Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer
File: P9UxYCV9sBsu4O8BPB4tQusaKI0.cer (raw, json)
Hash identifier: MA/t02spRmYLP08OCwO9LKQM0yrjgn6c5ik9Wh7+G90=
Subject key identifier: 3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C2CB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Oct 2023 00:57:28 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 147022
IP: 103.173.30.0/23
IP: 2001:df7:8b80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115403 (0x1c2cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 9 00:57:28 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A911D51C/serialNumber=3FD53160257DB01B2EE0EF013C1E2D42EB1A288D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4c:cd:a4:f5:11:50:9d:41:f3:c7:68:e5:1e:
1e:e2:c7:22:bf:33:b8:4b:8c:98:c6:b4:1d:38:2e:
0f:bc:ae:f9:f7:10:c2:bd:c9:4a:62:77:d5:70:06:
ae:fb:d3:2e:c8:0d:fc:8f:11:ad:23:91:8f:23:5b:
8f:f1:80:82:e1:d7:2d:31:43:da:b8:14:26:78:55:
df:60:cc:07:99:bc:df:85:9b:10:aa:5a:93:4a:f6:
f7:b4:fb:36:74:79:87:33:8d:cf:0c:b3:9c:66:08:
71:05:6e:49:53:04:31:9c:b5:d2:8c:e4:54:0a:67:
08:59:ce:84:88:27:61:2f:94:f1:c1:28:b2:b6:f0:
7c:9d:f4:78:58:17:da:19:2e:4b:c8:9c:21:b7:54:
14:7c:17:d8:41:51:11:97:bc:67:43:03:44:80:6a:
55:a3:ca:11:47:b8:48:14:4d:4f:87:c2:3c:fb:6d:
46:47:fd:1d:60:27:c0:59:ba:28:21:0a:75:61:07:
6a:b8:f1:0b:d9:29:88:4e:b0:c9:1b:57:6e:63:55:
55:1b:91:3e:79:d4:3f:e4:1d:a8:44:44:f5:0f:0c:
cb:c6:59:3c:14:40:56:37:7e:bd:b6:21:ef:fe:82:
48:6b:b7:04:47:e1:9f:33:63:c6:6a:4e:9e:cc:63:
c0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147022
sbgp-ipAddrBlock: critical
IPv4:
103.173.30.0/23
IPv6:
2001:df7:8b80::/48
Signature Algorithm: sha256WithRSAEncryption
82:cc:30:ed:16:eb:17:4a:2d:f4:c6:46:51:c4:02:10:1a:7e:
6b:d2:1e:63:ad:97:f5:b2:f7:35:95:a4:d6:9c:8d:ab:63:c5:
f5:ef:27:94:b9:96:ae:e2:db:3f:9d:02:1f:64:6c:9a:76:34:
f7:12:ea:77:9b:e4:f2:16:ce:2c:60:48:92:36:d2:f7:45:16:
53:31:c3:73:5e:55:a1:7a:2b:25:c4:91:47:48:12:dd:8d:86:
26:dc:5b:d2:e8:c1:2d:0a:f8:17:04:97:aa:55:87:f7:6f:19:
d0:10:a5:ce:c2:95:a9:67:5c:50:41:4b:0e:99:57:fa:37:e3:
f7:be:1f:ed:e0:f2:0b:21:9d:60:49:aa:23:f9:e1:a2:c0:cf:
48:4b:8a:a5:54:a5:6d:c5:7c:4d:c5:61:45:b4:b1:35:8e:0b:
24:e5:d4:7e:08:c2:99:fb:ce:f2:c6:bf:4f:0d:f0:dc:90:ab:
2f:20:e4:19:27:ac:53:0f:ab:83:e1:44:37:cf:7b:e0:68:9a:
0f:41:d2:92:49:38:5d:29:74:8b:66:51:15:8c:6a:e1:69:be:
7f:dc:0f:7c:6a:02:ef:05:50:e9:cb:05:bc:1d:32:4c:88:ae:
52:56:18:45:14:9f:5a:83:08:f7:78:7c:05:dc:4e:17:d7:81:
3e:21:15:d0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 15:09:28 2024 by rpki-client on console-ams.rpki-client.org