Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer
File: 1FLGfvaHRDivqZOoStCrwYUWkhs.cer (raw, json)
Hash identifier: 48TGlr1V2+Yf3cKUXqxX4jqG1u4mUlEj9nqjCgqIULc=
Subject key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0214D6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 20 Oct 2024 13:53:12 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 150316
IP: 103.5.216.0/23
IP: 2400:aaa0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136406 (0x214d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 20 13:53:12 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:51:db:b1:86:76:30:84:79:89:35:00:6a:49:
f6:98:93:e5:fb:8f:df:a9:ef:d2:51:fb:dd:50:44:
f6:f1:61:1e:20:84:24:ea:fc:e6:db:d1:11:6a:01:
65:be:04:a5:5a:d3:23:c4:69:52:42:ff:b1:d4:11:
b8:b7:0a:cb:44:86:6a:9c:bf:14:be:43:35:f5:8f:
27:c8:f4:54:a1:76:0c:10:f6:97:5f:11:d9:15:13:
8e:ba:12:1b:a7:0c:4d:a8:76:a8:30:cd:0d:e8:db:
d0:f4:03:ad:61:63:bf:d0:19:84:2c:fb:f9:ed:57:
81:f5:ba:bc:8d:55:fe:57:0f:a4:41:b0:2a:1e:e5:
21:00:5e:e2:64:76:ee:8a:ab:b6:7b:da:8b:96:c7:
a2:b5:0c:d9:94:a1:a3:14:77:5b:1e:71:ff:4d:a5:
08:5d:d5:67:93:50:5b:bb:ca:38:85:f1:a8:fc:3c:
49:4b:9a:33:f5:92:d8:a9:50:a5:e6:10:bf:1f:b1:
21:75:cd:3a:dc:9d:af:9f:0a:06:2b:89:86:67:01:
ba:33:49:15:83:a7:60:f4:8e:c9:55:63:a5:fc:ea:
0d:51:72:66:b3:f5:9c:b3:de:e4:2a:26:37:7b:cf:
36:a5:f3:15:47:31:db:f5:bf:44:87:1e:d7:dd:e9:
a4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150316
sbgp-ipAddrBlock: critical
IPv4:
103.5.216.0/23
IPv6:
2400:aaa0::/32
Signature Algorithm: sha256WithRSAEncryption
9e:5d:c9:1f:c3:9d:7f:a9:35:4f:23:c8:49:73:54:ef:98:4d:
6d:56:77:76:8f:cd:2f:59:2b:96:5e:6f:83:af:6f:ae:f7:a4:
39:5c:14:00:e8:c0:9b:1f:1d:e8:5e:b6:03:92:88:9c:b3:7b:
bc:b8:91:1c:c0:f4:40:8f:13:eb:ba:2f:50:ac:1e:d8:7e:b8:
24:7b:fd:6e:34:20:91:39:74:a9:83:ae:ed:b6:4c:00:a1:a9:
48:83:11:fa:16:af:64:16:df:ec:d9:83:0b:e8:49:63:ac:97:
e2:82:98:86:fb:81:2f:a2:be:37:a8:b6:c7:09:97:e5:ad:6f:
ef:c0:a4:ef:ce:2e:4a:dc:b2:09:09:ed:5d:39:9a:c5:eb:06:
fa:a6:e7:99:6f:4b:36:5a:86:fe:d9:05:f6:dc:fa:16:a0:ca:
2f:a9:a6:9a:74:25:9c:14:f8:4e:fa:52:88:0b:26:0a:0e:da:
ec:3a:ce:cc:f3:fa:12:fb:97:d0:d6:98:28:6e:c1:91:24:e5:
50:3d:d7:e1:fa:e5:63:96:85:b8:62:d2:f5:4a:63:53:69:d3:
1a:39:3f:20:b7:28:39:3b:87:1b:d1:2f:ce:1b:c5:c1:ab:88:
3d:a9:70:b9:28:3d:98:44:ba:93:f6:a4:49:e6:00:3d:1a:84:
86:c0:a7:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:05 2024 by rpki-client on console-fra.rpki-client.org