Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer
File: 2gQijT7rRR_A8iM2aXFwV_irNmk.cer (raw, json)
Hash identifier: CwRjHLysrA/RB2UzQjRnDilB6q00STLXI13pjTCyRWk=
Subject key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020F57
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 24 Sep 2024 20:47:21 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 140898
IP: 103.153.28.0/23
IP: 2001:df4:2b80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134999 (0x20f57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 24 20:47:21 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:95:8d:35:51:1e:6c:56:86:cf:64:86:f0:f2:
c8:3c:53:93:62:0d:38:fd:88:6e:24:dd:7f:cf:cc:
a8:86:b8:93:ea:69:48:35:7c:a6:6a:d9:33:3b:70:
8b:89:61:d5:cc:42:0a:74:92:53:00:5e:5a:1f:f2:
f1:85:47:6b:a2:1f:eb:ae:c1:8c:b5:47:ae:33:6f:
08:3c:81:c3:2c:bf:49:d1:af:61:f5:f1:b4:f6:7c:
b8:f4:40:2e:dc:7f:44:70:46:f7:da:f7:a3:fe:2e:
89:47:77:46:36:a3:26:50:ba:4f:be:de:ea:ac:1b:
b0:be:66:08:cf:d4:1f:12:05:17:a7:93:dc:c0:c5:
a9:d4:7a:d0:7b:32:2b:8d:e3:6b:50:71:2e:5a:10:
bf:75:2a:63:18:09:39:8b:6a:cc:bc:46:4c:96:6e:
94:d6:3d:46:64:73:af:71:03:21:81:53:df:56:61:
07:dc:4b:dc:d7:11:66:15:50:07:00:09:c9:cc:e8:
e1:6a:ae:96:4f:96:5d:bf:7f:bc:c5:4f:c8:c9:3a:
be:77:fe:fe:9f:e1:ab:58:7a:3a:26:52:a0:79:6b:
37:7f:cc:9d:f6:8b:c8:0c:74:51:ef:98:35:26:60:
b8:42:40:9f:16:98:58:33:61:f1:ec:31:90:2e:77:
98:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140898
sbgp-ipAddrBlock: critical
IPv4:
103.153.28.0/23
IPv6:
2001:df4:2b80::/48
Signature Algorithm: sha256WithRSAEncryption
cb:9e:01:d1:b2:02:1e:67:7d:3a:db:7c:9f:89:e9:0a:ac:93:
8c:4d:6e:03:7b:a3:72:2f:3c:f9:02:ff:de:89:d8:23:2d:9d:
20:09:04:a2:31:02:3f:ba:b0:bf:ac:66:db:1b:f1:00:4f:a6:
9b:50:8c:1c:b0:b7:9f:3b:57:b2:fe:73:ef:ba:bc:03:af:56:
bc:6b:70:7f:49:46:9a:48:c7:79:76:b7:d2:91:a7:f9:7a:c7:
94:08:ed:08:11:c8:66:71:d4:c8:07:bd:09:38:67:c1:d8:20:
f9:7f:44:a9:64:6f:cb:84:24:52:33:66:8d:b5:1d:ee:18:78:
cf:9d:0a:75:6a:62:23:70:57:03:0b:c2:81:e9:11:be:d1:ae:
d6:d6:bf:5e:d1:20:1f:2c:38:4c:25:d6:15:ac:6c:60:d3:26:
68:f5:29:b9:c6:e0:53:38:f7:a1:42:5c:29:40:04:74:af:fb:
c1:e5:f4:cf:0f:ad:57:6d:da:4c:6b:9e:59:39:53:bd:32:c9:
29:32:07:7e:c0:49:6c:3e:26:bb:89:14:79:04:e4:17:7e:5f:
c5:77:5a:69:1a:07:82:87:6c:ec:fb:ba:20:f1:4f:44:80:c0:
2e:a8:b6:7b:5b:b2:8e:56:7f:48:2d:e4:71:94:c8:29:06:62:
f6:50:95:bd
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:07 2024 by rpki-client on console-fra.rpki-client.org