Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltGlmUmhu3ombXKg8S_81fUFnxc.cer
File: ltGlmUmhu3ombXKg8S_81fUFnxc.cer (raw, json)
Hash identifier: 3EwBMkUePZjMZBGhApUG4STZl8myx0nqeOqG5P9/8Rk=
Subject key identifier: 96:D1:A5:99:49:A1:BB:7A:26:6D:72:A0:F1:2F:FC:D5:F5:05:9F:17
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DAAC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 26 Jan 2024 17:47:22 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 149048
IP: 103.177.118.0/23
IP: 2001:df0:2140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121516 (0x1daac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 26 17:47:22 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91AB001/serialNumber=96D1A59949A1BB7A266D72A0F12FFCD5F5059F17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c2:1d:a3:dc:c0:49:a5:61:b6:37:f2:8f:58:
29:fb:63:04:56:11:c0:95:31:9a:ca:0a:ae:90:d7:
49:ba:bc:c3:0c:0e:fa:d1:49:ce:4e:df:a0:96:df:
1e:03:43:a8:4f:e9:e7:f7:cf:76:ef:8c:34:6c:75:
88:ee:38:5b:b7:c6:a3:88:8c:d1:fa:13:6f:d4:0a:
78:cf:91:a9:2d:0e:7e:fb:53:e6:66:27:f5:74:b1:
ba:12:ea:38:6c:e7:16:24:e7:97:11:84:08:b6:32:
1f:36:2c:2d:2c:45:29:a6:53:64:cc:2c:33:d5:9b:
cd:a8:af:93:a4:78:a3:ef:50:1e:55:07:a3:35:57:
65:f1:b2:c7:8b:b1:83:07:80:83:42:1c:d6:aa:b1:
12:97:16:90:41:b0:4b:a0:98:8b:d5:11:9b:78:c9:
64:ca:5a:93:60:66:71:c7:55:7d:f3:6a:8a:43:c7:
8b:d2:11:ed:47:92:2e:cd:9b:e2:68:09:1d:9a:3b:
fc:fa:b2:14:53:74:38:d3:ba:79:fd:bc:32:1b:ec:
c0:dc:00:23:83:52:7c:7a:61:d0:ee:f1:e9:18:93:
bf:14:9e:ab:a2:62:38:ca:f3:8d:e0:e8:0e:5b:70:
80:0e:70:f8:d8:e5:49:9d:67:7f:4d:25:df:88:8a:
da:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D1:A5:99:49:A1:BB:7A:26:6D:72:A0:F1:2F:FC:D5:F5:05:9F:17
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149048
sbgp-ipAddrBlock: critical
IPv4:
103.177.118.0/23
IPv6:
2001:df0:2140::/48
Signature Algorithm: sha256WithRSAEncryption
ad:85:04:4b:b5:bc:bf:d0:48:30:0c:54:1a:b2:49:ec:7c:c1:
eb:53:1c:b5:fd:b9:f5:7e:73:64:4b:99:21:de:a9:74:5d:b7:
17:c1:12:88:cf:14:f0:d0:ab:8a:99:b8:09:6b:b7:75:28:33:
ec:ab:f7:e9:11:18:54:9c:77:12:08:b7:fe:bc:d2:7f:b5:75:
c1:85:92:ec:22:27:2a:32:b3:e3:df:68:57:1a:79:47:09:77:
89:b8:41:95:9e:49:d7:43:31:1a:ce:4b:eb:7d:75:0e:d3:f4:
a7:ca:3a:c8:3b:d8:07:28:3c:ac:cd:68:75:23:7e:1a:4e:bf:
80:69:8d:5d:67:37:96:f7:9b:a2:c6:65:70:4b:ed:76:b8:13:
64:16:9c:1f:0b:e9:cd:3b:2d:79:88:fe:9b:66:a7:eb:37:9d:
2e:a8:12:5f:1f:6b:25:f3:5c:de:95:e0:8a:55:d8:96:4c:d8:
bf:12:dd:90:c6:ac:c7:bf:9f:28:d1:b3:70:38:a6:7d:63:8d:
41:af:64:5e:56:94:98:eb:b0:b4:57:8a:b2:81:cf:ca:fc:28:
2f:08:13:96:25:05:c1:36:16:d2:de:b9:16:b3:c3:93:7c:04:
97:e7:3e:e5:f5:19:66:dd:86:2b:b4:6a:6b:84:20:ac:22:35:
f6:0c:93:e7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 15:21:29 2024 by rpki-client on console-fra.rpki-client.org