Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer
File: H3amlEQsq0PX0XzW_fmpfgt_qo4.cer (raw, json)
Hash identifier: DII5EB/aLjW/9TPKF+Qu5PDU41uqNgTTl5Xv5NCGSdI=
Subject key identifier: 1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F0B1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 May 2024 15:01:22 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 142042
IP: 103.165.97.0/24
IP: 2001:df6:6680::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127153 (0x1f0b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 8 15:01:22 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9158059/serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d3:c7:d1:0b:32:72:ae:bd:c0:4c:44:25:6b:
8b:ad:99:6a:d1:81:b5:3e:89:fb:1a:b7:2f:0f:8c:
56:30:ad:21:5b:ea:73:d5:1b:b0:7a:05:53:bd:9f:
12:3f:9c:ca:43:15:d9:67:6d:51:67:35:b0:0a:88:
e9:e0:dd:30:e7:21:67:ac:d7:57:20:41:dd:96:c4:
4e:ac:7f:cc:b7:8e:0f:10:26:d7:aa:4d:7a:71:a9:
bd:89:0f:9e:53:cc:d7:dc:e4:bf:05:b9:0f:8f:48:
17:89:3f:89:d8:b0:24:77:03:d7:61:f8:0b:4b:0f:
d5:13:00:72:2b:37:9b:ca:53:f3:8a:6b:c0:76:d7:
0c:60:9f:50:c9:45:11:aa:bc:ec:cb:fa:a6:9b:0c:
33:81:af:69:3d:66:45:fd:f2:26:12:0d:9e:31:7b:
3d:f7:30:b9:76:d5:42:3f:28:33:bb:57:20:7d:12:
76:9d:12:94:a3:63:1d:86:7d:b0:e3:d9:b2:00:29:
db:77:41:45:1b:88:c1:2b:e8:cb:7d:2b:8a:09:e8:
3a:ef:49:70:43:46:f1:32:1d:13:84:1f:fc:92:a3:
e4:5d:cb:d4:91:36:0f:8f:d6:fa:7d:35:d8:5e:4d:
17:c8:13:8b:e6:5e:f6:59:4a:d1:12:27:31:c3:01:
25:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142042
sbgp-ipAddrBlock: critical
IPv4:
103.165.97.0/24
IPv6:
2001:df6:6680::/48
Signature Algorithm: sha256WithRSAEncryption
21:03:5d:bb:7e:aa:0f:bf:39:bd:18:21:9d:a8:4e:e5:a7:71:
a4:2b:30:59:87:d5:22:96:b2:04:c9:7f:aa:a1:90:5a:79:cf:
78:bb:02:4a:91:01:44:b6:78:07:36:30:6a:aa:62:6c:0b:f2:
28:32:c6:0d:73:82:88:d6:8b:a2:af:c2:c4:51:ad:ac:88:59:
65:2a:f1:3c:be:60:38:1f:5f:39:a7:64:7c:e3:de:33:ce:59:
92:c5:4f:ea:07:79:ec:1e:b0:5c:c5:69:ff:f7:f3:b8:58:db:
e7:f8:ea:40:0f:14:63:cf:76:55:c8:19:2b:a0:53:21:04:9e:
70:08:11:6d:3e:2d:a0:77:0c:16:b9:bf:58:36:fd:55:65:f8:
00:6b:a6:88:d9:58:37:94:ff:00:42:56:4e:6e:aa:30:74:0f:
e6:75:a6:00:4e:af:c5:e5:0e:be:e0:a0:22:0a:f3:cb:e8:ab:
35:10:d5:59:30:fe:fe:aa:4e:3b:04:1e:d4:e3:15:df:e8:62:
11:69:5c:3c:a2:fa:67:99:40:a7:62:c6:ef:c8:e4:c7:60:94:
ef:60:ef:06:01:71:ca:10:17:d4:6f:b2:d1:bd:cd:bf:08:b8:
e8:e5:2e:7c:9c:40:a0:36:52:0f:42:4d:71:a7:b3:63:47:30:
b3:12:24:e4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 03:38:22 2024 by rpki-client on console-ams.rpki-client.org