Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer
File: yZ1gB81HfYmzWcM8k8qptbsQYBo.cer (raw, json)
Hash identifier: Ra1H40YtolqUPiZaAr34bjX3bLxVKR6YamZernmfhqE=
Subject key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E554
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 19 Mar 2024 16:15:06 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 138659
IP: 103.135.232.0/22
IP: 2404:86c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124244 (0x1e554)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 19 16:15:06 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:88:f1:f4:14:69:21:34:24:4c:11:dc:54:53:
dc:9a:eb:88:7a:53:2f:b7:9a:4e:33:2d:6b:6b:74:
16:89:4f:11:7d:20:cf:a6:2d:9f:df:ad:9e:38:a7:
9f:b9:08:61:26:f9:0c:28:e3:6a:67:d9:88:b6:3c:
34:b5:5a:d5:91:71:de:e2:46:81:fe:1f:7d:29:61:
bf:9f:eb:9a:60:27:d0:96:91:5a:ba:79:92:83:e9:
0c:aa:e6:dd:2a:d4:30:64:cc:74:6a:bc:17:41:ab:
1b:1c:53:d4:b2:87:dc:35:c7:c1:18:1e:72:82:17:
ae:0d:dc:3e:d7:22:d8:1f:3e:38:7a:f0:86:f0:6f:
6b:99:2c:63:3d:22:4e:c7:81:f1:d3:25:b3:4a:42:
1e:2a:da:5f:64:6b:6c:50:98:c0:86:5b:db:67:d3:
51:9e:b9:91:1c:f0:bb:59:21:b8:5e:f9:ee:cc:15:
11:2a:79:87:4a:42:db:e9:fb:36:b3:04:6d:7c:e1:
37:d9:96:93:e5:ea:8d:a4:6c:54:d6:21:87:f1:4f:
da:d4:99:6b:27:27:37:d5:42:b2:21:fe:2d:bf:f0:
3b:be:9f:d0:77:85:7c:19:a1:ec:d1:e7:ed:6f:5a:
39:77:2f:b7:84:d7:70:05:56:02:7b:91:6a:16:d8:
90:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138659
sbgp-ipAddrBlock: critical
IPv4:
103.135.232.0/22
IPv6:
2404:86c0::/32
Signature Algorithm: sha256WithRSAEncryption
36:c5:02:30:6f:21:1d:2f:45:0f:70:44:43:17:95:57:50:cd:
e2:d5:d4:30:fe:11:e4:00:6f:c4:7e:83:3b:82:b8:37:1e:55:
97:97:9c:38:ea:f8:d9:9f:7b:d2:f9:97:44:86:91:de:9c:cc:
b5:12:78:30:ee:83:03:c2:33:3c:4a:7a:ac:ad:c1:44:3c:f5:
c0:60:fb:78:2c:62:fc:e2:d4:b4:8f:61:ac:bf:09:94:46:80:
aa:72:3d:f0:75:5e:67:6d:21:12:8c:8b:28:fe:91:cb:8d:f9:
a8:a2:9b:d6:6b:1d:20:d7:85:a1:e0:60:3c:bc:a8:2b:a2:f7:
6e:a2:81:3a:df:77:d6:81:b3:8a:50:59:f6:9c:dc:10:69:8d:
9d:45:fe:f7:e4:c5:85:1e:bc:ab:39:93:84:37:08:d4:8c:ff:
31:5c:bd:fa:c4:e9:cc:31:f0:a9:df:5a:aa:d5:5c:23:0c:bf:
b4:b2:54:05:c5:f8:dd:d1:a6:4d:89:8d:14:5e:be:6f:d5:d3:
a9:85:0e:36:47:c3:06:aa:3f:cf:6a:93:1d:4f:f3:9e:06:a8:
5f:e6:de:14:d0:12:05:5d:f4:2c:97:4e:bb:48:56:bc:1b:5b:
83:07:9f:11:cc:36:bf:dd:37:44:11:43:f1:2c:f8:8c:7f:4c:
7a:d0:02:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:57 2024 by rpki-client on console-ams.rpki-client.org