Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05oQ5hqMqVBO2xVIaTazd0OiTc4.cer
File: 05oQ5hqMqVBO2xVIaTazd0OiTc4.cer (raw, json)
Hash identifier: S0eF4Cen/7dqqm+QwppdgM+r6w1oyLYLPNtspp0dWLQ=
Subject key identifier: D3:9A:10:E6:1A:8C:A9:50:4E:DB:15:48:69:36:B3:77:43:A2:4D:CE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BD0D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9110BE2/6CB9A966519211EEB90A330BC4F9AE02/05oQ5hqMqVBO2xVIaTazd0OiTc4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9110BE2/6CB9A966519211EEB90A330BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 12 Sep 2023 17:33:09 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 151798
IP: 103.77.212.0/23
IP: 2001:df2:ea40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:15:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113933 (0x1bd0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 12 17:33:09 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9110BE2/serialNumber=D39A10E61A8CA9504EDB15486936B37743A24DCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:27:1d:6f:ad:93:c6:3a:2b:f3:86:0a:d8:f1:
bc:f3:d5:2a:00:69:00:89:d1:c9:62:8a:dc:35:bc:
5f:c9:99:ac:94:5f:1b:0c:a3:47:cf:bc:8c:c6:0a:
5e:08:49:65:de:81:f8:03:59:7a:ea:e9:3d:bf:9a:
a9:06:2d:94:7d:55:e0:c8:5e:fb:98:37:66:6c:76:
c7:76:32:40:07:08:9c:88:b9:91:c0:6e:c7:0c:96:
58:99:93:92:4f:d0:2f:d1:0f:50:47:57:de:63:b4:
15:34:1d:6d:4c:6e:c4:06:8c:6a:36:25:a5:df:9a:
b2:48:0f:b3:8f:7c:b0:a6:41:6c:18:ad:b7:ef:6c:
d3:33:e3:8b:35:51:44:9e:d9:80:7e:40:fa:fd:18:
17:bd:01:a8:48:b7:9d:a1:d1:4c:ee:4a:6e:67:69:
ff:43:81:60:db:96:07:23:4e:d5:40:e2:0d:c4:f9:
43:6c:2f:fa:c4:fa:f7:3c:70:ee:fb:20:e5:7a:30:
3f:3d:84:7d:2a:d2:34:85:f3:2b:f8:2d:6e:dd:3f:
4c:f0:1d:6d:28:bd:41:02:32:0f:2c:dd:2a:22:f5:
55:b5:5e:b8:7e:de:24:f3:36:28:c5:89:39:e6:b2:
54:b9:5e:42:c0:70:eb:ba:2f:2f:45:72:0e:d0:9f:
c3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:9A:10:E6:1A:8C:A9:50:4E:DB:15:48:69:36:B3:77:43:A2:4D:CE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9110BE2/6CB9A966519211EEB90A330BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9110BE2/6CB9A966519211EEB90A330BC4F9AE02/05oQ5hqMqVBO2xVIaTazd0OiTc4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151798
sbgp-ipAddrBlock: critical
IPv4:
103.77.212.0/23
IPv6:
2001:df2:ea40::/48
Signature Algorithm: sha256WithRSAEncryption
9d:6d:0b:29:c3:f0:18:3f:3e:c8:26:42:d4:96:43:bf:37:c5:
ee:5a:45:b3:be:82:4d:dc:bc:5e:be:1e:d8:ca:b8:ca:36:f0:
31:a7:7e:47:57:9c:2b:cb:67:83:fb:21:b1:24:8b:6f:b9:71:
1b:4c:20:d5:96:bd:6d:1b:a6:e6:70:ad:2d:9e:35:1e:2b:f6:
73:27:02:49:df:35:26:e9:86:55:22:df:d8:80:ae:65:d4:a0:
83:90:a4:49:5e:aa:ed:65:9e:79:be:5d:aa:f6:c6:15:0a:b1:
85:f0:95:6b:ee:5c:23:7e:6a:66:16:e6:b2:79:a0:b2:68:2a:
43:51:86:b8:22:ec:2e:5f:df:cf:05:85:d1:6e:62:5f:77:bb:
6c:ed:ae:b1:89:8d:d7:06:11:39:fc:b6:1c:08:69:c9:85:e8:
19:d5:90:7a:f8:64:06:9a:84:56:5e:79:da:71:53:ce:4d:61:
06:7c:30:c5:4e:d7:06:7f:1f:e0:a2:c6:04:c1:10:ab:ea:18:
1a:68:2e:0b:07:5b:19:a7:14:d1:dd:ac:3d:e8:3a:ef:13:4e:
67:ee:7b:d2:95:53:78:bd:17:1e:13:16:39:cc:16:3b:fe:c8:
1a:24:ef:f1:f2:7a:d5:27:61:77:0f:9c:07:f3:e3:c5:b0:9a:
ed:60:ee:c7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 01:06:41 2024 by rpki-client on console-fra.rpki-client.org