Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2EvNbFgJJ5vLzApWrUoWgyMPQz4.cer
File: 2EvNbFgJJ5vLzApWrUoWgyMPQz4.cer (raw, json)
Hash identifier: aTkSiQOa3O0LhaFn0vZFA74DNUK66uderur3iAogm/o=
Subject key identifier: D8:4B:CD:6C:58:09:27:9B:CB:CC:0A:56:AD:4A:16:83:23:0F:43:3E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F048
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BE374/40603562AC3111ED928B1936C4F9AE02/2EvNbFgJJ5vLzApWrUoWgyMPQz4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BE374/40603562AC3111ED928B1936C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 07 May 2024 05:49:53 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 135896
IP: 103.186.106.0/23
IP: 2400:6fe0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127048 (0x1f048)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 7 05:49:53 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91BE374/serialNumber=D84BCD6C5809279BCBCC0A56AD4A1683230F433E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:32:48:5d:60:74:05:63:ac:66:ab:0e:96:6e:
d4:ec:fe:36:74:94:c9:2b:d2:dd:b4:3d:a4:c9:47:
b3:57:9c:1e:6e:50:fa:ae:a8:a0:ae:d4:cf:ad:f5:
8f:0c:89:53:29:c2:22:7d:c6:d1:76:c3:a0:f7:08:
88:33:d0:9e:0f:d9:8b:42:29:37:05:94:06:f0:26:
ba:0f:35:17:2b:56:68:b3:26:f8:b5:58:c1:cb:af:
3f:eb:d0:81:38:7c:3a:44:a2:9a:0c:1b:55:c3:21:
51:71:8c:16:ec:5e:a1:9a:c5:66:a0:49:dd:bd:4d:
80:7e:27:41:2f:ea:df:5b:4e:7c:7c:a8:72:60:0b:
57:60:10:ec:b5:70:7c:67:2b:e0:bd:16:ac:02:f1:
0e:ef:02:56:2a:96:86:21:00:c6:d6:8e:ee:6e:00:
ef:e8:8e:c5:8f:1b:84:b4:5e:b8:82:be:85:0d:31:
9a:1c:4e:53:fb:cb:43:34:88:ca:af:eb:17:5f:7c:
02:49:f7:e4:84:58:51:d1:c4:0c:13:e3:1d:3f:60:
1d:f0:fb:de:17:af:2e:db:55:76:66:1b:80:ae:cc:
59:53:63:7f:0a:ed:f3:68:ab:54:18:bc:2d:9a:82:
7a:13:7f:89:9e:7e:78:b9:1a:57:37:10:eb:e3:82:
4a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4B:CD:6C:58:09:27:9B:CB:CC:0A:56:AD:4A:16:83:23:0F:43:3E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BE374/40603562AC3111ED928B1936C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BE374/40603562AC3111ED928B1936C4F9AE02/2EvNbFgJJ5vLzApWrUoWgyMPQz4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135896
sbgp-ipAddrBlock: critical
IPv4:
103.186.106.0/23
IPv6:
2400:6fe0::/32
Signature Algorithm: sha256WithRSAEncryption
4d:7c:5a:99:e2:18:18:39:68:d6:32:71:5c:71:db:81:2f:18:
d2:5f:8c:35:68:e7:7f:fc:c7:13:12:4d:5e:45:4e:dd:c0:fb:
49:d0:92:2f:27:5d:60:a0:e9:4a:43:8d:bb:95:e2:e6:7d:bc:
df:17:db:83:14:c8:1c:6c:15:95:77:64:23:04:a5:65:f3:2e:
4b:21:e7:ae:de:5c:fd:72:44:d0:44:0c:47:54:dd:2a:64:41:
a7:ad:90:b6:ad:05:e1:7e:09:40:9c:09:61:c9:61:9b:c1:1c:
91:09:6c:c8:e3:b0:fe:0a:0a:66:e2:78:58:15:2f:d2:db:b9:
84:05:44:96:ca:47:ad:ed:0b:2a:f2:51:0b:cd:cb:30:f3:5e:
14:c2:58:32:7c:9b:81:c7:e0:e1:bb:42:a2:ba:3a:0a:4c:58:
74:1c:70:56:3c:20:bd:07:06:4a:40:b3:fb:b6:57:eb:70:8a:
7f:15:8c:27:54:f9:10:f0:ba:4d:4b:af:43:e0:4d:4d:27:2e:
75:1b:df:48:4c:e3:a8:b6:06:9d:80:0c:65:6d:3b:f6:3a:bd:
60:e9:ae:8c:81:fa:3e:a5:ad:dd:d4:10:e6:ed:e8:03:b8:eb:
40:fc:53:13:90:70:66:42:ef:df:ff:e5:76:c6:bc:a2:df:60:
af:c5:67:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 15:20:48 2024 by rpki-client on console-fra.rpki-client.org