Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sumTicSsA0jYrsh1t0aJ0E5wyDo.cer
File: sumTicSsA0jYrsh1t0aJ0E5wyDo.cer (raw, json)
Hash identifier: Mmy2KTEyxUUy+9DiGhkPbvvn27erv+huboA6FPVuBKE=
Subject key identifier: B2:E9:93:89:C4:AC:03:48:D8:AE:C8:75:B7:46:89:D0:4E:70:C8:3A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E6EF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/sumTicSsA0jYrsh1t0aJ0E5wyDo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Mar 2024 23:03:55 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 136986
IP: 103.149.39.0/24
IP: 103.162.126.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124655 (0x1e6ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 27 23:03:55 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91E77A1/serialNumber=B2E99389C4AC0348D8AEC875B74689D04E70C83A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:43:f5:41:51:96:94:45:00:93:ee:71:46:e0:
d8:a8:b0:23:8a:ab:58:c8:5c:2f:e5:37:5a:d8:97:
c2:41:65:79:99:05:83:b7:59:dc:2c:f5:f6:25:f9:
65:54:0a:dd:64:e2:a6:8a:fc:75:1a:25:3c:06:00:
77:49:03:b7:86:de:0c:1a:cf:0f:2d:2d:53:2d:ec:
c3:27:fb:a8:b7:53:06:61:c4:6b:1d:e8:30:e1:fe:
10:9d:e1:8a:61:6a:83:45:54:52:2c:49:d5:d3:b3:
0f:5b:8e:eb:3a:7b:33:ca:ad:20:93:62:fa:76:ea:
3a:ed:82:9b:13:70:be:3d:10:5f:3d:a7:d5:2d:21:
35:95:8c:f5:8d:6b:15:5a:72:e5:cc:d2:cd:27:89:
94:02:fc:5f:13:99:34:89:d8:eb:30:98:b7:74:a3:
da:d2:98:36:06:58:32:99:14:66:9e:98:9f:d9:07:
ef:a3:3b:b3:02:2b:b7:7f:1d:f6:b2:9a:3e:16:62:
d9:08:75:db:d6:0d:5a:cf:d5:0c:6f:66:63:b5:dc:
ab:15:f9:a2:81:41:85:45:36:96:53:b2:c5:f9:f6:
7c:d4:df:97:7a:92:30:e9:0a:33:5e:09:21:47:3f:
06:c9:38:34:48:69:cf:22:e6:60:fd:76:80:27:95:
e3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E9:93:89:C4:AC:03:48:D8:AE:C8:75:B7:46:89:D0:4E:70:C8:3A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/sumTicSsA0jYrsh1t0aJ0E5wyDo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136986
sbgp-ipAddrBlock: critical
IPv4:
103.149.39.0/24
103.162.126.0/24
Signature Algorithm: sha256WithRSAEncryption
78:60:d2:32:d3:7c:58:d2:43:2c:6f:a7:2f:f2:72:95:9f:37:
b1:7b:00:0d:b2:94:1d:b9:93:bb:e4:cd:62:5a:27:52:66:38:
bd:ba:53:be:ec:63:81:0b:86:f0:08:b0:1f:fb:1a:22:27:6b:
51:1b:c0:48:6f:75:7d:85:4f:03:2d:06:f1:fd:9d:38:28:0a:
f6:a1:55:d1:99:18:3a:4e:ae:e4:be:e7:5a:4b:77:df:ec:2e:
89:f4:a9:dd:44:3f:61:8b:9a:4d:3e:25:c7:b5:b8:29:45:d0:
31:3c:6d:48:75:f6:95:27:2b:6e:e5:dd:d0:7e:8a:fb:88:9e:
e5:39:38:89:7a:ca:b2:1c:a6:0a:4b:04:79:11:be:29:5b:0b:
81:22:f9:f8:f8:a8:64:2f:e6:07:7b:3f:9d:11:41:49:cb:0a:
99:d1:99:0f:5a:60:8a:32:89:74:ed:b2:46:11:aa:70:20:11:
a9:a5:61:f2:a8:d9:a4:af:47:e1:14:af:2b:aa:17:63:89:8a:
50:87:ea:34:42:15:a9:4c:90:f3:b7:a1:4b:70:ed:fe:2e:7e:
7b:77:73:c3:13:de:52:73:c1:f1:4a:eb:8e:e2:e8:52:19:4d:
8d:14:2c:8e:88:f0:36:67:55:2c:e1:42:93:93:f9:93:a9:0e:
7c:fd:d6:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 17:48:42 2024 by rpki-client on console-ams.rpki-client.org