Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer
File: x5XlnAMMfJKfy-R0Gfxexp4frP0.cer (raw, json)
Hash identifier: Xs+iMbWSzp4cPv1T7byLoGwxB5PeDMg8P/fio4MQLqE=
Subject key identifier: C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0195FF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Apr 2023 05:29:17 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 103.7.96.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103935 (0x195ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 4 05:29:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bc:fe:49:81:29:f0:5c:88:c9:fa:09:ea:53:
a7:1a:37:09:cb:4a:68:23:3f:83:e6:7b:35:79:e6:
9d:2d:16:95:48:4e:34:ba:b1:f5:7a:71:e2:51:e3:
7c:bb:d9:0e:ca:ca:87:ba:1a:8f:e6:0a:5a:72:fb:
84:e1:d0:1a:ad:5f:11:07:16:fd:a6:df:3d:40:2e:
f7:fa:1d:66:98:d7:29:4b:71:a2:f9:3b:2a:9d:11:
0b:f5:b4:81:74:e8:09:eb:a5:84:64:21:aa:f3:d7:
a3:9e:ab:be:fe:29:04:cd:e5:9b:e0:cd:1d:3e:ec:
ce:a8:e8:47:8f:9c:7e:d7:c9:63:aa:84:c5:0a:8e:
51:42:ff:95:d5:b8:ce:1c:aa:15:43:36:4e:20:5e:
b8:48:f1:c4:68:f0:09:e0:08:85:1c:29:64:ce:b1:
5d:eb:6f:88:c3:e8:21:17:6e:87:f6:32:1c:9b:a9:
78:43:04:55:e5:d2:ae:c5:7a:a3:f9:7c:e8:db:0e:
4f:ad:c8:14:36:ad:b8:b8:f9:f8:03:97:5b:64:35:
a1:59:81:39:bc:68:7b:9e:4c:48:60:cf:0c:5b:4b:
b2:7b:56:e7:d8:9e:b9:ce:ce:e3:f1:bc:08:bb:b7:
3b:52:4a:5c:3a:32:6f:f4:db:b8:80:d9:e4:98:32:
11:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.7.96.0/23
Signature Algorithm: sha256WithRSAEncryption
98:a2:14:2e:39:e1:61:a4:e2:2b:6c:75:7a:e1:b2:7c:65:df:
00:3c:d5:41:c1:19:1f:48:17:01:f8:43:0a:20:9f:51:b5:32:
e7:80:aa:67:94:0d:9b:0a:d7:8d:88:b3:a4:69:1f:72:b5:a8:
ed:76:0f:6b:62:73:06:43:e5:7b:9e:18:72:19:97:1a:82:e1:
d2:71:56:fa:32:53:9c:1b:be:30:6d:1b:4c:f1:3b:db:48:a7:
1f:44:a4:24:3b:de:69:95:0e:2e:ec:5c:d5:1c:3b:a5:98:0c:
af:39:63:b6:c4:a6:cc:aa:86:1d:6f:fa:a2:12:d8:50:21:f8:
7e:b5:96:43:61:fc:8d:9d:00:ed:e2:f3:b5:81:17:e4:16:74:
41:9d:bb:54:c7:d9:0c:04:78:6c:74:df:c0:4c:d7:9e:0c:0d:
01:ce:bb:1c:a1:8e:fd:52:2a:ad:81:c8:1e:b1:29:37:de:a8:
d2:d3:33:42:22:28:9a:f8:e4:16:80:bd:e7:d4:93:0d:d8:9c:
ac:d1:5b:54:9b:58:ec:80:74:aa:65:82:28:37:d8:b1:90:34:
42:be:89:cb:f1:32:3b:da:91:a6:1f:49:45:9a:a1:24:de:14:
35:ac:0e:0f:ac:7a:24:6e:38:ea:fa:a8:45:fd:b7:0f:3b:33:
16:c5:f3:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:16 2024 by rpki-client on console-ams.rpki-client.org