Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer
File: wsO6iC7D3Pwn8TzociVgfaqheE0.cer (raw, json)
Hash identifier: GFlmDtSO0OWRhCETXwGOho/6qHI7DEGcIs8bZDLOOS0=
Subject key identifier: C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EC63
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Apr 2024 02:06:36 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 132849
IP: 103.170.102.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126051 (0x1ec63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 19 02:06:36 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91D3ED4/serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0e:71:0f:54:1a:52:47:99:f4:25:9d:af:37:
aa:3e:a2:4c:1a:f7:fb:de:b8:e4:60:8a:74:65:57:
ad:53:02:7b:cf:81:93:91:09:f1:2b:47:a6:cc:eb:
e5:fa:fa:c7:9e:98:9a:ae:32:fa:ce:ad:c3:fe:20:
fd:45:12:d7:de:9d:c2:43:97:cb:38:67:5f:40:4b:
52:41:ad:c8:ec:d5:19:23:21:34:19:87:fa:70:eb:
c5:6f:f8:5d:be:c6:db:80:69:93:a5:58:f8:a9:f7:
93:c8:20:e0:b5:2d:5a:59:8e:00:7c:0e:41:e1:52:
b6:04:f2:7d:13:62:de:9c:d2:4b:a7:cc:da:70:f0:
20:d1:fb:be:73:35:58:48:36:dd:ee:c4:32:0b:2b:
bd:42:e1:39:75:09:99:af:22:e9:4c:8c:6c:e8:a6:
2b:89:f7:18:d1:ba:a9:92:2e:d6:e9:24:b8:6e:7a:
b2:57:2f:ba:b2:6b:6c:65:7b:ad:bf:ba:8d:e2:13:
f4:83:ba:cd:2d:4b:38:ec:5c:21:31:91:8c:aa:08:
74:fb:35:e8:b3:83:b9:00:c0:73:53:ee:97:d2:8c:
a7:e8:42:81:c0:1f:3b:22:a5:a0:8f:e1:ec:bc:11:
48:99:bf:f3:a1:10:fd:2a:9f:bb:0e:ab:2f:d1:ea:
ad:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132849
sbgp-ipAddrBlock: critical
IPv4:
103.170.102.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:4b:1e:a5:83:93:f4:c7:9a:3e:bf:de:d7:cb:e6:66:3a:03:
3c:cc:92:76:b0:06:3a:35:c3:9d:29:f7:84:87:3b:b8:a0:d5:
56:7b:e5:fe:26:52:9f:39:9b:76:0e:e6:42:2d:c2:46:ce:23:
e3:fe:3d:35:9c:bd:06:4a:e8:ba:f7:72:a8:e6:a8:23:43:f5:
0b:54:a8:ed:f5:22:bb:1c:b9:4a:72:ff:87:6f:e6:fe:36:c3:
17:4d:c0:88:58:8c:e7:91:3d:42:d0:29:5b:a3:65:5a:02:ec:
96:6a:36:10:9c:27:72:62:55:3c:74:df:74:42:00:f7:34:32:
5f:a0:31:8a:ed:44:1e:e6:da:70:4f:db:5c:0c:5b:86:81:2e:
0f:13:ca:0d:e6:31:8b:b2:8b:4e:d0:c1:eb:00:e2:7d:22:9a:
49:ea:b3:11:4a:76:a9:de:55:af:76:de:47:58:3c:81:a8:47:
be:d1:04:98:09:27:0f:4b:76:af:1e:e7:1a:03:91:58:0e:5d:
5c:54:42:78:29:02:3a:5d:42:6f:ca:74:fb:db:0b:97:b2:82:
9b:0e:5a:c9:ab:a2:a3:cd:93:84:e1:c2:37:32:53:7c:d2:0a:
60:ca:c3:ed:a6:8b:f3:5c:49:13:62:1c:9c:f2:0a:a7:73:af:
10:ee:f6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:39 2024 by rpki-client on console-fra.rpki-client.org