Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer
File: t3KDxTMROjkeMdlFJxhqz4OZol8.cer (raw, json)
Hash identifier: w+W6LVx39V+iffPQxKZzV+5Oq0fkDjjKxVcI2auqWQo=
Subject key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B593
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 07 Aug 2023 20:15:08 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 134601
IP: 103.120.220.0/22
IP: 2404:ef40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 06:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112019 (0x1b593)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 7 20:15:08 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:83:50:c2:4b:e6:02:91:38:00:4b:92:db:a3:
91:ee:05:dd:05:b8:60:5b:d2:9c:25:df:c2:33:96:
17:8d:9c:ca:ac:3a:9a:a3:bb:21:77:fa:c1:e1:c8:
ec:12:80:1c:a5:a2:a5:53:e1:18:4b:93:f5:c6:57:
86:7c:8b:c1:9d:e4:a8:eb:41:a9:a3:98:2d:3b:3f:
78:5c:fc:b9:2c:fc:81:da:40:ce:9b:4b:24:27:1d:
ae:32:0f:eb:28:78:4f:f6:17:04:59:ca:8f:a1:02:
81:46:41:ea:1b:35:3e:38:da:1e:f8:78:a5:ba:ce:
47:1e:e4:d6:66:10:ab:1e:1e:fc:e4:1e:d9:f6:4f:
e7:27:4e:0a:66:0c:bf:b2:d3:28:bc:e5:c9:7c:ff:
a6:73:23:9e:f7:ea:25:31:95:36:88:4e:26:4a:b2:
21:0d:64:c5:0a:0b:e5:09:b3:22:13:7b:0a:51:9f:
86:90:fa:ff:f2:c0:68:c0:fa:33:1b:8e:97:24:ff:
bd:e6:40:e3:5f:11:8e:51:a8:80:04:22:b8:5e:f1:
08:07:cf:9d:7f:59:b6:6e:b6:96:82:b0:59:31:0d:
2b:9f:bb:d3:41:c6:44:be:58:bc:bc:bd:b6:65:b6:
2a:18:26:f0:c6:59:fc:6a:c2:57:36:b5:16:9d:fe:
6b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134601
sbgp-ipAddrBlock: critical
IPv4:
103.120.220.0/22
IPv6:
2404:ef40::/32
Signature Algorithm: sha256WithRSAEncryption
65:08:2b:7c:8e:ff:bd:35:11:eb:0e:da:84:ab:65:32:60:3f:
d2:19:41:f6:bc:7b:96:c4:cf:71:cd:71:f2:22:18:0f:7c:dc:
7a:af:1b:59:26:c7:62:21:1a:e3:32:09:ca:05:46:b7:53:8b:
18:c9:6a:3f:2d:74:fc:bc:8c:35:5a:87:bd:60:fa:bc:c5:73:
d5:04:16:16:e8:e6:38:41:fc:27:bd:de:47:ce:91:95:1c:fc:
aa:c2:9d:51:5e:25:89:73:c2:ec:6c:0d:9f:84:f1:70:78:e3:
bb:cd:02:c6:10:9e:40:aa:c3:81:30:6d:34:f1:61:5a:7c:58:
e6:a7:13:6b:c3:8e:30:74:86:c0:cf:9b:d3:d5:2c:35:02:38:
9f:09:60:26:88:7d:1c:62:1f:04:34:5a:2a:05:13:0d:04:bf:
45:8b:2b:b5:2f:05:0a:1a:07:e7:8a:d3:99:59:5c:c7:5f:c6:
65:34:45:fa:50:4a:2e:2b:62:7e:97:e9:13:37:95:4e:bb:9b:
e3:cd:e7:e6:15:d7:a7:a6:6d:ee:cf:c0:7a:9c:a8:57:18:51:
99:d3:e9:99:0c:5c:e7:22:11:ee:43:4e:ed:32:df:67:6b:9d:
4f:37:80:77:3a:e4:09:b8:c1:9b:04:cc:58:f9:38:5e:1a:9c:
d6:09:91:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 07:43:39 2024 by rpki-client on console-fra.rpki-client.org