Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yUW3dyzMJ0E4ZaksuJLf0nyqn3c.cer
File: yUW3dyzMJ0E4ZaksuJLf0nyqn3c.cer (raw, json)
Hash identifier: Yk861CZh7Y+WdDB8gaWanP1YabmYTic/W5UaUgkC4p0=
Subject key identifier: C9:45:B7:77:2C:CC:27:41:38:65:A9:2C:B8:92:DF:D2:7C:AA:9F:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B09A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CB06F/12F30212E73811EC88F11641C4F9AE02/yUW3dyzMJ0E4ZaksuJLf0nyqn3c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CB06F/12F30212E73811EC88F11641C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 17 Jul 2023 20:17:06 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 149860
IP: 103.189.66.0/23
IP: 2001:df0:ccc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 21:46:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110746 (0x1b09a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 17 20:17:06 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91CB06F/serialNumber=C945B7772CCC27413865A92CB892DFD27CAA9F77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ec:25:9d:47:4c:45:9c:65:f9:d9:84:ca:40:
a6:a3:42:3d:9b:48:82:e5:96:e5:12:48:b8:77:b1:
6c:e0:fe:55:68:44:bb:b4:29:7f:44:9b:6e:e9:38:
54:89:93:62:ae:12:f8:b5:97:bc:8f:d1:69:a1:77:
70:ad:7c:33:36:73:f6:de:e2:f9:72:59:3c:2d:ba:
63:71:f9:cc:e2:50:3d:ad:e1:c8:f3:30:90:44:47:
26:5a:23:aa:86:ca:7f:4c:9f:ac:b4:03:3d:d8:39:
15:1d:bc:66:90:31:98:7d:8b:fb:ac:ef:9f:3c:51:
8c:c8:2d:50:21:58:aa:17:11:7d:b2:4b:b0:94:55:
77:71:b2:a1:23:c2:ac:1c:f9:c9:35:89:b6:dc:1d:
a3:ad:e9:78:d2:3f:84:59:b4:19:41:aa:fd:29:5c:
7f:f6:a1:73:12:7e:6e:75:7b:29:37:d5:68:ad:6a:
76:bd:91:9d:43:81:21:48:99:bb:e0:8a:39:40:47:
56:69:38:07:67:50:97:0f:4a:46:b8:ec:12:70:93:
6a:4c:f6:b8:be:07:bd:6e:4f:c7:5f:b8:56:35:ac:
4e:3a:d3:7b:2d:4a:d3:c7:62:9c:03:c9:e3:4e:17:
a9:b6:6c:e8:34:26:19:d7:97:1d:6c:71:c6:5c:4b:
4f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:45:B7:77:2C:CC:27:41:38:65:A9:2C:B8:92:DF:D2:7C:AA:9F:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CB06F/12F30212E73811EC88F11641C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CB06F/12F30212E73811EC88F11641C4F9AE02/yUW3dyzMJ0E4ZaksuJLf0nyqn3c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149860
sbgp-ipAddrBlock: critical
IPv4:
103.189.66.0/23
IPv6:
2001:df0:ccc0::/48
Signature Algorithm: sha256WithRSAEncryption
89:bf:f0:fa:b0:95:c9:df:83:b8:91:00:0d:79:79:80:9a:45:
9e:72:98:cc:79:b8:b8:00:53:30:47:67:cb:08:48:c9:19:98:
ad:b7:10:f1:d5:1a:93:ce:1e:77:1c:52:58:f7:5f:ae:fd:5f:
cf:b8:a2:af:f1:11:c5:3d:8e:c7:bf:9c:b0:06:df:4a:53:65:
8a:33:8c:0e:0b:e6:cf:51:26:ae:d7:44:1d:9f:34:0b:93:fc:
d8:34:22:f6:39:b9:4f:7d:1b:fd:9c:99:2a:ad:8d:31:69:54:
18:7d:99:34:84:59:e3:69:dc:59:d6:eb:66:ca:f0:5d:86:23:
3a:a3:30:60:33:3b:1b:de:01:a7:93:0c:a2:e7:dc:a0:5f:33:
2d:2d:40:8b:c0:10:06:3d:4c:02:fb:2a:32:0d:b1:97:af:c8:
fd:6f:20:6d:bc:50:a0:28:76:f8:d6:e4:f1:12:05:3b:34:38:
94:96:77:46:a3:7a:d0:88:44:b0:98:8b:a8:15:49:74:6d:4c:
1f:a0:2f:dc:24:2f:01:6a:9c:ce:e2:97:ec:ae:6c:fe:c5:9f:
bc:05:d4:7b:95:b9:49:9c:bb:08:d8:a4:ad:e9:64:2e:59:9e:
a5:6f:38:27:5e:13:5b:2b:84:83:4e:b2:f6:91:8f:22:11:25:
0d:be:66:a2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 24 22:30:45 2024 by rpki-client on console-fra.rpki-client.org