:8a:17:11:c8:2d:ac:34:35:99:50:67:
11:51:23:7b:e0:12:73:7e:5e:75:68:10:b2:fc:60:
73:8a:4f:16:01:7f:11:3a:33:2e:58:23:dd:8c:ae:
e8:11:93:07:73:a2:39:ba:e0:49:ef:21:5b:d9:23:
20:d7:47:65:d3:b9:1c:bd:9b:53:d6:2a:44:2a:79:
00:7a:62:83:f2:4d:6e:74:0e:2d:85:ce:dc:cb:e7:
d4:eb:13:07:e6:c6:a7:fb:40:be:ad:d7:45:af:0a:
41:5d:3c:77:be:76:dc:99:30:c7:0d:f6:f2:cf:cd:
ef:fe:7b:f9:c8:64:1d:4d:41:8b:fb:2e:96:89:42:
59:92:80:b2:9b:ab:90:76:e9:72:bf:6c:bf:27:61:
01:c5:38:a7:6d:4b:cc:b7:6d:cf:3d:1a:89:0f:f5:
03:ac:fe:ea:9d:4d:1e:3e:64:ff:98:25:f5:06:96:
42:23:cc:1a:0d:1e:46:df:b1:aa:cd:8a:61:69:4c:
98:67:f8:1d:e4:0d:93:20:05:6c:54:1b:0d:ec:98:
6b:6b:40:13:8f:c9:17:90:99:08:7a:e3:b8:f2:ea:
c9:b3:0c:f6:07:1d:af:92:a1:fd:2d:ec:1b:ed:b1:
9a:34:39:39:37:62:29:8c:11:6d:08:51:5a:62:68:
d7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151671
sbgp-ipAddrBlock: critical
IPv4:
103.255.96.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:1c:1f:d4:1c:30:0c:04:30:52:97:11:b7:4f:d8:fd:10:04:
58:fc:cb:01:d4:0a:7a:62:ee:c7:2f:ea:44:13:05:ae:e4:d4:
48:91:55:59:e3:59:5d:81:de:b4:6d:0f:d8:e3:f9:29:05:ab:
96:c3:df:ad:09:dd:d7:b1:14:06:cf:9a:18:bf:49:a2:11:2b:
58:87:0c:4a:e0:a9:e3:f2:92:3a:3c:88:02:ab:bf:c3:b8:b1:
5e:ef:92:58:0b:c4:49:37:a1:b0:15:92:f4:c4:7a:bd:16:bd:
a4:88:cf:26:5f:4a:4d:fc:20:7f:4e:79:34:4a:c6:f1:4d:71:
a5:a8:b5:fb:4b:2b:62:d5:6d:e5:d6:79:97:c6:ba:bc:bb:a4:
50:cb:d5:d5:1a:c5:3e:63:24:31:d3:fb:de:cf:da:cc:56:5f:
ed:79:be:2b:d7:80:30:24:a4:f1:68:99:c1:24:ee:e4:42:69:
36:91:14:bd:ac:1c:d8:70:91:d9:cc:6d:e1:e8:b9:78:10:e0:
79:e0:2f:21:2d:fa:ae:0c:40:ec:01:8b:4c:ac:81:e5:4c:4f:
c1:e2:7f:f0:fa:82:3f:33:30:f9:a9:3f:2d:d1:6a:58:5f:b2:
f0:79:c8:f1:9d:ae:6d:f9:d6:76:a4:13:a8:ba:a8:8e:aa:32:
fe:f4:c6:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 06:14:37 2024 by rpki-client on console-fra.rpki-client.org