Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer
File: xbajYOSK75Kf3CcpbR1S9b9umRY.cer (raw, json)
Hash identifier: Ml8WYIZAPv0bWyAFJkwQ7H0hSblp7h+P2fm9aohJyHU=
Subject key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D489
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Dec 2023 00:13:32 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 139840
IP: 103.145.238.0/23
IP: 2001:df2:3280::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119945 (0x1d489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 28 00:13:32 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0d:75:85:91:1c:a1:7b:7e:26:c7:39:37:af:
9d:3a:33:3f:89:01:de:d0:6e:88:1a:4f:a4:0d:e3:
00:01:99:d1:6b:15:bd:3f:0c:f0:9e:2f:b7:5c:85:
fd:a7:72:b4:3c:59:b9:e1:47:6a:20:e6:ef:9e:77:
32:c2:77:23:36:9b:1c:90:b6:13:b4:d9:5d:19:ed:
63:d1:7d:3a:58:c1:0c:ed:e6:7b:5b:a7:5e:2c:2a:
4c:87:74:6d:04:16:f7:c6:08:df:1f:24:ba:0c:71:
11:0e:62:a3:33:12:f5:45:b8:82:be:fc:b2:db:cf:
aa:c5:05:bf:39:c3:d2:0a:70:21:e5:d8:42:7c:9b:
0a:59:f1:8d:2e:d9:8d:6c:d8:08:d3:e1:b4:58:52:
fb:8f:b1:69:b2:17:44:37:31:67:67:82:9a:db:4f:
f3:23:b5:41:e2:2a:4f:4a:e8:96:59:13:a7:14:50:
50:e3:ec:07:27:41:aa:33:d9:7b:6b:bf:35:0a:bf:
9d:05:fc:89:d8:c8:4a:21:b9:0e:55:0f:46:ed:c7:
fa:8e:8c:72:e2:ec:81:fe:2b:63:3b:4c:de:64:cd:
ea:e1:4d:54:93:21:95:93:f0:f9:d1:85:51:c3:ce:
37:6c:8a:db:cd:e0:f6:ce:a3:46:4d:f0:e6:7e:7d:
1d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139840
sbgp-ipAddrBlock: critical
IPv4:
103.145.238.0/23
IPv6:
2001:df2:3280::/48
Signature Algorithm: sha256WithRSAEncryption
2a:e8:3f:83:15:0d:d8:ac:72:6d:f9:82:42:9b:35:a2:93:e1:
70:0e:da:f3:1d:88:d8:33:d6:39:bf:4b:48:61:2e:22:de:1c:
7a:69:ce:98:c8:81:25:af:7a:57:06:e1:ca:4d:2b:1c:5e:32:
9a:e2:b3:7f:35:0a:a2:44:86:18:ff:d1:dc:23:6b:0d:35:e4:
f4:cf:37:3c:99:b0:cd:51:76:2e:4b:4d:70:63:6b:7f:d9:bd:
46:4d:9b:08:46:f2:19:d2:b7:82:61:52:00:e4:16:24:98:0c:
32:02:44:44:f4:a8:08:4c:9f:c2:69:93:3a:7f:2a:3e:91:28:
74:c0:01:8a:66:9b:bd:a4:aa:a2:c5:ab:3d:93:04:cd:c1:6e:
6b:05:60:00:8f:91:20:15:02:8e:f1:6f:4c:67:fb:2b:3e:c7:
4d:a6:92:1a:45:99:84:31:14:a6:ad:1b:11:27:63:83:cb:68:
cd:b9:01:8b:a9:9a:5c:ab:91:9e:f8:49:f3:71:bd:01:5c:8b:
51:7e:f4:ea:02:4f:e5:e1:62:a9:66:73:02:80:14:74:ec:35:
6c:66:b1:4f:9a:26:90:7e:b1:a9:d9:3a:03:df:a0:2b:6e:4a:
4f:f1:44:24:40:e6:32:f9:1f:67:6d:c2:32:71:81:33:85:76:
72:61:e2:8f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:16 2024 by rpki-client on console-ams.rpki-client.org