Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjiXkb1UCWrQCZmnWR-yBBia8Zg.cer
File: tjiXkb1UCWrQCZmnWR-yBBia8Zg.cer (raw, json)
Hash identifier: H31kgVcuZ40Va9UtUP+J5/qDCxeX1dgqiMHStYa6Hwg=
Subject key identifier: B6:38:97:91:BD:54:09:6A:D0:09:99:A7:59:1F:B2:04:18:9A:F1:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C3CD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB551/DBF6E1D4E2E411E99CD0A969C4F9AE02/tjiXkb1UCWrQCZmnWR-yBBia8Zg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB551/DBF6E1D4E2E411E99CD0A969C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 12 Oct 2023 18:45:07 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 103.99.86.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115661 (0x1c3cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 12 18:45:07 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91DB551/serialNumber=B6389791BD54096AD00999A7591FB204189AF198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a3:f2:8e:08:a4:67:a6:66:c7:15:db:f9:f4:
2f:35:7f:53:62:15:07:11:ef:44:14:4f:ef:c1:17:
e2:90:08:2d:59:9c:64:71:99:e6:cc:41:5d:bc:4f:
91:58:b9:a6:48:39:3e:95:a4:f6:d6:fb:ea:f4:bc:
42:ee:b6:95:13:48:e9:df:8c:d2:f8:ef:72:2d:1e:
ac:35:70:2f:39:40:39:33:d4:ed:a9:fc:56:b7:10:
4b:1a:7c:26:2e:09:76:ee:0f:1e:91:38:5d:a3:87:
9a:c9:d9:79:ba:d6:58:8b:2e:a5:59:73:c6:5e:ae:
bc:18:5d:c9:57:d1:b2:3a:22:e2:86:a5:da:0b:3f:
31:b4:f9:6d:f0:90:77:40:ee:26:c9:0f:c8:22:7e:
0f:b8:d1:7a:47:2c:b1:bd:d0:7a:49:2d:95:20:e1:
ef:c6:7f:d4:3d:fc:18:a7:61:7e:27:d5:e9:73:ff:
bb:3c:44:79:c3:8b:15:8b:0a:3a:5a:52:8d:27:86:
0b:b2:46:b9:74:99:1b:bf:3a:5a:82:f1:c3:f2:e9:
9e:8a:46:8b:4c:45:ef:5a:73:20:ce:95:c9:4b:18:
16:c2:b4:ab:4b:72:b8:c8:7d:d3:33:1c:c2:25:6e:
a2:2e:37:bd:d0:e5:72:f7:18:4a:59:56:c9:31:03:
49:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:38:97:91:BD:54:09:6A:D0:09:99:A7:59:1F:B2:04:18:9A:F1:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB551/DBF6E1D4E2E411E99CD0A969C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB551/DBF6E1D4E2E411E99CD0A969C4F9AE02/tjiXkb1UCWrQCZmnWR-yBBia8Zg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.86.0/23
Signature Algorithm: sha256WithRSAEncryption
63:ec:2b:e3:75:34:ab:34:1c:89:47:07:d0:ac:54:c5:f8:bd:
4f:8c:1b:74:f3:0f:f3:be:fe:d9:83:57:4c:7e:78:2e:3e:a1:
e3:45:0e:80:d1:5f:b8:bb:4c:be:69:ec:89:25:5b:c7:08:0e:
e5:2f:db:4d:2e:91:ad:84:0f:32:9b:e0:d2:a2:3f:ff:78:1d:
d9:41:11:59:c0:87:59:6f:a0:3b:ee:27:5b:20:01:8f:50:e6:
97:50:58:8a:1e:b9:17:45:50:26:2a:5a:c1:31:1f:01:fe:7a:
38:1a:db:4c:d1:02:9b:d9:9f:34:77:94:c5:f8:45:a7:2e:af:
2f:59:a0:00:46:92:95:2d:fa:9e:f4:71:93:b2:83:ac:bf:ec:
9e:19:c9:5f:66:c5:90:79:32:e2:18:31:5c:ab:4d:f7:4f:fd:
78:59:0e:e1:3a:c2:48:dd:a0:43:4b:3a:84:70:10:4a:86:1d:
af:6d:99:1c:40:a5:5f:21:e7:7e:a4:88:18:8e:70:0c:e1:0a:
45:0e:22:f7:5f:d7:b0:4f:00:a5:5b:03:c5:ac:dc:9d:e7:98:
ff:9f:8b:41:7d:8f:06:8f:da:49:48:45:c4:8e:0c:7b:b3:e5:
7f:43:66:30:e3:68:6f:de:e2:a0:3c:0c:df:71:85:83:77:31:
0c:6e:e6:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 14:08:54 2024 by rpki-client on console-ams.rpki-client.org