Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer
File: AXJLovQFMrfgjXIPTAlmQbShyMQ.cer (raw, json)
Hash identifier: 4MuHm+KIqS9bj2TNkcwxEohptoVGHQ+RDNhk3PLZjaw=
Subject key identifier: 01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C6C3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 29 Oct 2023 01:18:58 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 147029
IP: 103.173.60.0/23
IP: 2001:df7:8e80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116419 (0x1c6c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 29 01:18:58 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9138271/serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:58:52:2f:fa:73:7a:f8:7b:d1:2b:18:bf:79:
ea:0e:77:a3:50:d2:04:96:93:55:a1:19:1b:b1:bd:
16:ad:ea:11:36:d1:fb:a1:c1:15:e0:b1:60:6d:d2:
32:c4:e2:3b:60:1c:62:19:bf:a8:38:ef:e0:7c:82:
8e:37:cc:22:97:39:24:e7:e6:cf:0d:29:8f:76:cc:
54:40:23:f1:df:82:5c:d7:f6:82:b4:d5:66:6e:4f:
13:9b:cf:a8:e6:2b:b5:26:22:52:fc:77:d5:0e:8d:
82:6b:79:57:fd:a8:81:41:53:03:c6:66:2d:21:3a:
ac:78:64:f0:19:2c:84:98:52:d8:02:28:17:66:d6:
f1:db:01:54:ab:bb:81:db:73:a5:0a:93:4b:87:04:
ed:60:91:f8:b5:34:2d:fc:97:4d:28:a1:18:87:2f:
4a:33:fa:62:df:9f:46:e6:4d:3d:f5:0e:a9:52:b4:
7b:06:9d:fa:ac:c4:45:69:ae:3c:36:24:92:4c:81:
fc:91:f1:5a:53:ae:c5:8f:57:f4:b0:8a:55:83:83:
80:bd:df:7e:68:7f:bb:da:d9:c4:d8:2c:74:1d:61:
dd:2d:9e:97:d4:36:cf:ba:6f:2f:77:40:06:65:dd:
c4:c9:92:9f:ef:46:97:a8:6d:90:ac:59:6c:85:8b:
e6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147029
sbgp-ipAddrBlock: critical
IPv4:
103.173.60.0/23
IPv6:
2001:df7:8e80::/48
Signature Algorithm: sha256WithRSAEncryption
11:dc:af:04:b6:1b:39:3c:a9:30:f3:63:53:f2:d7:6f:dc:b3:
75:07:50:c0:22:24:7e:e0:88:69:3b:5e:18:1f:61:8a:52:02:
fc:df:88:b2:ef:48:ed:67:bc:ad:10:98:7c:0c:08:76:e3:ac:
95:31:8d:0b:c8:62:74:27:0f:7a:74:75:6a:41:d2:a3:8a:78:
e6:7d:85:3a:27:30:a5:2d:fe:ca:0a:81:14:af:9b:09:17:b3:
d9:1b:77:b0:80:b7:95:69:e1:b1:bf:da:f9:73:5a:82:2a:6e:
23:55:ff:cb:0c:39:78:51:6e:99:e0:aa:f7:5a:bb:87:97:f6:
4e:1d:a7:c4:9b:12:41:b0:04:fc:3c:21:b6:47:5f:a4:d7:ec:
e3:71:a5:82:3a:2b:55:f5:1c:30:e1:81:2e:f3:20:83:47:d0:
a9:67:cd:ab:17:e0:f3:78:5f:2b:91:62:da:10:c4:71:34:e2:
44:56:a7:f3:82:95:dd:2c:1d:53:07:b4:3b:76:58:1a:b5:86:
7b:be:92:4a:ae:72:71:85:00:3a:c1:c0:57:f4:58:98:24:31:
b1:72:e1:d0:ca:6d:65:5f:a9:fc:15:fb:e8:f9:2b:db:0a:92:
d2:ec:ce:cf:f0:f1:54:1d:1a:db:48:9a:d1:31:91:73:3d:ee:
6e:aa:4c:d0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 15:20:55 2024 by rpki-client on console-fra.rpki-client.org