Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRAu0CidxOT63nCzTXZgyg0rvSs.cer
File: rRAu0CidxOT63nCzTXZgyg0rvSs.cer (raw, json)
Hash identifier: aXRE/nbVO9+8ewTLQ6z4E+BCiTCGRDHgtT0ZUOSD0xY=
Subject key identifier: AD:10:2E:D0:28:9D:C4:E4:FA:DE:70:B3:4D:76:60:CA:0D:2B:BD:2B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DF15
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A3B91/A365336E3E2411EC9B55E152C4F9AE02/rRAu0CidxOT63nCzTXZgyg0rvSs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A3B91/A365336E3E2411EC9B55E152C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 15 Feb 2024 18:49:52 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 148998
IP: 103.175.234.0/23
IP: 2001:df7:ff80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122645 (0x1df15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 15 18:49:52 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91A3B91/serialNumber=AD102ED0289DC4E4FADE70B34D7660CA0D2BBD2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b1:5b:a0:38:b9:5e:28:e2:4b:8b:14:23:65:
3e:64:6b:ff:68:6d:f9:95:0a:68:57:b6:15:f3:b2:
5a:3a:bc:72:de:3e:0a:89:06:69:22:6e:1c:bb:0f:
a7:2e:ad:d4:e9:6e:dd:e6:3f:90:55:84:a1:46:a9:
aa:ad:5e:39:ec:ce:9e:13:57:d8:b6:f2:88:f8:01:
5d:67:8c:ef:20:86:1b:9c:3a:d4:a5:e7:4e:4e:65:
29:50:b4:49:32:ce:27:fa:d7:34:b5:9e:7c:a8:90:
5b:da:cd:8f:43:75:1a:42:f1:a4:83:70:d9:0d:b4:
f1:be:d5:8f:93:c5:89:26:9b:71:0f:fd:4a:31:b2:
2e:28:1d:fd:e4:d2:02:9a:98:5f:ab:c2:0d:99:86:
2d:d5:90:59:0c:6f:8b:1f:64:32:f8:cc:04:ef:b5:
df:13:40:b7:c2:01:37:f1:66:cb:88:c3:e1:de:05:
e2:76:d9:5e:2f:1b:68:a4:1c:77:d3:2a:9a:e8:73:
01:e1:9d:25:03:d9:56:24:2f:e5:5a:3d:49:53:13:
8a:a8:7a:ee:86:9b:d5:b3:b4:f7:28:7c:63:ea:c2:
ce:a8:9d:10:1b:66:9c:9d:37:53:ea:fd:59:5b:00:
98:92:0c:52:52:3a:86:24:c2:ef:64:2e:09:6b:0a:
96:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:10:2E:D0:28:9D:C4:E4:FA:DE:70:B3:4D:76:60:CA:0D:2B:BD:2B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A3B91/A365336E3E2411EC9B55E152C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A3B91/A365336E3E2411EC9B55E152C4F9AE02/rRAu0CidxOT63nCzTXZgyg0rvSs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
148998
sbgp-ipAddrBlock: critical
IPv4:
103.175.234.0/23
IPv6:
2001:df7:ff80::/48
Signature Algorithm: sha256WithRSAEncryption
7a:ff:6c:f1:eb:73:1a:50:48:5c:f9:e4:64:cb:95:3d:71:ac:
dd:d6:58:bd:a1:ee:f9:b0:d0:ef:e7:12:15:44:06:f8:a9:c3:
ff:71:55:cf:17:bd:85:57:91:22:31:8c:01:a3:36:8c:03:55:
9f:54:a0:9e:34:8f:a4:14:4f:36:45:96:76:48:40:67:b9:03:
db:97:e7:33:0c:85:2f:a4:f9:bb:fc:c4:0f:0d:34:95:57:08:
9c:b0:dd:d3:67:0b:00:cc:cb:95:ac:2d:04:a9:aa:db:77:a9:
48:cc:ab:d7:db:89:82:bf:34:dd:c4:20:f8:40:6a:c9:37:20:
57:dd:d6:7c:80:4c:1c:00:22:98:14:f6:12:14:0e:c3:c3:6f:
a6:80:6e:c1:86:92:f5:af:9a:ce:95:52:73:50:e9:51:36:86:
c8:0b:32:4c:97:7c:a7:6b:c3:7e:6b:2e:a6:18:a0:24:d4:96:
90:de:3b:a4:1c:c7:b8:76:95:99:4e:34:8a:45:a0:d6:85:a5:
c7:b0:15:76:4d:cd:5b:94:4b:63:3b:ec:69:1c:32:15:f2:cf:
23:e1:4e:98:fc:52:b9:75:9c:4e:a3:95:64:77:66:d0:3b:ea:
80:e7:05:59:4d:29:e6:1a:3c:59:d3:92:fd:57:dd:b4:17:b9:
ab:36:b3:75
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 03:30:25 2024 by rpki-client on console-fra.rpki-client.org