Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer
File: zXuGlWvtndYhW-SF8McVuSDJp3A.cer (raw, json)
Hash identifier: cvvkm5Fq2tu+IyeTNw5JmobABWoITsxZUkY4lV1wod0=
Subject key identifier: CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E0E3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 27 Feb 2024 08:59:30 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 133129
IP: 103.252.14.0/23
IP: 2001:df6:5000::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123107 (0x1e0e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 08:59:30 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A918B61E/serialNumber=CD7B86956BED9DD6215BE485F0C715B920C9A770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d8:fd:3f:09:fe:9d:ec:0d:04:ae:32:18:88:
4a:9e:19:81:e7:ba:48:26:83:b4:7f:a8:a0:c8:4d:
0e:e2:d4:ea:e8:27:9d:c6:8b:d1:b0:69:90:62:3d:
96:99:96:73:84:1f:9e:c3:96:f9:8b:a6:17:40:12:
10:91:9e:17:03:74:b4:3d:6e:00:09:23:24:da:4e:
01:37:e0:5f:2f:c1:20:d2:4d:fe:e5:ec:2d:0f:7a:
9d:1e:3f:e5:67:3d:f7:80:fb:53:f1:a1:77:ca:26:
3d:49:08:5f:89:68:54:2a:ac:42:4a:80:73:62:93:
e5:73:50:f4:9a:64:73:0f:c2:e4:66:39:4c:98:88:
ee:54:85:02:c3:33:f5:34:3c:9c:c0:38:a4:a4:00:
0d:ad:73:e4:b2:7f:ee:c2:87:d7:79:7c:63:48:e2:
16:9e:fa:51:ec:1f:a6:41:94:78:23:df:e5:4f:d5:
e8:d8:1c:01:a9:38:79:ea:7a:ab:0d:37:e9:c2:97:
29:9c:07:ad:62:57:53:b5:a0:48:be:12:24:c0:7b:
bc:d1:94:77:33:88:8e:d6:e9:bc:68:14:95:7d:dd:
eb:b9:9e:7f:6c:be:01:6b:b5:f5:80:7b:cc:f2:a6:
ef:6b:38:de:ab:ab:4c:a6:82:b2:52:a0:d3:54:05:
80:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133129
sbgp-ipAddrBlock: critical
IPv4:
103.252.14.0/23
IPv6:
2001:df6:5000::/48
Signature Algorithm: sha256WithRSAEncryption
a9:b3:3d:bd:9a:9e:24:dd:17:48:97:7a:ce:29:43:b4:fe:55:
25:67:9e:69:75:96:fd:84:da:56:c8:6e:dc:da:22:86:40:57:
d6:c3:e4:ac:7b:4d:4c:24:c2:22:46:21:41:06:f4:ed:34:07:
e7:46:2b:bb:97:7a:ae:70:32:ea:01:24:11:35:b1:1f:c6:eb:
17:6d:1c:3f:07:72:e3:4f:37:45:e0:45:fb:53:35:64:3e:ca:
d4:93:a8:e3:83:00:f1:35:2d:02:88:8e:fc:56:69:ba:2c:3e:
fc:ef:a0:86:93:3f:6e:cc:84:c3:b0:5a:b3:99:e3:6f:72:c1:
d3:f4:ed:77:f3:79:16:20:95:b4:f4:cd:01:48:cc:b3:18:9c:
29:da:59:6e:09:ae:b4:06:dd:bd:e9:a4:06:98:71:9f:68:70:
a8:74:94:d5:a8:37:e9:2e:db:f9:14:a2:38:41:50:30:90:1e:
c4:bd:ef:47:f3:33:0e:71:1e:7c:b7:1b:94:af:b1:03:db:13:
24:06:fc:84:2a:51:81:12:00:20:e0:ac:e2:96:a0:ad:60:ae:
59:88:68:95:f4:ec:1a:8d:44:c2:5a:7c:df:c6:de:14:46:cb:
54:db:85:4a:ae:9a:a5:8a:7f:f6:60:e3:57:76:49:d5:23:1f:
1b:3e:f3:d1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 06:14:44 2024 by rpki-client on console-fra.rpki-client.org