Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer
File: yH_T4kCIpNnfHF0CaFII6Qph7_c.cer (raw, json)
Hash identifier: cUpg9xlIZICvsPDo5BDnIgrDRakD1Yg0h2Jz64l/4qg=
Subject key identifier: C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D2AA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 18 Dec 2023 14:58:20 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 63993
IP: 103.59.108.0/22
IP: 2406:4f40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119466 (0x1d2aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 18 14:58:20 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9161065/serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:13:1b:da:75:a4:f2:be:8d:ba:69:ae:4e:aa:
d2:d3:ca:47:e8:8f:02:7e:44:00:5c:71:8d:8e:d3:
42:f1:91:3b:df:2b:ee:e9:49:ea:80:1d:b8:b7:8e:
40:ab:b7:06:4a:83:c8:b9:04:a7:af:1b:dd:8a:c5:
e7:cf:27:7d:e8:7e:5b:dc:e8:97:b5:91:7b:41:80:
18:20:5a:c4:34:cd:5b:ad:1f:3a:ad:dc:20:fc:dc:
d9:f2:fb:e3:48:65:19:97:1e:43:3f:65:9d:c3:e3:
f5:dd:84:c1:d3:1f:e4:83:24:6e:73:83:69:94:23:
d8:e0:25:bf:73:92:0f:c0:92:a5:b5:c8:8d:3c:e6:
1e:1a:aa:00:33:68:da:93:90:4f:51:bc:ca:e0:0a:
80:20:c8:fb:e9:9b:9e:d6:34:55:cd:bb:56:d7:43:
c3:4c:da:5d:de:74:7d:bf:b7:9c:8e:ab:a2:0e:0d:
e7:6e:81:d9:ec:a8:37:ab:cc:ce:a7:5f:d5:32:e3:
b1:96:26:cf:87:78:0d:45:d6:e0:39:54:1f:f3:0a:
5c:81:c3:92:8c:b5:e6:1f:8c:83:de:8f:e6:50:4f:
5e:98:53:97:3b:87:59:32:9c:02:a4:40:2c:ed:6f:
ff:48:a6:4f:e7:a5:bc:43:01:a0:2b:f6:4d:6d:b9:
42:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63993
sbgp-ipAddrBlock: critical
IPv4:
103.59.108.0/22
IPv6:
2406:4f40::/32
Signature Algorithm: sha256WithRSAEncryption
06:f0:6f:86:d8:60:67:80:3c:59:99:c9:39:8e:25:9b:af:69:
34:e1:c4:c8:2d:58:3c:d6:97:ca:eb:8b:7a:a2:37:d9:1f:63:
ca:20:1b:56:1f:80:ad:49:f9:d8:6d:05:4d:d7:4a:0d:53:ba:
bb:45:84:af:a5:58:6c:2e:73:7f:47:8d:4b:09:4f:c8:15:8f:
fb:d7:dd:2a:03:f7:88:23:47:5a:64:d1:f3:d1:5a:03:25:97:
6b:cc:6b:d9:8a:e0:40:a7:33:96:7a:96:38:b4:5d:44:97:65:
51:a0:8c:a2:bc:08:99:b9:ca:f8:c7:de:cb:f9:77:1a:05:15:
dd:b7:2f:98:ab:80:79:c4:5e:15:e5:c4:b1:46:ae:a8:c5:2a:
e6:5c:eb:58:1e:7e:42:95:36:4d:47:01:f8:51:8a:32:2f:75:
5f:61:6c:28:2a:e9:eb:dc:9f:65:de:53:68:b8:d4:1d:06:11:
d4:b2:b2:4d:7e:77:32:12:fd:4b:ac:34:c6:fe:a8:8c:c7:7c:
23:2c:01:9e:2c:24:2d:f7:b3:95:36:57:59:d3:f5:f5:d5:11:
f6:35:1a:6b:fb:aa:cd:90:e4:18:0d:fe:19:75:a2:74:bc:bf:
16:70:20:75:54:d6:64:cc:c4:8a:87:2f:57:8c:7a:46:4d:e7:
7f:a8:f9:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:17 2024 by rpki-client on console-ams.rpki-client.org