Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer
File: redjNI0CWa0SzYi3ZNOYy4rHQMk.cer (raw, json)
Hash identifier: rb6finWu6v7QrWoB+bXs+5ULydSD9m0D7RD5aHn3nWA=
Subject key identifier: AD:E7:63:34:8D:02:59:AD:12:CD:88:B7:64:D3:98:CB:8A:C7:40:C9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EFCC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 May 2024 19:04:33 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 142059
IP: 103.166.3.0/24
IP: 2001:df6:7b80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126924 (0x1efcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 3 19:04:33 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91BBCC9/serialNumber=ADE763348D0259AD12CD88B764D398CB8AC740C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:21:58:5a:ef:89:e7:f9:46:f2:2d:24:94:43:
52:a7:f9:29:cd:67:cf:46:67:4b:ff:5f:21:ad:b0:
f7:04:53:45:14:10:27:9c:86:94:f3:41:23:90:36:
3d:f7:e7:9b:d0:9d:6c:bb:83:35:dd:dd:f9:38:f1:
b4:52:a3:ad:ef:5b:3d:0c:cd:2b:8c:10:82:e1:f7:
39:36:1a:e0:3b:74:66:2f:2d:66:82:96:1e:e4:e0:
42:53:d0:a2:ea:bd:b2:ed:13:3f:21:74:49:3b:0c:
15:e8:8f:c7:3d:5f:0a:fe:ae:c8:27:5e:6c:82:8e:
a5:21:c3:49:42:ed:b1:64:07:f1:38:dd:91:43:e8:
48:14:b2:59:04:76:42:c3:06:c0:5a:10:b6:2b:9f:
9d:3a:e8:85:78:0b:98:31:79:aa:9e:5d:11:26:7f:
2f:0c:af:22:48:65:80:cf:24:3b:ae:f5:f6:34:70:
3e:9b:52:4e:6d:17:8e:b6:94:fb:21:67:5d:d2:d4:
41:9a:52:54:df:0b:f9:19:9f:13:dd:c8:13:f7:b7:
a1:13:b2:b8:f0:2b:97:65:92:8d:a2:7a:0f:97:c5:
62:48:4f:89:c5:5c:5c:d1:7c:99:37:45:df:11:bb:
85:c6:74:9a:d9:c6:78:31:18:3a:e1:d3:e0:c5:f5:
8e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:E7:63:34:8D:02:59:AD:12:CD:88:B7:64:D3:98:CB:8A:C7:40:C9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142059
sbgp-ipAddrBlock: critical
IPv4:
103.166.3.0/24
IPv6:
2001:df6:7b80::/48
Signature Algorithm: sha256WithRSAEncryption
9e:38:4d:69:80:11:5d:d8:2b:14:72:8c:3a:45:36:c5:d3:11:
a2:07:08:57:9c:b6:cb:e1:1c:51:75:5e:c5:a2:f4:ce:68:96:
ac:1e:4b:e5:50:bd:ab:dd:f1:c2:c2:44:c0:3a:27:8b:47:4b:
b9:63:3c:59:f5:40:b4:46:cd:cb:a0:66:ef:ea:78:c8:0a:cf:
e8:a8:80:f5:60:b4:c2:33:e3:b3:92:8b:20:71:ce:9c:bf:89:
a0:b4:34:e0:45:6f:f5:79:e3:0b:e1:25:5f:9f:ac:76:77:61:
59:c7:bf:83:9c:de:0f:ed:71:26:d7:0e:db:d4:ab:45:ee:70:
af:a0:11:5a:32:5d:58:b9:51:55:37:a6:d5:a4:e1:bf:d0:da:
76:22:49:60:b5:10:ba:40:1c:f4:61:e1:1e:45:e5:d3:e9:61:
fc:81:73:b8:30:27:68:45:11:c6:af:29:90:80:67:db:0c:df:
8b:a4:6b:aa:c0:ab:e9:f9:0d:2d:4c:5b:25:4f:d7:79:ea:a5:
9d:68:3c:da:18:79:cb:08:ec:63:0e:52:10:a6:26:e1:ae:ed:
63:e0:d4:fa:be:d9:ba:73:fb:05:b7:85:a7:fe:3f:c1:47:56:
4b:5c:5d:59:c9:38:2f:22:d2:3c:9e:02:2f:85:f5:0d:b5:f6:
39:94:02:f8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 17:48:38 2024 by rpki-client on console-ams.rpki-client.org