Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wT2PgrPTzkdGU1QOU2XEyQiUwD0.cer
File: wT2PgrPTzkdGU1QOU2XEyQiUwD0.cer (raw, json)
Hash identifier: CDKhigSXOwpDFBfZzMaqgWf0rZDIieipBuRVBwcJAtI=
Subject key identifier: C1:3D:8F:82:B3:D3:CE:47:46:53:54:0E:53:65:C4:C9:08:94:C0:3D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B119
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 19 Jul 2023 13:57:02 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 64012
IP: 103.193.168.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 15:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110873 (0x1b119)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 19 13:57:02 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A913DA3E/serialNumber=C13D8F82B3D3CE474653540E5365C4C90894C03D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e1:05:61:91:07:ea:d0:3c:da:89:2f:2e:34:
60:c5:9f:44:d4:ef:e4:56:7b:84:2c:52:21:e9:eb:
67:13:36:ea:7e:f6:1b:85:d1:f3:94:25:ea:36:ff:
f9:5f:35:3e:36:1d:b7:b5:cd:0e:53:5e:54:40:66:
75:1c:8a:f9:74:52:98:e7:90:e2:80:40:39:47:41:
e7:85:97:22:5c:0b:89:48:60:e9:77:cf:b9:90:31:
85:39:63:b3:6c:b9:68:c0:cf:51:e8:8c:f6:13:4d:
2a:f6:4c:57:92:6f:80:3a:2a:66:48:30:0c:2f:b6:
68:b3:48:21:08:a6:53:e3:c2:80:2b:dc:38:2e:49:
36:71:bd:cf:89:56:e5:52:ce:89:f3:d1:d9:4d:a4:
be:a7:ec:27:75:46:9d:a2:3c:0f:ca:6c:34:42:fa:
1b:92:cc:df:29:ed:13:84:9d:69:f3:61:ff:fb:66:
17:ff:7c:66:4f:27:7a:05:9a:a2:b3:88:66:2e:b3:
2e:9b:7f:9d:8c:3a:35:79:c0:31:f2:ab:09:a7:3c:
b7:a7:71:09:d3:5e:53:f0:f1:7d:15:db:7d:66:2d:
20:20:d5:ae:77:af:74:3e:cf:2b:8f:94:1d:ce:f2:
50:fc:bf:63:50:e5:49:29:1a:23:68:fe:ea:33:2a:
c8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:3D:8F:82:B3:D3:CE:47:46:53:54:0E:53:65:C4:C9:08:94:C0:3D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
64012
sbgp-ipAddrBlock: critical
IPv4:
103.193.168.0/22
Signature Algorithm: sha256WithRSAEncryption
20:b5:2b:86:90:6f:0f:d2:ac:a2:3b:d7:0b:a0:71:97:1e:30:
f3:2c:4d:4b:eb:0e:27:ba:36:73:fb:06:85:d9:d7:38:46:33:
a2:33:f3:72:12:7c:d7:dd:fc:13:42:bd:a8:35:c7:5c:f4:81:
73:49:14:0e:c8:ce:59:91:0d:a8:5a:94:74:54:63:c3:67:61:
00:8f:67:ba:19:f7:ea:8d:0e:14:3f:92:f2:db:76:85:54:25:
6b:7a:0f:4b:5e:6f:25:73:5a:a0:e2:cc:b0:fc:c0:94:b5:80:
7b:c8:ae:81:e1:bf:09:bc:3c:35:68:cd:01:1c:34:08:4e:5b:
2a:1a:60:05:a8:bd:33:01:1a:7a:48:17:03:49:dd:db:a5:f2:
20:c0:c3:1b:e4:b5:a7:84:f9:4d:e0:bf:16:a7:88:ea:ec:cc:
0a:d4:27:98:ec:89:73:ea:65:20:f9:9b:47:52:5e:2e:a0:54:
44:52:6e:9e:c2:6a:5e:91:09:d8:dd:f4:13:bf:d8:68:9e:d8:
6f:cc:b5:b7:1c:85:7c:df:1e:34:2b:8c:a5:a0:6e:a1:35:d9:
b4:95:76:b9:81:93:e4:45:f9:79:9a:cb:20:06:2c:43:dc:08:
e4:6f:90:a6:12:c5:1f:b9:58:c0:ea:4c:04:5f:2f:0f:1e:59:
e6:93:2d:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 16:41:14 2024 by rpki-client on console-ams.rpki-client.org