Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05oQ5hqMqVBO2xVIaTazd0OiTc4.cer
File: 05oQ5hqMqVBO2xVIaTazd0OiTc4.cer (raw, json)
Hash identifier: e/ns+YoWC9NCcpraUuO558WzN9iQZ7lAeolN1vNYhuE=
Subject key identifier: D3:9A:10:E6:1A:8C:A9:50:4E:DB:15:48:69:36:B3:77:43:A2:4D:CE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0212F5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9110BE2/6CB9A966519211EEB90A330BC4F9AE02/05oQ5hqMqVBO2xVIaTazd0OiTc4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9110BE2/6CB9A966519211EEB90A330BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 09 Oct 2024 04:13:52 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 151798
IP: 103.77.212.0/23
IP: 2001:df2:ea40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135925 (0x212f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 9 04:13:52 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9110BE2/serialNumber=D39A10E61A8CA9504EDB15486936B37743A24DCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:27:1d:6f:ad:93:c6:3a:2b:f3:86:0a:d8:f1:
bc:f3:d5:2a:00:69:00:89:d1:c9:62:8a:dc:35:bc:
5f:c9:99:ac:94:5f:1b:0c:a3:47:cf:bc:8c:c6:0a:
5e:08:49:65:de:81:f8:03:59:7a:ea:e9:3d:bf:9a:
a9:06:2d:94:7d:55:e0:c8:5e:fb:98:37:66:6c:76:
c7:76:32:40:07:08:9c:88:b9:91:c0:6e:c7:0c:96:
58:99:93:92:4f:d0:2f:d1:0f:50:47:57:de:63:b4:
15:34:1d:6d:4c:6e:c4:06:8c:6a:36:25:a5:df:9a:
b2:48:0f:b3:8f:7c:b0:a6:41:6c:18:ad:b7:ef:6c:
d3:33:e3:8b:35:51:44:9e:d9:80:7e:40:fa:fd:18:
17:bd:01:a8:48:b7:9d:a1:d1:4c:ee:4a:6e:67:69:
ff:43:81:60:db:96:07:23:4e:d5:40:e2:0d:c4:f9:
43:6c:2f:fa:c4:fa:f7:3c:70:ee:fb:20:e5:7a:30:
3f:3d:84:7d:2a:d2:34:85:f3:2b:f8:2d:6e:dd:3f:
4c:f0:1d:6d:28:bd:41:02:32:0f:2c:dd:2a:22:f5:
55:b5:5e:b8:7e:de:24:f3:36:28:c5:89:39:e6:b2:
54:b9:5e:42:c0:70:eb:ba:2f:2f:45:72:0e:d0:9f:
c3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:9A:10:E6:1A:8C:A9:50:4E:DB:15:48:69:36:B3:77:43:A2:4D:CE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9110BE2/6CB9A966519211EEB90A330BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9110BE2/6CB9A966519211EEB90A330BC4F9AE02/05oQ5hqMqVBO2xVIaTazd0OiTc4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151798
sbgp-ipAddrBlock: critical
IPv4:
103.77.212.0/23
IPv6:
2001:df2:ea40::/48
Signature Algorithm: sha256WithRSAEncryption
4f:9f:7a:75:de:29:4e:b2:de:66:ca:8a:90:8c:39:44:45:4a:
e1:6f:5b:78:62:f6:85:5c:34:93:e7:90:4f:5c:3f:71:a6:92:
d0:2a:be:c5:70:51:1c:47:0f:97:96:6b:ff:a2:7c:0c:91:b7:
e1:37:7d:1c:3d:ec:fe:33:72:e3:d3:c5:49:65:c7:6f:23:16:
56:30:3a:32:52:57:78:41:18:d4:0a:71:73:0d:86:1d:e7:bd:
66:ed:d1:8f:1b:ea:ae:ff:62:b4:7c:f1:64:a9:bf:ec:b2:cc:
58:9f:14:43:14:ad:a1:7f:1f:50:f8:d2:47:42:d3:69:c7:36:
2a:4f:2a:78:40:1c:86:8e:12:27:2a:ee:6a:d0:51:3a:85:b0:
8c:ca:06:54:02:62:b5:2d:2f:ee:64:0e:80:e9:6a:b5:84:6f:
fd:eb:b9:1f:2f:ff:86:25:9e:34:15:0b:ba:03:03:04:ad:0b:
7e:9e:6f:1f:fb:e4:e2:3b:54:e2:01:ad:c5:83:02:a4:bb:49:
58:8e:6e:e1:c3:c8:24:f3:7a:8a:63:cd:3c:85:92:8c:84:ba:
f2:25:68:00:b2:59:2a:2d:2d:12:2f:45:af:ec:2e:ac:ab:d6:
d8:6f:91:fc:47:3d:07:8a:2d:3b:b1:d3:c0:17:b2:50:c2:d3:
22:52:b6:5d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:07 2024 by rpki-client on console-ams.rpki-client.org