Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer
File: x40eWVkb4MdSTTa9-FyKxuoZD44.cer (raw, json)
Hash identifier: pi7IfZt3dHgjnCBcK5CCM29j4lrfGMj87PFfmYvZ3Wk=
Subject key identifier: C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C522
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Oct 2023 05:40:50 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 149866
IP: 103.189.160.0/23
IP: 2400:8760::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:14:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116002 (0x1c522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 20 05:40:50 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91554E6/serialNumber=C78D1E59591BE0C7524D36BDF85C8AC6EA190F8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:95:b7:9f:5b:e6:59:02:52:c2:ae:30:e9:85:
1b:70:c8:dd:0d:9b:17:37:84:51:79:5e:d5:dd:d0:
8e:fa:7f:d1:6d:3b:2a:aa:91:ff:c0:53:e6:2d:77:
42:3f:a4:fe:78:0b:08:be:74:39:74:0d:4b:c1:25:
c7:77:cd:ea:12:3e:b7:b3:a0:8d:0c:6c:5c:88:a5:
11:c0:0e:f6:53:ed:54:08:6b:0c:ef:d8:81:3e:c7:
57:6e:7d:8f:2b:0b:d8:03:d8:f3:cf:86:07:cc:12:
ee:46:77:91:21:ed:7d:4d:65:f1:9c:96:14:7e:4f:
e3:60:35:3c:2a:fa:76:9b:ab:3c:70:64:da:46:ee:
ae:b2:98:cf:75:72:49:a8:78:55:ca:d7:17:3d:6a:
de:37:cb:8a:81:5e:ae:1b:67:70:37:71:29:e4:ae:
27:29:90:ea:c4:e6:d8:2f:d8:86:40:bf:90:40:a5:
10:e4:df:da:51:1b:aa:85:cf:83:0a:f1:05:b2:52:
42:d7:ae:34:92:e2:04:59:a8:4e:0a:aa:66:3f:7f:
4d:62:05:52:3a:10:33:86:0d:25:2a:1f:3f:8b:f5:
fa:82:14:4f:38:dc:b5:8c:aa:94:18:6c:b1:44:97:
d2:79:a2:50:b9:0d:db:47:b4:77:45:22:dd:a3:e8:
93:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149866
sbgp-ipAddrBlock: critical
IPv4:
103.189.160.0/23
IPv6:
2400:8760::/32
Signature Algorithm: sha256WithRSAEncryption
a9:95:c8:64:31:38:2e:b6:c1:62:78:54:aa:4e:b1:f4:12:98:
d5:14:17:77:55:0c:aa:f8:ac:07:c6:08:22:25:2c:be:77:5c:
62:fe:1e:a2:d4:81:b1:b0:a6:54:9f:58:ce:dc:ae:8d:dd:df:
33:86:d8:50:97:58:ed:87:5f:b6:82:ae:d5:ed:cb:d2:52:43:
a4:c7:b9:16:a5:02:59:20:28:55:d4:21:ec:e1:fd:7e:8b:e6:
33:2e:4c:8a:1e:bd:ec:08:07:13:50:60:eb:e8:10:f8:db:67:
a7:72:c0:21:fe:54:d9:8a:bb:36:6a:31:d4:78:15:f7:f2:e2:
01:b2:ab:a2:28:23:97:7e:22:c9:31:08:ce:fa:f4:ab:07:e4:
dc:ae:46:d6:fe:8e:82:02:02:cd:94:b2:02:7b:53:89:4c:55:
8f:67:29:bc:7f:b0:bf:18:86:63:30:ef:37:8b:db:9a:d5:0f:
d2:76:fc:f5:f1:a0:e2:1e:c3:76:06:77:e9:09:79:9e:ee:68:
95:96:af:18:d8:2f:fb:22:65:c3:ad:4f:26:2e:25:c8:b6:fc:
0f:bc:60:e1:1b:94:9f:27:ba:4c:c5:6a:f5:d4:38:97:47:6c:
fe:a0:0e:31:23:ad:c2:59:c4:ef:35:10:e8:30:78:b8:8e:33:
1f:c5:0d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 05:58:45 2024 by rpki-client on console-ams.rpki-client.org