Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer
File: vY9TgeGI5FgPskcsJxoFQp4tXCI.cer (raw, json)
Hash identifier: WPqp/087Z8fhq0Aq5pB+XZL1NjDPv0QzXw+3MUob70A=
Subject key identifier: BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A4F2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 24 May 2023 15:08:41 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 135379
IP: 43.251.84.0/22
IP: 103.216.56.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 22:43:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107762 (0x1a4f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 24 15:08:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A915D66D/serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4c:db:9b:69:0e:1d:bf:b0:d9:85:af:f3:68:
cf:ec:e6:c7:1f:58:b9:2b:dc:ca:b8:89:52:71:5f:
fe:fd:e4:96:13:1c:c4:ba:98:22:4b:1d:80:fb:af:
b5:70:38:86:d8:cb:f9:ed:82:42:e1:14:0d:f2:d7:
47:be:5e:e9:da:f9:9e:e4:78:e7:37:cc:e6:43:67:
7f:d4:be:c9:e6:16:bd:60:04:cc:80:ef:57:c1:18:
01:43:56:d0:b7:fb:20:3a:47:86:54:c6:e4:78:e1:
60:89:69:87:b0:da:81:a7:39:f4:cc:0b:ff:1b:4f:
a9:54:39:b6:47:c5:e3:d6:cf:6d:a2:bb:56:87:b5:
f3:83:c0:e3:c4:d4:c5:2d:cd:4c:bd:6e:6c:c8:92:
b0:c2:ae:5f:97:5b:e4:9b:71:f0:d0:ed:ee:9d:26:
f3:ad:ca:56:5c:4f:d5:b8:4d:f4:8f:50:58:c3:45:
62:04:44:87:b7:7f:e0:5d:b5:a3:1b:69:fc:68:bd:
05:1b:ce:83:9b:ff:56:43:f9:9e:58:81:ad:79:3a:
1c:b2:af:ec:fc:92:0e:25:68:4b:25:13:56:d7:bd:
32:16:8e:7f:5c:b2:94:54:9f:da:4f:64:3b:a7:ef:
bf:9b:f5:5c:f6:8a:df:57:1c:08:b1:9c:cf:d7:c6:
42:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135379
sbgp-ipAddrBlock: critical
IPv4:
43.251.84.0/22
103.216.56.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:cc:99:a7:95:bb:73:84:19:09:ac:53:4e:8e:cd:c7:30:0d:
ca:e8:82:69:65:2a:a4:c3:29:36:57:df:4f:84:ef:7b:74:22:
37:d4:b6:b2:f1:15:8b:9c:8e:31:ba:b2:3c:7f:81:eb:b1:19:
42:57:0c:09:bc:8f:82:c4:95:1e:c0:c6:78:7f:9b:a6:64:87:
e2:4b:07:15:18:a7:db:77:87:30:54:03:d4:12:dd:83:41:1a:
53:a7:ba:3b:4c:d8:7a:21:06:7b:6b:ab:6c:77:57:05:84:e9:
4e:0f:22:3d:ce:3c:19:82:50:27:c6:11:8c:da:82:32:80:22:
6d:6f:9c:12:c3:3c:30:96:4b:38:fe:c7:16:0a:46:d1:4e:b1:
cd:d5:eb:7f:b0:6a:a9:b1:99:9e:95:a4:16:33:bb:bd:86:35:
4d:b9:39:e2:60:ce:55:38:8d:b8:df:c0:a5:46:46:91:47:ec:
14:aa:51:4b:d5:80:7b:2a:93:1e:1d:1d:f3:69:17:9c:b6:b7:
c2:bb:f1:cf:2d:a3:88:93:de:a9:be:c3:5d:72:11:9f:3c:e5:
41:49:28:81:85:83:5b:32:95:89:93:0a:29:cb:4c:a5:0f:96:
5c:2f:cc:70:29:57:f0:dc:4e:82:d4:06:ed:60:4c:ae:74:cd:
b3:fd:95:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 23:22:15 2024 by rpki-client on console-fra.rpki-client.org