Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u2XjT0_eqStZoyVHozggimCJHgk.cer
File: u2XjT0_eqStZoyVHozggimCJHgk.cer (raw, json)
Hash identifier: zxLFXXq0SOuEf1JKncD17DfFDhNEmxDgByd9JvZL5q0=
Subject key identifier: BB:65:E3:4F:4F:DE:A9:2B:59:A3:25:47:A3:38:20:8A:60:89:1E:09
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DE87
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 12 Feb 2024 17:10:40 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 136400
IP: 103.86.124.0/22
IP: 2400:bdc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 13:35:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122503 (0x1de87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 12 17:10:40 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A917F224/serialNumber=BB65E34F4FDEA92B59A32547A338208A60891E09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:92:fe:ad:d3:e6:87:a2:80:a6:84:71:e9:54:
8c:31:a8:99:f6:14:e5:0f:fb:57:a0:95:54:17:7f:
2c:6b:d2:f3:c0:96:fb:b2:87:1e:77:99:a7:bb:11:
ba:33:9a:63:51:10:90:14:0a:20:b2:db:4b:9a:d3:
5c:17:54:31:52:49:da:92:6b:11:70:96:c0:bc:d5:
ed:e8:a2:f9:76:08:80:6d:f1:12:6b:8d:66:5c:6b:
09:65:d6:01:51:84:60:95:df:8d:f5:31:d8:7f:b1:
42:97:34:17:ea:59:38:56:f6:dd:f6:03:d4:9b:44:
b8:ae:ec:89:50:4d:01:2d:14:00:bc:75:a3:9f:e3:
5a:92:4c:12:06:3e:5b:42:9a:3f:d8:24:6c:c7:ad:
5d:61:87:07:9a:0f:07:a5:1c:0e:a8:0a:c0:fd:4e:
e8:4b:a2:c6:f8:01:9d:a2:21:0e:d8:e8:2b:0c:f9:
39:60:44:69:5e:18:90:95:3a:56:55:4c:c9:dc:b4:
a1:3e:37:52:ae:7e:e9:bd:92:24:a5:dd:c7:f3:86:
fb:97:05:08:ca:c3:f4:06:93:a2:52:3c:83:08:d9:
98:c0:82:84:d2:70:e7:68:3c:41:4c:f0:5d:ac:8b:
63:74:da:39:23:1d:09:71:51:73:4e:2b:b5:df:b9:
dc:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:65:E3:4F:4F:DE:A9:2B:59:A3:25:47:A3:38:20:8A:60:89:1E:09
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136400
sbgp-ipAddrBlock: critical
IPv4:
103.86.124.0/22
IPv6:
2400:bdc0::/32
Signature Algorithm: sha256WithRSAEncryption
7d:8f:12:67:68:1d:ea:10:4b:1d:5c:43:b2:ce:f6:61:0e:79:
11:3d:7b:c7:a3:86:e8:37:40:1d:e2:6d:0a:03:4b:0a:5f:fb:
95:08:20:a7:76:c8:a5:8a:99:0b:4c:dd:02:56:9c:c6:c5:fa:
ab:43:54:c6:33:79:c9:3f:66:62:b5:ee:bb:a5:ae:60:a5:7c:
f2:0d:3a:04:b9:8f:a6:ed:b8:75:62:4c:66:7d:02:ef:98:3d:
da:4e:a8:fc:9b:27:0c:73:f1:b2:db:a7:f5:74:cb:1f:60:03:
54:07:95:63:87:fa:c7:2a:fc:3b:11:6b:db:f2:94:1c:04:51:
de:46:92:d5:60:da:1c:52:c5:d1:fa:de:ff:a6:cf:aa:ea:5f:
f0:52:47:b0:88:91:90:25:ac:6b:ee:ea:f1:75:cc:cc:0a:d5:
59:9e:d8:de:c1:e5:31:b1:3a:33:8a:bf:6f:48:37:19:a3:93:
7b:f1:ff:d0:c9:34:a0:31:c9:e4:d3:64:fc:b4:12:7c:38:e7:
00:2e:8b:7e:09:1e:f9:34:58:ba:3a:8e:00:0e:b5:34:57:f0:
20:36:84:bc:eb:3a:3c:98:14:10:a5:ed:ca:39:78:c2:b5:c5:
7b:d7:8d:6c:09:8b:fc:ff:ab:1b:4b:59:4f:b5:ff:ae:4c:95:
58:2c:b8:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 14:23:05 2024 by rpki-client on console-fra.rpki-client.org