Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer
File: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer (raw, json)
Hash identifier: u8NOrtbxkyBctPa1xAosvS5aQzREDYwsg+c32Xkylfs=
Subject key identifier: C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B434
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 02 Aug 2023 00:32:41 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 132072
IP: 103.30.216.0/22
IP: 103.70.72.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 23 Apr 2024 16:59:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111668 (0x1b434)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 00:32:41 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91DF937/serialNumber=C49E5183EA2FC49B8A83C92052BCE2A8B6576C70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f0:ad:f6:86:c6:40:e9:6d:c4:ed:c2:df:e0:
95:19:e5:19:b4:e6:2d:c4:81:52:41:42:b0:00:ce:
40:b6:fc:47:49:5f:6f:e4:61:fa:f3:f2:ee:0d:31:
bf:c9:cf:1d:08:e6:83:6d:0f:1e:6a:14:ab:67:92:
b3:26:8c:be:f4:52:67:ec:4e:a5:96:80:99:ab:0c:
97:bf:e5:2f:dd:8b:64:8e:46:0a:d3:59:03:0d:79:
45:40:ec:46:76:b4:d4:af:5b:cd:72:15:28:67:3f:
5f:29:9f:3f:2c:fb:16:09:d6:34:a0:3f:6e:dd:5f:
32:2b:5f:67:b4:dd:35:63:35:e6:bb:9e:11:cb:cf:
d7:aa:ad:38:0c:cf:8f:ed:9f:5a:52:6b:90:e4:ff:
27:a3:5d:1a:53:3b:0e:27:f4:9f:c7:3f:76:38:bd:
f2:72:67:78:83:2e:74:de:7a:17:8d:c3:9d:9a:82:
d0:62:b3:ab:63:d2:7f:d9:a3:2c:2e:4c:97:f7:73:
54:4f:11:4a:67:df:1d:b7:9f:24:a1:f8:b3:3e:d8:
5e:c1:f8:87:3c:23:22:c7:ac:92:0a:1d:52:b7:34:
ca:63:2f:dc:38:f8:74:1e:92:19:52:a2:39:ec:f4:
9c:ed:b4:7a:c2:8b:94:4b:af:86:42:48:47:68:e1:
c4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132072
sbgp-ipAddrBlock: critical
IPv4:
103.30.216.0/22
103.70.72.0/22
Signature Algorithm: sha256WithRSAEncryption
d7:62:d3:19:0e:be:bc:4e:a6:76:aa:ed:97:81:02:9e:c8:77:
fc:d6:ff:d0:b0:09:1a:6e:58:90:4f:7d:01:ce:65:c8:52:80:
da:85:75:45:4b:d5:d3:ae:ba:8a:c3:41:25:ee:de:32:a1:43:
3b:59:0f:2a:45:90:42:b7:f9:d0:c4:e8:9c:dc:34:66:2c:33:
10:f0:d1:45:bd:08:b5:98:45:06:55:d2:20:c5:3b:c8:f3:f1:
b3:a9:37:ef:8f:57:98:74:bf:8c:5e:cf:6b:a8:2a:98:c7:54:
08:d9:db:d6:37:4c:21:e3:61:8b:73:c9:49:59:85:9d:7d:3a:
b5:38:12:31:50:e5:54:7a:e7:d8:41:16:c2:60:c2:7e:67:3f:
d5:d7:a0:05:b5:6a:cc:73:0b:2d:e8:fd:ff:7f:a8:d3:d2:be:
6d:c3:de:fa:dc:10:e6:6d:f6:fd:81:2a:78:e3:41:b2:f2:b6:
de:fd:00:36:be:4f:e2:af:c2:28:d8:ec:2b:36:3c:87:b4:49:
99:53:d8:e0:45:a1:62:64:f0:f4:96:b4:88:a0:ee:97:31:f6:
b5:19:f9:93:e1:78:97:6d:bf:93:b8:87:d0:85:84:5f:f3:f3:
5a:04:00:c7:20:4a:05:76:28:34:00:c6:42:54:77:7f:ab:6b:
98:a1:e0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 17:35:05 2024 by rpki-client on console-ams.rpki-client.org