Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1WlsAYqTmo9yHnjyfyyZnxokrc.cer
File: v1WlsAYqTmo9yHnjyfyyZnxokrc.cer (raw, json)
Hash identifier: mUs06OvSQkWFARjjbPrFXXaNuMn6ynnw40jGhd6RrWg=
Subject key identifier: BF:55:A5:B0:06:2A:4E:6A:3D:C8:79:E3:C9:FC:B2:66:7C:68:92:B7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CA8B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/v1WlsAYqTmo9yHnjyfyyZnxokrc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 13 Nov 2023 14:05:50 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 138209
IP: 103.129.224.0/22
IP: 2403:8ac0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 14:50:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117387 (0x1ca8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 13 14:05:50 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A914E08F/serialNumber=BF55A5B0062A4E6A3DC879E3C9FCB2667C6892B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:39:32:52:48:e1:af:6b:ac:f6:65:07:a9:4a:
ff:11:a6:57:3a:db:24:84:06:93:b9:76:d9:35:a0:
cc:6c:8b:90:33:15:0c:cb:1b:38:bf:aa:f9:e3:ef:
66:b7:10:df:c5:28:37:bc:97:8c:9e:95:c8:87:fa:
43:37:10:2b:b7:10:41:fc:2a:82:10:bb:4b:b7:c7:
b8:56:06:52:1c:e2:24:db:2f:28:09:08:eb:2a:c3:
2c:df:6f:41:44:8f:24:26:03:f2:53:47:df:65:b9:
59:9b:dc:61:1b:cc:dd:6e:f8:0e:52:85:86:51:4c:
74:26:26:0a:21:a4:2e:dc:3e:8c:91:55:19:78:3d:
6a:c6:eb:1f:71:fd:54:61:24:da:b9:da:08:e1:2b:
9f:9d:c9:ac:48:7e:c3:ae:d2:a7:e8:ea:16:63:73:
82:20:36:07:5a:88:96:74:69:dd:07:80:aa:af:58:
c4:8b:e3:49:19:31:48:88:e2:65:65:39:0e:bb:c3:
84:28:77:86:89:a9:ec:90:9a:c3:0d:45:28:19:dc:
8f:02:01:83:c1:e8:50:e7:20:6c:4b:0a:f7:f6:58:
86:71:da:9c:8d:73:a7:a5:44:9e:ea:56:5e:47:10:
03:4f:b2:74:60:74:53:be:60:3e:b4:ac:5c:07:06:
c3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:55:A5:B0:06:2A:4E:6A:3D:C8:79:E3:C9:FC:B2:66:7C:68:92:B7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/v1WlsAYqTmo9yHnjyfyyZnxokrc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138209
sbgp-ipAddrBlock: critical
IPv4:
103.129.224.0/22
IPv6:
2403:8ac0::/32
Signature Algorithm: sha256WithRSAEncryption
a1:60:53:36:7b:f3:60:82:7d:f7:eb:0d:9a:69:aa:77:81:00:
cc:6c:d6:5f:93:e8:05:92:eb:74:ff:5f:5d:4e:28:12:c4:a8:
90:6b:7f:a9:fb:79:59:2d:c5:31:2d:8b:b2:09:88:e1:c3:c8:
75:67:e6:7b:ab:89:ef:c2:ec:33:08:3e:7a:85:cd:38:a2:f4:
60:08:ae:d3:1a:24:fb:60:ee:b2:6a:3f:6a:f9:94:0c:85:37:
2d:cb:bf:08:72:b5:f0:35:af:b3:77:55:aa:60:15:5e:cd:48:
eb:c9:3e:37:a3:1c:35:ae:a9:fc:03:1d:b3:a3:03:5e:1d:b9:
73:38:f6:50:64:73:c7:71:cd:8e:0a:dc:18:07:ef:bc:f7:09:
c2:79:ce:95:93:31:99:ce:96:ca:1b:09:fd:66:62:a9:9c:a8:
86:aa:7f:bb:db:de:cc:d4:de:85:57:12:c3:52:2c:b4:e2:e3:
ba:6d:85:89:cb:46:ab:8b:36:d7:90:ab:eb:1c:10:d2:27:58:
55:30:ca:04:2b:c8:1c:40:d5:88:22:c6:80:6c:e0:15:d4:7d:
57:7e:62:43:14:73:22:53:da:11:38:8e:2a:a3:18:1a:6e:58:
e9:d6:67:f0:83:78:d2:cd:c6:c8:f8:e5:28:bd:03:22:24:b3:
38:59:4b:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 15:39:49 2024 by rpki-client on console-fra.rpki-client.org