Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer
File: zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer (raw, json)
Hash identifier: /DKbbD0M5s3pLQkE5e5FoyfEeWHvYdWdB+l7q66HZfo=
Subject key identifier: CD:C1:87:A6:42:B4:D7:EC:50:DC:AE:59:A0:06:6F:14:8D:51:08:01
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B45E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 02 Aug 2023 13:03:04 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 150306
IP: 103.234.118.0/23
IP: 2001:df1:42c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111710 (0x1b45e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 13:03:04 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A912672E/serialNumber=CDC187A642B4D7EC50DCAE59A0066F148D510801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:57:fa:b8:45:58:e6:d8:e7:64:3e:41:eb:72:
54:7b:c4:ba:0d:74:fa:60:e3:b8:cc:c6:17:ea:b3:
3b:a5:4d:bc:1d:a4:ce:f2:ba:95:92:33:a1:bc:44:
62:2e:6a:22:77:57:46:ef:55:48:e2:94:be:d8:67:
68:2f:d0:dd:68:94:32:0b:e2:b3:94:9e:5f:25:49:
98:df:8f:be:0f:ad:ed:55:70:e0:2c:a5:22:98:21:
ba:d6:2a:70:97:35:60:5e:d6:f7:ce:5b:2c:9e:ed:
6e:be:d5:c1:d0:df:93:f4:ee:75:fc:9c:4c:b1:65:
b5:eb:25:f2:fa:47:c9:00:7a:dd:95:09:d4:fe:b6:
45:08:e4:b5:9e:10:ee:8f:87:e2:18:fd:d1:43:0d:
63:49:df:77:cb:1b:b8:3b:b3:77:fa:19:97:86:68:
3b:c5:90:aa:76:15:58:be:1e:3b:23:f0:7b:30:ac:
5e:e5:fe:c6:db:a0:6c:d8:d5:46:aa:c3:88:3c:e0:
09:ad:36:fd:df:f7:66:98:47:b4:ee:be:6a:a7:41:
ff:7c:4e:3d:93:d9:2c:21:9b:12:65:c2:28:19:07:
0c:29:26:7d:85:e0:da:9c:2d:dd:ef:65:2f:fa:70:
15:78:45:28:a1:a7:00:09:f8:dd:0b:7b:2c:f3:3a:
77:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C1:87:A6:42:B4:D7:EC:50:DC:AE:59:A0:06:6F:14:8D:51:08:01
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150306
sbgp-ipAddrBlock: critical
IPv4:
103.234.118.0/23
IPv6:
2001:df1:42c0::/48
Signature Algorithm: sha256WithRSAEncryption
98:ec:b1:36:cf:40:e4:d1:24:f9:66:16:fb:20:d9:c1:f1:0b:
b7:10:ab:78:5f:6a:f7:ad:03:c9:23:42:78:32:f3:8d:b1:6e:
90:b5:fc:3d:e5:ed:b4:06:15:41:48:95:81:46:52:66:7b:c4:
a3:ca:a0:ac:3b:d8:a1:55:2e:96:ef:59:07:4e:24:2b:8b:64:
c3:9c:31:c1:b4:2d:31:97:47:15:b7:5b:96:25:ae:d9:63:57:
ab:07:c1:81:7a:32:5b:60:96:ec:61:21:3d:e7:ec:0a:81:80:
4c:dc:4a:22:ec:9a:ab:0d:98:4a:6a:1a:0c:65:c2:8d:d1:21:
6f:2b:30:bc:82:2c:78:c1:a4:82:14:20:79:d6:06:ec:e0:0e:
49:42:2a:87:0b:a4:d5:c7:cf:df:0e:93:27:59:f8:96:d5:7c:
93:c5:79:96:1d:a8:ec:df:f3:fe:06:87:ab:0b:c7:86:12:64:
b7:b6:a7:3d:a8:7d:20:41:92:7b:06:a0:25:16:46:4f:2e:63:
d3:cd:fb:73:72:c5:30:73:e4:d8:37:02:74:8d:29:53:40:45:
b3:07:0c:02:23:8c:32:16:cf:c8:db:8d:2d:70:b5:a3:13:5a:
80:15:6e:b0:12:39:69:97:51:58:b6:03:44:07:a0:87:9c:6b:
09:61:d4:55
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 07:21:44 2024 by rpki-client on console-ams.rpki-client.org