Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cClGBbAXy3lsrYhC9e-6P0SHB_U.cer
File: cClGBbAXy3lsrYhC9e-6P0SHB_U.cer (raw, json)
Hash identifier: ZR7fuDl3pX0kOtR89Jx7j5PXjoCjDaOvO2/DXaqRYn4=
Subject key identifier: 70:29:46:05:B0:17:CB:79:6C:AD:88:42:F5:EF:BA:3F:44:87:07:F5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A813
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/cClGBbAXy3lsrYhC9e-6P0SHB_U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 03 Jun 2023 18:41:51 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 142290
AS: 148971
AS: 149007
IP: 103.167.134.0/23
IP: 2001:df6:b780::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108563 (0x1a813)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 3 18:41:51 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91E1C16/serialNumber=70294605B017CB796CAD8842F5EFBA3F448707F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:86:c4:6a:13:1c:93:b0:34:94:44:82:6f:44:
93:1c:87:60:2e:37:14:d6:05:c8:bd:e9:df:23:83:
70:3a:15:49:69:e7:26:c8:ab:f4:a3:82:58:46:9d:
33:de:7a:c5:8a:3c:7e:5b:eb:42:ad:ba:6c:57:8b:
6e:a5:d8:f1:e1:a8:13:ce:fb:4c:a5:99:8c:ae:b4:
c5:d1:20:16:ff:75:2e:c6:ba:11:39:07:7a:6f:c9:
90:65:a6:e2:5a:ef:fb:1b:70:2d:fd:15:69:a1:1b:
7b:73:69:8d:c6:b3:69:fd:2b:1f:f1:70:0f:88:d6:
ae:77:aa:2f:58:5b:0a:7f:68:ef:14:c4:2d:7e:78:
68:af:6e:15:73:65:c4:e9:b3:b8:e7:5e:91:da:5b:
48:68:db:04:69:c7:fe:63:f2:04:0c:56:c5:b1:33:
1b:92:01:63:4b:84:98:76:c5:dd:1b:3f:38:e5:3f:
19:30:fe:bd:a8:fd:bc:6f:de:2c:db:5a:db:9d:4e:
c1:68:5f:72:ac:dd:8b:47:6d:27:67:c6:60:a7:07:
73:20:5c:e8:1f:fa:88:b2:06:ca:33:94:c2:33:5c:
48:5d:ac:cf:40:dc:6d:de:d8:d6:c0:60:85:1a:1a:
d6:4b:ad:ba:48:a5:3b:d5:d1:32:c8:20:41:51:ff:
d3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:29:46:05:B0:17:CB:79:6C:AD:88:42:F5:EF:BA:3F:44:87:07:F5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/cClGBbAXy3lsrYhC9e-6P0SHB_U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142290
148971
149007
sbgp-ipAddrBlock: critical
IPv4:
103.167.134.0/23
IPv6:
2001:df6:b780::/48
Signature Algorithm: sha256WithRSAEncryption
9a:b6:59:d5:ea:f2:16:f5:f5:6b:10:94:8c:dd:ce:ef:a3:56:
f2:bb:f8:23:4c:13:b5:a2:90:f4:42:86:11:46:00:ef:16:15:
0b:8f:51:1d:32:0f:85:9a:cb:d1:a9:b0:09:92:ff:4b:0d:d2:
9f:2f:56:0c:7e:4c:74:0c:c8:21:2c:5f:35:99:df:ed:ff:1c:
b6:0c:bd:9a:f9:04:ac:ad:62:e5:1d:d6:22:36:8c:b5:af:e2:
a4:ec:82:80:0b:33:fe:f2:36:4f:7d:78:3c:5b:98:8a:b3:69:
83:90:61:4a:5f:c8:81:84:39:23:b1:cf:97:70:5d:0d:99:19:
5c:b6:57:7e:19:0d:42:79:1f:01:ab:96:b5:cd:c7:a0:37:00:
f8:ac:42:fe:12:27:2f:51:67:cd:b9:6c:2f:a6:42:38:b0:ef:
b9:d3:24:d0:5b:ab:35:68:c3:0a:02:f8:0e:d2:6f:a7:59:fc:
02:dd:be:cd:4d:d1:d5:5f:8b:8f:c7:76:81:b9:d8:4d:a1:52:
76:7b:e5:c7:5a:be:27:51:9a:5f:09:c7:f4:f3:a8:f8:b6:e1:
db:bb:55:8b:1f:d3:d1:47:bd:fc:4c:2b:bb:22:09:e7:cc:0e:
d6:52:68:71:72:37:be:44:e3:62:74:55:f7:61:e3:30:85:e0:
6f:c1:56:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 07:43:03 2024 by rpki-client on console-ams.rpki-client.org