Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer
File: y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer (raw, json)
Hash identifier: 9XpDLySr4S5LRq3BugHJXoQ795FkZkq25JntbwYM4cY=
Subject key identifier: CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C4F5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 19 Oct 2023 05:41:02 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 151968
IP: 103.67.62.0/23
IP: 2401:4820::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115957 (0x1c4f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 19 05:41:02 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9159FAF/serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:73:5f:eb:bc:b9:3a:b4:5f:89:dd:de:67:ea:
fc:6b:53:25:b8:13:21:7a:09:b9:d6:2a:0e:3f:ec:
59:5d:a6:dd:ec:8b:f3:95:87:b9:99:c4:8b:64:1a:
7d:36:b1:05:a4:28:34:da:61:11:95:f3:f5:2d:41:
46:fb:7f:1e:30:0b:28:24:5a:70:c7:12:9a:28:aa:
0f:eb:9f:85:10:53:22:c9:29:28:71:5b:09:e5:74:
f5:9d:9f:02:35:27:26:bb:95:ad:8a:a0:af:23:73:
51:e8:37:a3:4d:03:6b:df:0b:99:cb:cf:60:27:99:
a2:9e:f0:bc:f4:99:7a:3c:25:af:af:5d:6a:1b:98:
fe:25:fc:89:b4:24:0b:bb:3f:48:10:38:1e:c1:e4:
5f:60:f2:6f:cf:c4:2c:13:e5:8d:fe:ef:a7:0e:cf:
7b:8a:e5:ce:b9:54:af:5d:55:61:9a:46:a6:d5:f8:
64:ca:e4:4d:75:48:8c:72:59:e4:68:15:d4:5b:f8:
06:f8:ef:bc:a1:fc:8e:8f:ad:5f:3c:26:b9:64:92:
96:81:37:3b:bd:82:9b:71:db:67:bf:68:46:3d:ef:
2f:b0:8a:4d:d4:a9:12:02:96:34:0d:57:2d:e7:98:
1f:60:6b:26:75:4c:0b:d0:bc:77:bb:0a:cd:0c:12:
aa:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151968
sbgp-ipAddrBlock: critical
IPv4:
103.67.62.0/23
IPv6:
2401:4820::/32
Signature Algorithm: sha256WithRSAEncryption
4e:de:54:4b:8d:23:53:f7:9c:e5:d2:89:f1:69:11:80:ab:cd:
9e:0d:22:fb:33:84:1f:19:3b:be:ca:94:22:99:dc:af:a2:5d:
03:0c:e5:6e:f4:d0:e2:48:39:78:af:f5:a2:45:46:36:ba:88:
07:e3:dc:19:26:6d:e7:73:dc:ce:a5:45:7a:40:bf:e9:84:9f:
f8:20:01:32:89:4d:3e:db:98:0c:4e:7d:0c:10:82:87:52:b2:
7e:46:d5:92:34:5e:6c:08:38:4f:3e:b7:4f:e4:a6:03:21:21:
e5:c1:8f:bb:1f:7a:b3:7c:1a:7c:a3:65:2c:9e:19:49:30:52:
20:35:61:7b:2e:03:96:f8:99:14:f7:74:fd:11:84:e7:0d:be:
bc:d1:74:5f:45:d9:8c:8f:25:b5:61:15:48:46:0f:5a:f9:8b:
30:c3:54:72:93:17:9a:a2:4c:f3:de:25:b3:09:43:81:b8:39:
3a:17:ef:88:92:ac:fe:21:e9:47:23:f2:b1:ca:06:d2:20:83:
34:16:a1:39:0e:b5:fe:4d:c3:9c:f4:b7:9a:85:1b:16:4a:5d:
e2:a8:31:9b:db:95:33:22:09:c6:f2:40:04:dc:a2:29:ad:67:
46:3b:ca:17:bd:b5:58:9b:a6:bf:ca:b9:8f:92:d1:ea:83:e1:
6f:92:e0:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 11:35:49 2024 by rpki-client on console-fra.rpki-client.org