Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer
File: 0zOneHph_4bHRbR0CWr2muMaz_E.cer (raw, json)
Hash identifier: +dgujBZjSMiik5oaK5yYIRUO2COXj+zwmKkTt5DO/5s=
Subject key identifier: D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F2FA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 21 May 2024 12:26:15 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 142146
IP: 103.166.232.0/23
IP: 2001:df6:9c80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127738 (0x1f2fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 21 12:26:15 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A911309C/serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c2:be:2b:26:0e:bf:32:16:03:01:e1:87:3b:
3f:d3:14:93:f4:31:9a:15:c8:3a:74:6e:09:c7:7a:
3b:73:c0:2c:a0:9b:33:10:8a:86:ae:f6:22:cc:56:
08:8e:e4:c6:5c:d4:24:88:37:a4:1e:34:ea:ba:27:
76:f9:82:7c:f0:92:75:81:60:f2:db:29:c3:63:76:
30:0c:44:40:a1:e0:84:19:07:c0:95:2e:23:49:33:
88:f3:54:13:01:bc:95:dc:70:ae:e2:ed:06:39:fa:
a4:e2:14:89:9f:bb:19:71:91:80:46:0f:08:90:90:
49:98:07:0a:61:92:88:97:bc:c6:bb:1f:bb:a6:93:
fe:17:df:3e:67:41:eb:1e:0d:8d:15:9d:43:4e:a6:
52:ef:ef:8e:0a:8c:40:ad:a8:3e:d1:94:d4:17:bd:
ea:31:30:f7:38:67:04:b2:dc:92:f2:45:bb:4a:52:
35:d0:63:a3:46:f2:d5:2d:8f:8c:0f:f0:c8:d0:f7:
c1:c5:01:48:9f:9e:18:99:b4:fd:62:28:67:e2:e6:
b8:59:94:46:2a:4a:42:c9:34:93:d6:79:4f:d4:ca:
cb:8f:16:f2:df:72:52:1e:b9:65:31:56:e0:07:eb:
dd:0e:c3:5e:8f:5d:16:1a:4b:eb:48:a6:b1:1c:80:
62:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142146
sbgp-ipAddrBlock: critical
IPv4:
103.166.232.0/23
IPv6:
2001:df6:9c80::/48
Signature Algorithm: sha256WithRSAEncryption
4a:a8:35:81:8e:50:96:13:cd:6b:06:29:58:5e:9e:42:4b:a6:
ca:ef:db:d8:e1:85:61:3c:8f:99:8d:8a:f1:43:14:cb:29:4f:
75:90:66:17:d1:58:a4:7e:69:6f:a1:d0:af:b9:14:d0:93:22:
29:13:27:d7:0d:35:8b:7c:43:56:03:b3:0e:a6:90:47:a0:05:
74:78:19:e1:df:b3:0d:fc:a3:ea:ce:21:06:6f:5b:71:43:89:
b6:11:a9:cc:7c:49:56:49:42:a5:ad:5d:ad:81:0b:02:bd:f7:
e8:a7:a5:c5:2a:4d:b8:0c:d0:aa:f8:db:dc:65:5b:2d:30:05:
64:39:6d:6c:a3:6a:88:f3:d9:90:c9:1a:32:94:ea:eb:9b:28:
9f:97:6f:92:ed:8b:a3:91:7c:54:2a:b0:5b:8f:be:25:2d:6e:
05:56:83:50:32:59:2f:d0:9f:39:b1:ba:90:7c:16:7d:80:d7:
6b:e5:84:59:7d:e2:81:c5:b6:74:90:d8:3b:75:10:2f:d4:9d:
58:7d:73:31:dc:6d:34:b6:25:37:a5:56:99:3c:3d:17:ab:a3:
94:72:6a:3b:7a:5e:5a:12:e6:46:fd:7e:28:60:a7:57:38:09:
a7:47:9d:6f:0f:29:f1:fb:a2:89:8b:8f:d4:47:a2:50:59:2e:
18:b2:2c:c6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:08 2024 by rpki-client on console-ams.rpki-client.org