Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sLQAdlL7PRQyiBOz5X7v8XdZz_I.cer
File: sLQAdlL7PRQyiBOz5X7v8XdZz_I.cer (raw, json)
Hash identifier: 2/fd+0PjJQu3Wq9jgGGjZ7S/ISfUCuMxrLc6XgoiCsY=
Subject key identifier: B0:B4:00:76:52:FB:3D:14:32:88:13:B3:E5:7E:EF:F1:77:59:CF:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D58D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C90F3/8E1C1E76C55A11EAA9231F67C4F9AE02/sLQAdlL7PRQyiBOz5X7v8XdZz_I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C90F3/8E1C1E76C55A11EAA9231F67C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 31 Dec 2023 21:59:47 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 138472
IP: 103.126.96.0/22
IP: 2001:df7:4300::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120205 (0x1d58d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 31 21:59:47 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91C90F3/serialNumber=B0B4007652FB3D14328813B3E57EEFF17759CFF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:0d:e9:dc:e5:47:26:de:2c:a1:3b:32:00:13:
36:34:17:a4:67:00:c0:da:23:ce:eb:9f:b6:1b:b8:
66:8a:86:df:4a:c2:a6:1c:a2:15:d8:e7:5f:4a:8d:
39:ba:5d:10:4a:03:11:a0:a3:f0:00:cb:8e:79:fa:
ce:ba:ea:6c:9b:23:f9:12:73:9a:83:ec:ae:f8:a4:
ba:a0:23:a2:bc:6b:d9:66:69:a4:0c:82:ed:63:2e:
f6:d5:ab:f9:04:91:bd:11:17:84:76:8c:5e:69:b0:
e0:45:99:f7:31:e3:fe:a7:2c:d0:ea:63:b8:01:57:
4a:4b:a6:4f:90:ac:ce:9a:95:73:5e:37:de:f2:95:
c6:79:a7:7d:73:0c:6e:5b:e6:df:36:7f:36:87:e9:
73:70:7d:bf:39:19:5f:0a:33:a2:a6:99:0e:35:aa:
4a:a7:92:30:56:e1:64:45:5d:8d:6d:11:82:a1:f9:
3d:98:74:ce:f1:5c:87:f3:61:aa:aa:52:8f:40:5e:
d9:cc:49:ab:c0:95:31:a5:73:99:6f:df:78:66:b5:
61:7c:0d:19:12:9d:73:fd:2f:cf:7d:7e:48:95:5e:
0c:70:92:72:b0:dc:d0:44:4f:b6:be:4f:d7:c5:1f:
e2:37:55:09:d1:0c:af:c5:d5:50:18:13:45:13:18:
cd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B4:00:76:52:FB:3D:14:32:88:13:B3:E5:7E:EF:F1:77:59:CF:F2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C90F3/8E1C1E76C55A11EAA9231F67C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C90F3/8E1C1E76C55A11EAA9231F67C4F9AE02/sLQAdlL7PRQyiBOz5X7v8XdZz_I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138472
sbgp-ipAddrBlock: critical
IPv4:
103.126.96.0/22
IPv6:
2001:df7:4300::/48
Signature Algorithm: sha256WithRSAEncryption
6a:58:32:50:a4:77:e0:fc:6e:e6:91:94:40:86:d0:01:4a:02:
e1:44:30:e3:1d:cc:71:63:22:96:94:8b:1d:96:10:ed:31:75:
e1:0c:10:46:f7:f8:1e:1c:7d:75:c8:80:e6:e6:d5:dd:37:ee:
06:b0:f6:ad:d9:b3:fb:f5:2f:31:8d:ef:a8:90:0c:0d:a3:34:
9d:c8:1d:5c:4f:32:c1:09:ff:2a:f2:99:48:4a:f4:cf:7d:8a:
3e:25:da:5e:ca:e9:8c:57:b3:b0:f3:74:1e:69:c7:9d:4c:22:
cd:c0:d3:bd:ca:5e:37:6e:61:da:b8:52:77:15:77:e1:95:d6:
5a:c5:5e:82:78:16:52:6c:de:7a:32:d2:dc:de:10:ee:c0:1d:
5a:52:61:01:64:8f:8e:06:9c:f4:00:52:24:dc:99:09:63:5c:
b4:d3:e1:db:0f:8b:f3:44:78:50:69:69:1d:4d:fe:e5:63:53:
46:43:7a:c9:de:9b:7e:55:3b:7f:06:96:58:4c:4c:e6:66:26:
53:ae:3b:be:9d:06:e8:1f:24:d9:c7:76:85:57:df:81:af:af:
16:2a:f0:b0:3a:c6:bd:5a:dd:ee:b6:58:37:88:f4:d3:37:37:
12:c1:77:7f:e0:50:e5:4e:c4:e9:62:62:db:e1:e1:1d:5c:3f:
83:2a:1f:b6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:52 2024 by rpki-client on console-fra.rpki-client.org