Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer
File: 0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer (raw, json)
Hash identifier: 6zbws6D+etKLBAwgTS7M4/vArV7el+f+/WLo8UTr95U=
Subject key identifier: D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E61A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 24 Mar 2024 14:13:37 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 141762
IP: 103.163.168.0/23
IP: 2001:df6:1e80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124442 (0x1e61a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 24 14:13:37 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A914E215/serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7d:a7:6f:54:d8:77:12:32:fe:24:fb:a0:09:
28:7e:af:d0:0a:ff:30:fe:1e:9f:21:21:53:ac:8f:
ce:49:36:9d:84:42:b6:11:3c:10:00:bb:60:9e:83:
ed:80:00:1d:00:eb:f2:f5:a4:8a:b3:42:65:e6:7a:
1f:0f:61:d9:9a:69:cd:e0:84:04:78:0d:2b:40:d3:
71:b6:3d:63:9e:6d:d9:62:20:49:04:2d:91:9c:6b:
7a:d2:35:7f:1a:8a:c8:b3:4a:4a:b8:ed:1a:97:e2:
d9:37:6c:ae:fd:06:c8:ae:00:88:3e:7f:5c:bf:f9:
16:99:ae:ee:e2:0a:d3:ca:43:fa:96:33:56:21:2c:
5f:cf:92:a0:8e:aa:19:eb:f6:c4:a9:b3:1a:b7:94:
bd:5d:f3:91:bb:05:e5:b9:ac:de:5d:30:d0:44:15:
10:81:57:fc:ba:27:d8:a3:40:f9:40:30:e8:82:dd:
32:76:75:e7:3e:60:b0:c3:ca:46:65:85:0f:95:fd:
5f:b7:1f:f5:e4:52:a1:bd:1b:77:14:4d:7a:fa:53:
74:81:57:c6:aa:50:15:4a:4a:3e:5d:95:2d:28:34:
b6:c9:dc:93:7c:14:92:c4:35:f3:82:57:d9:ae:3b:
da:f5:53:e5:55:f4:6e:12:fd:cc:2c:ca:67:d5:b7:
16:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141762
sbgp-ipAddrBlock: critical
IPv4:
103.163.168.0/23
IPv6:
2001:df6:1e80::/48
Signature Algorithm: sha256WithRSAEncryption
4e:39:f8:e1:13:ea:d9:27:0e:46:a5:ee:bc:8b:ff:51:fd:a7:
23:41:82:39:92:a6:11:b7:e1:38:36:b1:1a:c3:6c:23:9f:33:
01:6d:fa:2c:da:e2:5f:82:31:d1:3b:a5:32:1d:d3:60:0a:06:
a9:d7:40:33:4d:66:a5:7e:43:e7:a8:0b:6b:d7:aa:57:4f:b6:
65:70:ae:67:53:27:e8:4d:3c:17:05:ed:54:3e:f6:f0:f6:cd:
f8:1e:3b:49:5b:5d:8e:4c:35:5a:79:ee:bb:d5:4f:b2:73:63:
6b:4c:6d:5b:34:52:e1:8d:b5:84:74:dc:2f:cb:55:8f:5e:5c:
ad:e4:ea:a4:53:e8:71:4f:d6:70:04:97:37:ce:f7:2b:0e:49:
22:64:26:17:43:42:88:ab:ec:c0:20:b0:84:ef:00:7f:ec:9c:
bf:93:76:a2:b1:0e:3e:21:22:99:21:95:11:fb:ac:0b:8d:78:
b5:ee:d3:32:a3:32:46:5f:5f:0c:b4:72:0d:d4:ca:b4:19:c8:
24:a6:5a:df:ea:c6:d4:b2:19:2c:cc:b6:ca:15:f7:ca:a5:88:
53:c4:7c:ab:87:b4:30:c6:e0:e4:9f:db:c7:45:c8:97:5d:af:
54:3a:ca:8c:6e:af:f8:07:b2:50:be:a2:a1:09:80:a1:71:e8:
6a:d4:7a:e4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Nov 27 02:04:36 2024 by rpki-client on console-ams.rpki-client.org