Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer
File: x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer (raw, json)
Hash identifier: lMxLAp9JGQIt2BSwjltkmgKvW15eZdc6S5BHfmR7+LU=
Subject key identifier: C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A70E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Jun 2023 03:42:52 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 142125
IP: 103.166.148.0/23
IP: 2001:df6:9380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108302 (0x1a70e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 1 03:42:52 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91E3377/serialNumber=C77C1309F4A1530EA395414528815F9C767C515B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2d:e9:09:9d:85:bf:b3:84:b8:b9:bb:e8:11:
c0:41:46:08:13:35:55:71:6c:6d:df:2a:55:cc:78:
65:78:5b:2f:19:ea:e2:6a:41:05:8d:2a:85:54:0b:
84:20:8b:10:eb:aa:9b:99:23:5a:b4:75:84:42:b9:
b8:a1:d6:25:fc:5d:de:7a:80:9c:0f:06:68:fa:37:
38:82:c7:d8:25:2e:e7:e1:ca:58:df:10:18:b2:12:
24:68:19:00:d2:c4:91:21:26:c5:15:db:ea:f7:ee:
4e:aa:84:e8:4c:97:9c:d7:b6:24:14:15:c6:0a:52:
73:63:af:5b:89:e6:20:1d:65:4d:92:f4:27:ba:b3:
db:b9:00:74:95:d6:c0:eb:c1:72:ff:ab:9e:0f:32:
dc:5c:13:aa:25:b5:a8:66:b1:7d:d8:b2:81:b6:c0:
ad:38:b4:a8:69:b2:52:9d:eb:bd:5f:b6:60:70:b4:
8d:10:18:22:60:43:f0:6c:68:2b:8d:af:59:a1:ec:
f9:36:db:41:42:95:5c:5b:e9:f4:df:30:50:bd:70:
35:38:30:ae:d4:48:93:1c:f4:2e:f6:f9:dd:ee:02:
61:6f:1d:85:37:9c:db:d5:79:26:2e:8d:28:18:6b:
f5:7a:f3:55:25:5c:cc:3f:da:25:5c:cc:7d:4f:f1:
1e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142125
sbgp-ipAddrBlock: critical
IPv4:
103.166.148.0/23
IPv6:
2001:df6:9380::/48
Signature Algorithm: sha256WithRSAEncryption
cc:3f:dd:c0:04:62:ad:97:97:e6:ed:9c:ce:07:6c:cb:0a:e9:
b6:ea:19:e5:8d:6d:b3:90:86:10:da:f4:73:c5:00:26:5e:a6:
97:91:41:8f:b4:57:67:4e:a8:38:e1:4a:e5:36:70:1a:de:7e:
dc:f1:71:1f:cb:cd:57:6c:ed:ce:c1:07:9a:98:98:52:a2:73:
4d:2d:cb:84:a6:64:0d:95:0c:27:3f:a0:93:b6:8a:31:24:51:
02:e2:e8:de:72:dd:e1:4e:2f:ba:83:86:a8:f3:b0:e2:c6:67:
61:c2:67:e1:bc:77:15:a2:14:cb:10:93:f0:90:82:27:a3:04:
d3:1a:af:bb:51:7f:23:d1:07:dd:19:07:a3:d1:66:d0:d6:e0:
af:1d:6e:65:2d:51:c2:d8:a5:93:7d:28:93:44:cc:5f:e5:39:
87:80:6c:ae:19:76:b8:7d:c9:38:3e:a4:3f:ec:1b:2e:77:0d:
93:c0:15:5e:f0:d2:f7:55:d7:4e:bb:ee:93:7a:b5:65:a2:e7:
2a:0a:e4:16:7d:5a:31:b6:3b:dd:2f:67:84:ab:28:05:08:c1:
de:b2:41:25:4f:fb:df:e3:98:6e:40:9a:e8:d0:df:30:c6:79:
e6:68:de:58:8c:e9:c0:45:c1:4a:2c:27:49:38:78:56:07:b2:
1e:02:d9:82
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 20 03:58:09 2024 by rpki-client on console-fra.rpki-client.org