Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BPN69UikmPRj0A_RCF4UlVUbMQ.cer
File: 1BPN69UikmPRj0A_RCF4UlVUbMQ.cer (raw, json)
Hash identifier: /Cc9VkY4R8rU1Pm6+emRNzzqHE1acxfC8XdVnjd8TLs=
Subject key identifier: D4:13:CD:EB:D5:22:92:63:D1:8F:40:3F:44:21:78:52:55:54:6C:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CEED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/1BPN69UikmPRj0A_RCF4UlVUbMQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Dec 2023 22:11:21 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 133099
IP: 103.173.36.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 21:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118509 (0x1ceed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 1 22:11:21 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91A4F53/serialNumber=D413CDEBD5229263D18F403F4421785255546CC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:06:cf:4e:71:6d:4b:be:d4:7b:39:af:82:fa:
a3:2f:78:5b:70:5b:b4:e9:95:a4:4b:54:8e:9b:d5:
25:1b:b8:11:ea:0a:7b:95:8d:19:af:ac:44:6a:e9:
ae:60:a7:fa:bd:a8:06:03:ae:8b:d3:63:ba:54:04:
8e:64:f8:a3:c7:b6:d2:9d:66:bb:63:61:b6:80:e9:
c2:25:a3:99:39:f4:6b:db:40:b3:a5:79:04:ea:ff:
2b:ce:a0:27:e5:83:f6:f8:66:7a:7f:70:ee:8f:a6:
92:f5:4f:bf:ee:fd:09:80:1e:63:a4:ca:3b:ce:8d:
f5:6c:57:ce:71:f9:15:81:a3:9b:2a:de:2b:a1:a4:
21:13:af:78:8b:39:da:1f:27:8a:9b:4a:a7:6d:59:
4d:ee:61:0f:73:58:6a:c3:79:7a:76:39:fb:f6:cf:
53:7b:b8:6e:56:eb:8c:1b:20:4e:32:45:84:7f:9a:
b1:00:e0:45:a1:a3:69:c3:cb:46:ac:1b:05:2f:14:
f6:32:54:bc:80:da:b7:9c:f1:0c:41:09:02:87:73:
60:f1:d2:11:40:54:ed:a7:f4:88:81:1c:49:bd:da:
7e:5c:44:28:6e:22:4f:8b:95:be:46:d2:35:05:30:
3f:29:ad:6c:dc:81:ee:61:7c:b9:6b:f9:2e:fb:bb:
5d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:13:CD:EB:D5:22:92:63:D1:8F:40:3F:44:21:78:52:55:54:6C:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/1BPN69UikmPRj0A_RCF4UlVUbMQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133099
sbgp-ipAddrBlock: critical
IPv4:
103.173.36.0/23
Signature Algorithm: sha256WithRSAEncryption
d5:0f:41:8c:c8:45:a9:40:b0:27:00:40:d4:5e:e7:f2:93:11:
cf:d3:09:c3:9b:a2:89:93:25:ce:14:7a:a2:48:c9:e1:88:68:
16:af:5b:36:34:4c:64:80:86:f8:23:98:01:d3:c0:65:96:65:
42:7c:00:88:51:7d:c0:d1:1a:d0:fa:d9:5f:81:8f:ba:84:8a:
01:cc:25:79:a1:54:c6:d1:04:20:9b:e9:0d:3c:15:91:7c:ce:
e4:0e:dc:3e:aa:d3:55:cb:d3:03:4b:fb:70:da:0a:98:2d:1e:
13:20:1a:b2:29:8b:d1:25:6a:a1:d0:dd:3b:cf:7b:0d:cc:86:
c5:85:d7:7d:28:4e:49:58:65:42:0c:ea:3e:3f:98:81:e1:b9:
d0:7c:0f:a3:97:01:81:0d:dd:44:cd:6f:3d:8c:d4:8b:b3:e8:
fc:6c:97:42:24:2f:a4:6a:bd:60:82:25:49:d3:62:43:bc:05:
d5:89:fa:97:4b:af:84:d7:cd:e5:23:7a:0b:50:37:24:4f:8c:
21:c5:a3:84:30:7b:90:7a:0c:a0:08:71:5f:b7:cf:8c:38:3e:
17:4e:7c:90:29:f6:31:e2:1b:04:22:6c:79:2b:d9:f7:19:03:
b1:83:31:ab:d4:19:de:5c:cd:78:69:29:21:97:74:f5:5a:5f:
28:84:de:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 22:18:11 2024 by rpki-client on console-ams.rpki-client.org