Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer
File: yH_T4kCIpNnfHF0CaFII6Qph7_c.cer (raw, json)
Hash identifier: +pMbFnFj9EVA7XEl2PWFy23V8337RERarghLWWrhOjA=
Subject key identifier: C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02066B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 13 Aug 2024 04:27:03 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 63993
IP: 103.59.108.0/22
IP: 2406:4f40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132715 (0x2066b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 13 04:27:03 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9161065/serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:13:1b:da:75:a4:f2:be:8d:ba:69:ae:4e:aa:
d2:d3:ca:47:e8:8f:02:7e:44:00:5c:71:8d:8e:d3:
42:f1:91:3b:df:2b:ee:e9:49:ea:80:1d:b8:b7:8e:
40:ab:b7:06:4a:83:c8:b9:04:a7:af:1b:dd:8a:c5:
e7:cf:27:7d:e8:7e:5b:dc:e8:97:b5:91:7b:41:80:
18:20:5a:c4:34:cd:5b:ad:1f:3a:ad:dc:20:fc:dc:
d9:f2:fb:e3:48:65:19:97:1e:43:3f:65:9d:c3:e3:
f5:dd:84:c1:d3:1f:e4:83:24:6e:73:83:69:94:23:
d8:e0:25:bf:73:92:0f:c0:92:a5:b5:c8:8d:3c:e6:
1e:1a:aa:00:33:68:da:93:90:4f:51:bc:ca:e0:0a:
80:20:c8:fb:e9:9b:9e:d6:34:55:cd:bb:56:d7:43:
c3:4c:da:5d:de:74:7d:bf:b7:9c:8e:ab:a2:0e:0d:
e7:6e:81:d9:ec:a8:37:ab:cc:ce:a7:5f:d5:32:e3:
b1:96:26:cf:87:78:0d:45:d6:e0:39:54:1f:f3:0a:
5c:81:c3:92:8c:b5:e6:1f:8c:83:de:8f:e6:50:4f:
5e:98:53:97:3b:87:59:32:9c:02:a4:40:2c:ed:6f:
ff:48:a6:4f:e7:a5:bc:43:01:a0:2b:f6:4d:6d:b9:
42:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63993
sbgp-ipAddrBlock: critical
IPv4:
103.59.108.0/22
IPv6:
2406:4f40::/32
Signature Algorithm: sha256WithRSAEncryption
0b:a1:02:74:4c:93:e8:bf:ae:dd:df:3c:1e:47:d6:23:67:1c:
f7:ac:e5:ff:d2:45:ee:b9:e4:68:44:0c:34:ce:82:90:03:da:
4c:85:53:31:ec:f6:61:00:6a:4a:30:ff:e9:89:66:6d:e3:45:
bd:b1:42:ed:d7:88:4d:be:b0:91:fa:0b:cd:83:04:2c:e8:0e:
16:2f:77:e2:6c:de:3a:06:e9:23:d3:fb:88:c2:44:98:c4:66:
4e:c6:7b:1a:72:79:13:1f:f9:2d:32:8a:fb:ab:79:97:90:9d:
b9:78:53:f5:62:f1:36:59:8f:77:9e:ea:b7:ea:35:85:73:6d:
d4:14:1b:28:ce:57:59:3c:41:6c:ca:a8:38:dc:7b:e8:42:f2:
a0:a9:0b:33:a1:4b:d3:22:19:15:25:15:0b:fc:95:4a:16:0f:
b7:86:6d:bc:82:b6:ca:19:55:f5:19:7d:82:b4:d0:25:b1:02:
03:2c:93:45:30:be:74:9a:17:a1:87:9a:03:1f:ea:91:25:3c:
8d:2b:9b:f7:3f:e0:60:ce:d6:14:d6:12:e0:85:06:c7:80:6d:
f2:86:60:01:43:fa:58:f0:f9:c1:18:fe:35:e5:65:c4:98:7c:
0c:47:cd:75:6c:47:1b:22:57:f1:b2:12:43:eb:23:14:fb:92:
46:3c:dd:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:59:14 2024 by rpki-client on console-fra.rpki-client.org