Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer
File: 1Siei3312SAW7HmO7v8FvHPoVYA.cer (raw, json)
Hash identifier: tkRZNASjz7O/NNA0lHahmRdTd1eqRWPrXoK8GuUuCPg=
Subject key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0217DD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Nov 2024 16:09:24 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 140645
IP: 103.143.72.0/23
IP: 2001:df1:7580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137181 (0x217dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 1 16:09:24 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:bc:e6:dc:2d:63:61:0a:00:7d:2d:61:31:82:
c4:ff:fb:10:7b:97:e1:63:8b:ec:7f:22:01:40:6e:
d6:1a:3d:a2:46:3e:4e:ca:19:00:c0:7e:71:da:4d:
30:b7:95:91:b1:90:bf:ce:22:cb:19:bc:44:7b:a4:
c9:29:f4:0a:c1:f2:c8:fb:d3:dd:fd:f5:15:7f:9e:
26:3c:ba:b2:75:ce:9c:65:28:24:70:a6:97:cc:f6:
5d:e0:9c:eb:32:c2:7e:63:90:a4:58:8b:50:3c:03:
34:10:6f:32:4e:b7:c5:82:b2:b1:0e:b4:f1:dd:66:
e5:ba:91:d0:e9:a4:fa:3e:4f:91:ca:63:e8:48:29:
d7:14:e3:dd:f3:7c:31:10:db:c1:26:46:1a:25:4f:
5c:b5:bd:0f:da:91:a0:8e:94:00:81:7a:bd:05:84:
55:f7:53:04:14:04:f8:27:04:0e:ef:80:05:49:d2:
16:a1:3c:4d:40:22:af:06:05:43:5c:5d:60:30:bb:
64:42:bc:49:34:9a:78:a8:cb:16:64:a2:5c:cc:9c:
40:b2:71:e8:ac:6f:24:0f:be:96:8b:a3:c7:94:0f:
92:91:f2:74:5d:40:13:0f:f4:7e:e9:82:5d:4d:89:
51:51:0e:6b:b7:4c:de:76:0a:f8:89:0a:ca:21:ab:
7e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140645
sbgp-ipAddrBlock: critical
IPv4:
103.143.72.0/23
IPv6:
2001:df1:7580::/48
Signature Algorithm: sha256WithRSAEncryption
2a:39:e5:05:c0:1f:ef:ff:20:fb:e2:da:b7:29:9a:60:34:2c:
e7:95:fd:57:2d:7b:ed:42:11:2d:26:39:ae:66:c0:29:8a:d5:
2e:fe:b8:37:7e:9f:0d:e4:ca:cd:70:87:27:e1:6d:b4:b6:22:
9f:a1:ff:af:a9:a4:e1:62:d1:b2:b4:40:7f:7e:07:cf:81:1c:
d6:19:ad:11:13:5c:61:ff:c8:14:4e:60:f0:13:7d:2d:90:ed:
19:23:c2:5a:5d:25:2e:72:cb:9b:ab:d3:7d:ee:a8:3c:55:6f:
1f:65:0e:20:1e:d3:ac:df:a6:6d:0a:91:ba:b3:6d:49:29:09:
30:04:4c:84:19:b5:bc:3d:44:2a:fe:ac:3b:5a:dc:f4:d2:d4:
13:8f:f2:de:2a:df:3f:f4:18:89:06:f6:b7:87:fb:56:1e:75:
89:4e:9e:42:83:5d:d2:79:6c:86:55:4f:eb:52:b5:a2:a5:5d:
e8:59:bb:3c:da:44:e3:58:54:40:3d:8f:4d:34:88:d9:39:0f:
ea:4a:dd:75:f7:1e:db:8a:fb:76:bf:77:a4:cc:58:6a:47:a7:
08:bf:24:8a:e6:35:4b:94:c4:8a:9e:a6:0d:a7:10:87:04:ee:
74:15:0c:e9:bb:16:5b:7e:ce:c5:b8:8a:04:61:61:ab:be:ef:
7d:7c:ac:aa
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:02:30 2024 by rpki-client on console-ams.rpki-client.org