Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer
File: 2-bH-ZCQRq41ohWw4hVErlIjfoo.cer (raw, json)
Hash identifier: lPG7F6zhy+SlcjgJ9u3q4+r6E4ssPBXU/CpLterzaCY=
Subject key identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CD52
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Nov 2023 15:57:14 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 138368
IP: 103.131.212.0/22
IP: 2403:d240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118098 (0x1cd52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 28 15:57:14 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A914F697/serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a1:76:d7:25:c3:3f:bd:41:1b:76:84:e0:05:
22:91:30:66:25:7c:ce:0d:7e:06:9e:35:82:65:b5:
3e:5e:a0:d5:fa:88:59:67:19:4e:46:3c:52:05:a7:
cb:d7:e4:c6:c5:ec:dc:03:10:92:c8:e8:9a:c4:c7:
6b:a6:25:51:26:93:06:4d:5c:08:ee:4b:d0:2f:05:
1b:32:62:d6:01:88:12:7c:d8:2f:5f:c1:35:ee:ee:
6d:39:19:37:c9:eb:d1:ec:24:d7:8a:0b:ce:85:8a:
3c:92:0a:b1:1c:9b:72:6d:5e:eb:09:22:ae:62:8e:
28:b1:a4:1c:a0:99:20:0c:da:4e:6b:75:c9:fa:3f:
fa:29:0c:0b:de:0e:f6:e2:6e:50:7f:38:5a:80:6c:
99:32:df:ed:96:b4:d9:d6:5d:0d:0c:58:c3:5c:33:
70:56:39:30:77:fd:92:3b:15:00:31:15:ec:d9:30:
d2:65:6d:66:1b:43:23:a8:6f:32:83:bc:0a:66:60:
bb:c8:72:57:20:93:6e:c3:e6:50:a6:65:ed:8d:69:
5f:01:4a:b2:ac:23:5b:9f:da:5a:2f:74:aa:c7:56:
34:11:b9:94:b0:19:4e:88:cc:03:6f:0c:46:b8:86:
ac:17:f7:10:7c:ac:db:22:f8:ce:5c:f3:a7:9e:af:
b8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138368
sbgp-ipAddrBlock: critical
IPv4:
103.131.212.0/22
IPv6:
2403:d240::/32
Signature Algorithm: sha256WithRSAEncryption
4b:4a:46:8f:f0:bd:35:5e:56:ef:cd:1e:2a:ec:3a:75:92:7e:
46:ad:45:0c:53:09:b6:08:1d:58:c0:d1:d7:a6:e6:3f:44:dc:
ff:16:ab:94:02:07:25:1f:85:55:da:c1:a9:58:d0:f9:6d:bc:
0b:05:32:45:20:b7:19:73:52:1c:80:3d:a2:a0:6a:4a:42:f3:
10:38:f4:cc:15:3f:4e:93:bc:39:95:f1:94:4f:0a:77:9c:21:
74:3b:a6:4e:8c:c9:03:89:93:d7:6e:36:fd:3e:c9:d7:6f:01:
2c:ed:42:89:4d:50:fd:5d:1c:a2:fc:d0:c5:a8:97:11:f5:9b:
98:e4:90:cf:5b:2f:5b:94:9b:58:5b:40:26:2a:94:8a:d0:ee:
99:61:72:f5:39:24:d0:8e:b9:22:3d:0a:44:f9:1f:ee:4e:69:
10:85:96:93:3d:cb:aa:ef:7a:06:0a:7c:0f:6e:03:c5:d0:d5:
a3:6a:34:51:d4:cd:86:b5:46:d1:0b:b3:ac:26:d9:2b:6e:bf:
8a:68:af:eb:bc:03:e0:1f:32:29:e0:08:22:87:46:5c:5f:22:
ee:c7:06:b1:69:47:b3:14:03:3e:a8:a5:af:d1:36:df:3c:0b:
ef:06:0e:8f:f3:d6:3f:1a:43:c6:db:dc:30:97:6c:62:89:7c:
20:50:15:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:06 2024 by rpki-client on console-fra.rpki-client.org