Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer
File: uHLzTVUlH6dw7MOT0mcSED1VBzc.cer (raw, json)
Hash identifier: NjaC0M5416otg+m57ObKmPUkIvtEQjHDTknT2b+9Ffo=
Subject key identifier: B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D135
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 Dec 2023 17:54:01 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 133544
IP: 103.176.206.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 21:46:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119093 (0x1d135)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 11 17:54:01 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A917C606/serialNumber=B872F34D55251FA770ECC393D26712103D550737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:20:be:89:99:ac:ae:b5:a4:06:0a:5f:d4:0a:
07:bc:ea:41:ee:0b:8f:ed:a4:9f:22:10:b8:44:44:
c9:57:55:e9:9e:a8:ac:b5:f2:03:c7:ab:7e:ac:f4:
b5:71:be:25:c4:cb:c5:15:ad:7f:5a:1d:cd:93:aa:
2d:b6:17:29:c2:78:3f:e0:60:aa:fc:db:9e:70:81:
1b:8a:5b:f5:a5:29:af:67:d6:0a:72:c7:ca:79:a3:
4e:1b:2c:db:b6:47:51:c7:7d:df:2d:7d:84:e5:04:
1c:e9:0f:66:ed:16:4c:a2:b1:d0:5f:0c:6f:01:71:
37:9e:d6:e5:76:14:5c:05:7d:4a:3c:1a:dc:b8:16:
53:65:e4:c4:51:84:86:4e:7b:8f:9e:a2:c7:0f:a7:
66:53:50:2d:85:26:be:1a:2f:c1:a3:de:c1:53:e8:
19:75:23:28:c6:91:00:63:7b:42:17:f5:7a:38:e6:
a5:21:27:1d:fb:16:12:bd:e9:ee:25:bf:8b:d7:5b:
91:30:41:a0:31:21:35:45:b2:36:86:db:5f:f0:ed:
ae:5d:de:93:33:6c:08:59:7c:cf:bd:d9:fb:1d:a9:
cb:b1:72:68:02:42:ba:d5:78:ac:4d:6f:15:26:d1:
8d:08:97:f3:de:bb:6c:28:85:e4:69:d0:9f:3b:2c:
39:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133544
sbgp-ipAddrBlock: critical
IPv4:
103.176.206.0/23
Signature Algorithm: sha256WithRSAEncryption
10:46:37:69:d9:67:ab:a2:d3:5f:9c:c3:0f:ad:a7:d4:66:d6:
02:6f:3c:bc:42:d3:53:4c:80:1e:2b:33:45:20:13:c2:86:0b:
08:b3:fc:4b:3f:52:e7:dc:65:99:b3:56:d2:5c:e3:db:2b:68:
7e:d1:1e:64:75:1e:f3:52:fb:ee:51:de:0b:39:5e:42:d6:8e:
36:3d:e7:bd:f7:89:ad:20:83:75:4a:a8:40:82:52:a5:9e:2e:
2c:25:e7:94:33:e7:c6:cc:04:0d:f8:de:a1:3f:ef:73:d7:9c:
3b:4f:4a:89:c4:df:6b:1c:49:60:0c:44:81:17:de:07:6d:c9:
79:88:a4:ac:3a:df:7a:06:94:66:50:83:28:8a:92:b6:1e:a1:
38:91:aa:60:74:89:09:36:22:97:03:95:ab:c9:d9:31:e2:e3:
c0:61:9b:3b:e7:4b:e6:51:aa:3a:18:d9:a5:53:2c:da:ec:5e:
dc:bc:ad:82:75:4c:f9:d3:d6:30:e2:17:a2:8c:be:a1:c2:72:
f0:92:52:56:7a:06:28:96:72:74:a6:b5:1d:0d:4e:4a:6e:67:
50:d9:fd:a1:ea:b5:e9:a5:c6:be:be:1e:49:13:a7:f9:a1:0b:
ab:76:b7:97:a4:ed:c1:3d:3f:11:35:e4:e3:1d:92:00:8a:e5:
42:c8:8e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 23:35:25 2024 by rpki-client on console-ams.rpki-client.org