Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJEt9MR_ima8SJ7IQnJICiEbBoI.cer
File: yJEt9MR_ima8SJ7IQnJICiEbBoI.cer (raw, json)
Hash identifier: rwW4DYGpNC4eHh3OR/KFAIXtsWAoRaAPNj4iCL03lCw=
Subject key identifier: C8:91:2D:F4:C4:7F:8A:66:BC:48:9E:C8:42:72:48:0A:21:1B:06:82
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E4D6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/yJEt9MR_ima8SJ7IQnJICiEbBoI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 16 Mar 2024 18:02:51 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 139881
IP: 103.146.150.0/23
IP: 2001:df2:6580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 19:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124118 (0x1e4d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 16 18:02:51 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91C9286/serialNumber=C8912DF4C47F8A66BC489EC84272480A211B0682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8b:c0:3f:ad:fe:2d:dc:61:a4:25:17:78:5b:
16:af:3d:2e:75:8b:b0:c4:89:b2:00:d3:94:5e:e6:
69:32:e1:13:70:48:ea:22:7d:00:ad:7f:f3:70:61:
11:98:37:03:3d:f2:d3:60:61:d4:da:91:97:10:23:
89:6e:a6:3f:34:b5:4c:a3:62:a9:ed:77:ed:78:e6:
5b:a1:2b:40:3d:b2:ea:31:e9:ca:70:2c:44:d4:d6:
82:32:fa:fb:54:6c:46:2e:c1:52:b5:a7:9a:a0:1d:
28:93:08:ae:3a:92:c8:69:f5:17:4c:cf:3a:3b:b7:
ec:9f:a6:8c:ca:2d:90:18:bf:d8:e2:dd:cd:d6:c1:
5c:43:62:be:10:ff:87:3b:8e:3c:0a:03:6f:25:77:
66:77:be:65:4e:71:bc:8f:22:58:f1:8b:11:47:cd:
c6:4e:7b:a4:8d:5f:26:f3:04:e4:56:73:be:1d:47:
f0:59:9c:58:f4:75:c2:28:36:a9:6e:fd:d1:d3:d8:
17:11:aa:cf:d4:c1:44:db:9c:ac:af:a0:5b:f2:af:
c0:68:24:ee:de:fd:18:3d:bb:c5:da:d0:23:2e:3a:
b9:e8:69:bb:1c:d7:62:4f:82:5e:14:5f:28:35:5e:
89:5e:59:6c:96:b5:48:ad:16:09:3e:df:92:91:9f:
91:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:91:2D:F4:C4:7F:8A:66:BC:48:9E:C8:42:72:48:0A:21:1B:06:82
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/yJEt9MR_ima8SJ7IQnJICiEbBoI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139881
sbgp-ipAddrBlock: critical
IPv4:
103.146.150.0/23
IPv6:
2001:df2:6580::/48
Signature Algorithm: sha256WithRSAEncryption
0d:e1:4d:e8:4b:ff:b3:a4:3a:1e:07:f8:48:a2:1a:dc:2a:9f:
8e:b0:2a:a8:ba:4a:75:51:7a:53:ac:1b:34:75:ae:10:93:93:
79:22:f6:7d:a6:1e:e6:0c:c0:7f:6f:d6:a8:c4:95:36:52:09:
00:b3:ba:f0:b0:9a:2a:05:6d:1d:37:4d:19:67:f7:04:c3:c4:
5f:7e:03:1e:ea:c9:29:7a:25:a5:30:b5:ca:64:7e:66:1a:f7:
7a:7c:11:3c:b0:10:4c:48:a2:f9:ba:f2:5b:cf:3a:f0:24:5d:
ad:eb:3b:47:57:6f:43:23:3b:fa:92:76:0d:ce:18:71:e1:26:
09:c8:e3:1a:88:73:5c:9b:a0:aa:9b:91:ef:15:bd:b8:6b:0b:
c3:81:0c:6f:5e:7f:c1:63:f7:94:69:2c:13:36:fc:61:78:ca:
20:2b:1c:41:8a:f0:13:85:04:5d:b9:d8:d8:a6:3b:7e:02:bf:
9f:3f:8c:65:4a:df:99:46:ed:18:8e:26:9d:85:46:20:32:ad:
c3:aa:cf:ae:21:ab:0f:6d:35:db:49:c7:e0:80:78:30:30:09:
4d:89:b2:0b:61:78:93:16:21:b8:51:7d:69:55:57:a4:64:db:
ea:b0:ab:e1:86:35:69:a7:17:20:53:ca:d8:97:31:52:53:d6:
1c:42:ad:87
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 19 20:21:52 2024 by rpki-client on console-fra.rpki-client.org