Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer
File: xw3ieKt3JtKco6jAJAeqW64S7Ao.cer (raw, json)
Hash identifier: LH0feZwQZtwkPZitVyfiqDw4if1xdmNWYbvxY0BIQ50=
Subject key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020A95
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 31 Aug 2024 15:59:18 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 131299
IP: 103.68.112.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133781 (0x20a95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 31 15:59:18 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:21:a4:72:2c:22:19:26:88:00:d2:f6:a6:e6:
72:76:78:79:c5:cc:9d:48:db:1c:b2:3c:00:cc:b1:
e3:21:b6:b8:15:80:a3:f7:28:80:4f:ba:ed:5d:ff:
b7:6d:27:b1:17:92:8e:4b:fa:d7:ef:bf:2b:98:1b:
4f:15:ea:1c:9a:21:0d:88:0a:e2:26:2e:f9:6d:08:
92:d5:95:e7:b7:02:bc:d7:b7:27:e0:5a:42:7c:84:
11:cb:39:c5:6b:47:dc:f5:c1:9d:3b:a6:37:a1:3e:
d6:e8:c3:3b:74:23:95:77:c0:fd:43:fd:5e:ce:e1:
37:2e:46:ea:73:86:f1:3a:ce:62:07:2c:d7:cb:1c:
35:37:ed:0e:94:66:e1:1a:bd:14:69:a0:ed:bc:8f:
74:1c:99:6e:5d:be:df:8c:64:36:34:c6:41:a5:77:
0b:8b:93:4d:b2:7b:59:45:2f:c8:5e:c4:f4:ae:c4:
ea:d7:23:b1:7c:d4:96:fa:da:b2:20:a0:6f:7c:cf:
a4:1b:e6:d6:4d:14:35:5d:f6:c8:27:49:15:c9:3f:
56:43:84:be:8c:ca:fb:0f:d0:db:77:45:5f:c3:69:
aa:fb:0e:dc:d4:9d:fa:5c:b1:ed:dd:28:2e:23:90:
4c:cd:b0:b6:3a:f7:a1:48:3b:c9:92:3a:46:5a:39:
09:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131299
sbgp-ipAddrBlock: critical
IPv4:
103.68.112.0/22
Signature Algorithm: sha256WithRSAEncryption
cd:54:46:81:c2:47:6c:da:cb:37:80:48:ee:83:52:8a:6a:25:
b5:71:5d:22:e9:db:20:17:f3:a1:8e:ea:e8:cc:fa:18:30:fd:
c3:07:61:69:dd:ed:1e:04:aa:88:82:f7:26:a1:db:23:cc:70:
3d:d0:bd:0a:52:f0:79:7b:79:4a:09:66:c7:66:e5:8a:81:62:
bd:a6:56:e3:94:13:0d:ef:e3:e7:69:20:46:92:7e:94:50:f5:
27:20:ba:e4:15:c8:6f:5e:06:43:fc:1d:cf:8c:c3:bc:f0:3f:
56:21:6b:43:04:98:b8:6f:61:d5:ca:e4:03:61:5b:aa:6f:1d:
b1:cf:32:96:05:eb:d2:72:e7:ca:57:ae:b9:18:de:7f:7d:d0:
32:10:41:23:35:9f:7a:f9:b9:5a:98:fe:4f:ae:c9:b3:5e:66:
34:28:7c:57:bc:b6:75:f7:3a:00:fd:c2:26:64:70:97:6b:3d:
88:5e:97:ff:f0:5f:b4:17:d3:3e:85:e1:e9:7a:de:05:05:7f:
65:e0:0b:ea:93:90:ff:d4:5b:b2:20:e4:5b:3c:1a:b6:7e:8c:
7c:e6:ee:28:79:dd:94:65:95:86:fe:27:ba:2b:1a:ae:51:01:
f6:48:14:00:ea:2c:64:98:8f:d1:cd:4d:01:d3:32:03:8e:7d:
14:e0:6b:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 22:42:19 2024 by rpki-client on console-ams.rpki-client.org