Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer
File: vY9TgeGI5FgPskcsJxoFQp4tXCI.cer (raw, json)
Hash identifier: Kv7aiG3gCDhAc7pcu3OEU7XwUQtzPcjITB8jhbzU03g=
Subject key identifier: BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F3A5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 24 May 2024 16:48:10 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 135379
IP: 43.251.84.0/22
IP: 103.216.56.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127909 (0x1f3a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 24 16:48:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A915D66D/serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4c:db:9b:69:0e:1d:bf:b0:d9:85:af:f3:68:
cf:ec:e6:c7:1f:58:b9:2b:dc:ca:b8:89:52:71:5f:
fe:fd:e4:96:13:1c:c4:ba:98:22:4b:1d:80:fb:af:
b5:70:38:86:d8:cb:f9:ed:82:42:e1:14:0d:f2:d7:
47:be:5e:e9:da:f9:9e:e4:78:e7:37:cc:e6:43:67:
7f:d4:be:c9:e6:16:bd:60:04:cc:80:ef:57:c1:18:
01:43:56:d0:b7:fb:20:3a:47:86:54:c6:e4:78:e1:
60:89:69:87:b0:da:81:a7:39:f4:cc:0b:ff:1b:4f:
a9:54:39:b6:47:c5:e3:d6:cf:6d:a2:bb:56:87:b5:
f3:83:c0:e3:c4:d4:c5:2d:cd:4c:bd:6e:6c:c8:92:
b0:c2:ae:5f:97:5b:e4:9b:71:f0:d0:ed:ee:9d:26:
f3:ad:ca:56:5c:4f:d5:b8:4d:f4:8f:50:58:c3:45:
62:04:44:87:b7:7f:e0:5d:b5:a3:1b:69:fc:68:bd:
05:1b:ce:83:9b:ff:56:43:f9:9e:58:81:ad:79:3a:
1c:b2:af:ec:fc:92:0e:25:68:4b:25:13:56:d7:bd:
32:16:8e:7f:5c:b2:94:54:9f:da:4f:64:3b:a7:ef:
bf:9b:f5:5c:f6:8a:df:57:1c:08:b1:9c:cf:d7:c6:
42:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135379
sbgp-ipAddrBlock: critical
IPv4:
43.251.84.0/22
103.216.56.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:3f:27:17:ae:80:40:f3:48:ee:fa:81:85:d7:39:72:ac:a3:
e4:d2:24:f5:4c:f3:b4:f9:7d:ee:7f:68:a8:e4:21:eb:f5:f4:
62:a1:da:62:e0:64:ca:a9:34:c6:02:54:bf:33:e1:f2:0c:8d:
28:6f:a5:2c:38:16:64:8c:f9:a7:b5:d2:43:40:a9:bc:27:38:
57:8b:cf:61:2f:d5:68:80:fd:d2:1c:02:9e:4e:9e:a8:91:87:
de:b6:30:e5:e7:b5:78:c6:0b:13:41:d7:aa:3d:01:2a:52:70:
8a:35:ac:a2:fd:f3:42:db:c9:f3:e4:0b:b9:e4:ef:6f:53:a3:
1c:f2:1c:09:c7:5d:66:55:e4:bf:c0:19:b4:de:67:47:2c:b0:
98:44:a9:ac:42:41:5a:7f:2a:da:f6:04:64:8f:e4:09:38:aa:
1f:3d:c4:2d:5a:0c:5f:47:60:f7:4d:cf:3b:94:e3:9a:0e:8f:
d3:6d:2d:05:9d:2e:56:6c:f4:38:81:d8:f4:d9:62:36:6a:ed:
80:d2:5b:80:bc:25:05:10:22:31:a3:4d:e8:39:70:9a:13:1b:
1b:50:cc:ba:bd:f1:b5:da:5e:26:c6:34:9d:96:7c:36:cb:48:
79:c0:c1:14:f3:20:da:56:ef:4e:92:5c:5e:43:bf:d8:2b:9d:
17:53:35:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:25:08 2024 by rpki-client on console-fra.rpki-client.org