Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QTYGQKxg4soKun0XE3D-BeOJO4.cer
File: 1QTYGQKxg4soKun0XE3D-BeOJO4.cer (raw, json)
Hash identifier: CVkEY5cl4uvwTBmYMEBizLU4zUwjKtje2BpXUE0/kqo=
Subject key identifier: D5:04:D8:19:02:B1:83:8B:28:2A:E9:F4:5C:4D:C3:F8:17:8E:24:EE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B571
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 07 Aug 2023 13:56:21 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 131240
IP: 103.68.107.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 02:50:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111985 (0x1b571)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 7 13:56:21 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A913A74D/serialNumber=D504D81902B1838B282AE9F45C4DC3F8178E24EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e9:0e:47:fe:aa:3b:4c:c0:2b:a7:af:3f:17:
11:27:27:0f:97:ec:18:17:3d:fa:d1:8d:10:25:d7:
30:cb:18:e8:b1:96:b2:55:0c:90:46:92:bc:cc:1e:
ce:51:4f:67:90:48:f2:f1:c2:ce:aa:9a:f9:a6:57:
c9:12:64:e9:13:a5:13:aa:c9:e2:eb:e9:82:3d:ed:
f8:fd:09:d8:fc:3c:e3:36:08:63:1e:ea:15:bb:3d:
95:12:ed:91:fe:85:9f:5f:7e:a7:71:68:b2:f6:33:
cc:e4:fc:03:86:f3:e2:ed:d7:b8:91:cb:dd:0a:fa:
d0:6c:e5:66:78:19:ca:f8:8c:2e:7d:c4:5a:d1:8d:
1d:cc:1e:f6:24:a8:bd:d3:74:a4:c0:ad:e1:dc:c2:
6a:43:8c:85:d7:d8:6c:b6:b0:4c:6a:12:1b:28:d1:
04:7a:c5:fd:75:7f:56:96:a1:78:60:b0:ed:9d:fc:
cd:eb:ba:7d:cc:88:e9:a7:36:3c:f3:57:3f:15:a6:
7c:ee:50:83:de:7b:0d:0c:44:66:b2:03:44:b1:9e:
98:22:8b:1a:f7:89:b4:b9:ad:31:f8:3d:03:68:0f:
c3:74:ff:01:a1:43:db:a2:0d:62:28:6e:79:7b:1a:
d8:ef:7a:0c:a6:55:c1:c4:01:32:ed:86:80:51:56:
f5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:04:D8:19:02:B1:83:8B:28:2A:E9:F4:5C:4D:C3:F8:17:8E:24:EE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131240
sbgp-ipAddrBlock: critical
IPv4:
103.68.107.0/24
Signature Algorithm: sha256WithRSAEncryption
72:82:88:e9:d8:68:1a:32:59:0d:44:77:92:db:e8:7e:86:f6:
94:2e:d2:b9:a9:92:8d:cd:1d:ce:56:fd:43:b7:b1:ff:90:61:
27:c3:59:bd:49:37:c5:ba:33:6a:42:d0:7f:5d:9f:f5:f9:b4:
e7:ed:47:20:43:46:ef:e3:55:1c:12:73:b1:ae:10:4f:dc:cb:
65:5e:3f:81:15:a9:f4:15:bc:e0:0d:4f:3b:18:88:94:6a:f3:
48:73:a1:59:ca:be:e2:21:0d:39:b6:0e:f3:f6:e3:de:39:63:
ed:55:de:75:a2:b5:8d:e7:3c:ed:70:73:ef:7a:ae:0e:3f:5d:
c4:21:ca:86:e0:e6:50:36:f5:ba:e3:57:a1:69:da:f9:c3:ef:
96:ce:4c:b2:d2:46:fa:15:94:78:b4:ea:7e:a6:e1:c2:29:e8:
69:6f:16:3d:6a:d0:38:d8:63:ca:52:02:a6:07:ca:22:79:f7:
fe:b2:4a:3d:18:fd:4e:88:ed:ee:c5:00:cd:2d:7e:c6:97:d8:
b9:51:c8:34:18:9e:43:ed:18:9f:e5:5b:20:ae:be:45:27:b6:
31:11:5c:eb:f1:83:4f:15:61:c9:05:4d:c1:3a:b8:ab:5a:64:
0d:62:0e:eb:90:10:c8:72:6e:b7:67:7f:1e:17:ff:56:ff:9d:
14:04:25:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 03:51:17 2024 by rpki-client on console-ams.rpki-client.org