Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer
File: siw9CrzTkZSGo-YejXiJI5Ir9qU.cer (raw, json)
Hash identifier: MXjFIaQRY2LtdLEUjYWM+e1/b1RBfsQAZZUqMUUFOsU=
Subject key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DE24
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 09 Feb 2024 03:16:12 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 38324
AS: 133617
IP: 103.118.40.0/22
IP: 103.236.224.0/23
IP: 2001:df2:ac40::/48
IP: 2403:27c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:13:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122404 (0x1de24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 9 03:16:12 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e4:c7:41:81:97:b6:b0:ba:09:98:cb:cf:4a:
92:6c:67:84:ff:24:ea:db:3d:c5:a3:a4:c9:2a:6c:
01:c1:9f:c9:bb:01:de:95:08:3c:8a:61:25:46:a4:
26:c6:3e:55:80:6e:2d:b0:25:da:3d:77:c8:f7:21:
aa:25:48:0e:1e:d1:d0:d6:1a:b2:f1:b0:98:a9:4b:
5d:d8:43:87:4b:6e:54:2d:cd:b6:12:0e:47:f4:57:
8b:e9:b5:62:dc:c2:b4:85:6a:03:1e:8c:c5:8d:0a:
dd:db:95:d0:fa:31:92:57:d5:2d:3e:ff:9f:33:12:
ca:af:2c:6e:68:cb:d6:58:b8:d0:b9:84:10:9d:96:
ac:24:b4:24:c8:d5:19:fb:73:dc:87:22:49:64:c0:
24:92:1a:4b:8a:e8:9d:01:ee:fc:9d:2f:82:8e:c5:
e1:69:d7:7d:44:9a:fa:fd:16:0c:ca:72:c0:08:e9:
a0:95:c5:71:98:54:72:e5:1d:5b:80:87:4f:d2:c5:
7a:e6:9f:da:de:68:29:c5:88:4f:0d:66:4b:91:a0:
f0:84:bf:c3:33:cc:62:52:83:ec:7b:09:ae:01:8e:
e6:35:e4:6b:c7:5d:1e:7f:c4:58:7b:48:e7:74:ae:
fa:cf:05:ef:91:aa:c1:3e:54:77:cd:e1:a6:20:52:
a3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38324
133617
sbgp-ipAddrBlock: critical
IPv4:
103.118.40.0/22
103.236.224.0/23
IPv6:
2001:df2:ac40::/48
2403:27c0::/32
Signature Algorithm: sha256WithRSAEncryption
c0:70:1d:3a:b9:b1:21:63:56:55:7d:89:72:2e:4e:a4:0e:16:
09:01:51:7b:b3:2c:42:b3:23:39:30:72:9b:39:66:9f:08:5d:
5d:7d:3d:e1:22:f4:db:83:ab:4a:52:48:60:95:c9:a7:a9:05:
93:a2:0b:64:8e:89:49:cc:bf:f2:13:f7:0e:3b:98:60:b1:37:
86:d5:09:7c:a2:1f:cf:02:0c:03:13:34:ae:0e:fa:a6:e5:3d:
7e:29:26:3a:73:64:ba:59:5d:2d:b5:a4:a6:cc:4a:38:3f:dc:
93:1d:10:ce:7a:34:57:11:52:e9:0f:30:34:78:8d:0f:ac:3e:
ca:13:a9:73:86:7a:f3:92:c4:ce:4b:76:a3:6d:81:ff:46:94:
c1:0b:aa:1d:1e:bb:96:bb:1d:fd:d6:3b:4b:76:5a:a6:9f:2a:
39:9c:49:4a:1e:02:12:66:5b:30:a6:d5:98:51:ad:f1:2c:8a:
f8:aa:cb:b0:0a:32:6d:7e:3a:88:6d:dc:e1:14:fb:ac:3a:d0:
43:80:af:0f:2a:f9:0f:9a:62:d5:52:26:c3:c8:ff:1c:f6:37:
6d:ed:e1:50:4a:65:44:20:56:28:0e:d7:b7:7e:28:8f:41:1c:
90:b7:55:75:4e:0f:6d:51:26:7e:a5:6d:bc:a4:d8:7c:68:07:
34:1b:ab:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 00:53:27 2024 by rpki-client on console-ams.rpki-client.org