Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tVGhYNO-3KVi6d395AkzcktpuQA.cer
File: tVGhYNO-3KVi6d395AkzcktpuQA.cer (raw, json)
Hash identifier: W8n33580EUU9IboDiYPt3hbmlr13iT0Lj4eFdOoUg9M=
Subject key identifier: B5:51:A1:60:D3:BE:DC:A5:62:E9:DD:FD:E4:09:33:72:4B:69:B9:00
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B489
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/tVGhYNO-3KVi6d395AkzcktpuQA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 02 Aug 2023 18:43:38 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 103.234.44.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111753 (0x1b489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 18:43:38 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91933FE/serialNumber=B551A160D3BEDCA562E9DDFDE40933724B69B900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d5:2c:70:29:f6:37:96:c7:51:a3:40:f3:dc:
bb:bc:f9:0b:3f:97:81:af:e8:db:45:19:6e:8d:4a:
04:6f:a8:54:da:28:36:70:b7:08:65:9a:0a:1d:20:
fa:9f:bf:24:62:b3:46:bf:08:b8:ff:9c:41:92:dd:
d3:99:68:a7:1c:a1:cf:25:59:aa:e8:14:96:56:96:
03:38:b7:50:d3:f9:36:db:72:0e:af:3e:96:81:05:
52:00:0c:67:f5:90:f9:e2:6e:61:2e:d0:1c:d5:98:
d8:ad:8c:fd:69:d7:de:32:40:81:03:94:bf:52:c8:
0f:81:77:b4:94:fe:ad:ee:26:7b:9c:86:26:14:7a:
24:58:5b:3c:c3:f2:7f:63:f1:83:ee:11:29:31:91:
3d:6f:66:9c:6c:d7:cb:e0:0e:6d:ce:86:23:e1:24:
87:c0:47:3b:29:67:d5:60:25:91:d0:49:cb:a2:f0:
e1:21:08:9b:0b:72:26:a1:a4:53:c5:07:c7:99:38:
1a:b1:b6:a0:24:80:bc:58:67:69:29:56:ac:f7:2b:
82:46:3b:53:9b:f3:b9:7c:77:14:b1:75:0f:98:60:
c7:f2:14:c2:2d:40:b8:aa:3d:ab:84:ac:a0:ee:b2:
97:53:db:43:50:ce:62:6d:82:c3:3c:0d:a3:1d:e5:
24:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:51:A1:60:D3:BE:DC:A5:62:E9:DD:FD:E4:09:33:72:4B:69:B9:00
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/tVGhYNO-3KVi6d395AkzcktpuQA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.44.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:a3:ec:57:71:e6:81:dd:9c:86:43:f3:4d:aa:65:0a:d7:dd:
34:5d:86:ea:d9:2e:8e:94:4a:1e:33:4d:38:f1:5a:61:1e:fc:
5c:21:1b:86:be:55:6d:3d:ba:cd:21:80:df:2a:ad:40:03:97:
fe:70:0b:e5:a2:9d:4d:17:a6:4d:ab:ae:5a:85:a9:ac:7d:5a:
92:1a:7d:01:67:c3:21:00:65:3a:69:e4:34:eb:29:db:d5:10:
63:09:ca:8e:f8:a7:70:bf:cd:c6:3e:df:13:be:4f:52:e3:f7:
77:b1:49:fc:64:77:6c:07:a1:03:26:0e:3e:86:6b:97:85:b2:
ea:7b:06:bf:90:e7:2a:1c:f9:9b:c6:8b:91:4a:59:3b:dd:77:
1e:13:b8:de:0a:25:02:55:39:82:c8:35:15:4a:80:5d:69:71:
ae:7b:b3:57:1b:7f:a9:12:89:f6:c9:13:3e:d5:ef:2b:4e:e3:
79:71:54:15:69:93:6f:17:9f:f4:61:7d:cb:af:13:20:0c:fe:
ca:cc:fe:10:18:6f:fc:e6:e5:3b:c7:28:03:a3:41:09:ec:69:
bf:04:8a:c7:1f:12:83:a5:2e:11:de:c8:fc:52:6b:e7:4b:4a:
95:f7:b9:60:8b:2c:4f:25:04:b6:89:08:41:05:41:3c:4f:1c:
0f:8c:3a:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 14:08:54 2024 by rpki-client on console-ams.rpki-client.org