Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer
File: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer (raw, json)
Hash identifier: nc558GKeZ27SC/A4RWCtLoycFRoT+iT8yz70MxGw+NU=
Subject key identifier: DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021FBF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Dec 2024 21:43:35 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 150399
IP: 103.30.60.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139199 (0x21fbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 2 21:43:35 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91B31CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5e:35:53:e4:50:ec:5c:5e:d4:e9:e6:0c:55:
5c:af:e6:5f:4a:23:5c:bc:b8:93:03:e1:1e:e9:d0:
6b:16:5e:39:ae:60:39:3b:8e:1a:ab:d7:0b:15:bc:
4d:3d:29:29:1c:dd:77:01:f8:1e:d7:04:8f:66:1e:
49:4a:96:cb:ad:8a:8b:06:35:c4:d0:0a:75:3f:1e:
d0:e0:31:82:68:e8:37:8b:85:e3:f3:83:12:a6:45:
44:2f:93:73:48:13:11:86:4d:b6:ce:5f:57:00:65:
be:82:38:dc:ad:0f:ae:3f:55:e5:72:29:9f:ad:65:
99:ad:ec:e7:ed:b3:65:d6:4e:62:2e:ed:ba:33:10:
d1:0f:b8:87:cb:82:02:e7:4e:48:bc:18:2d:cd:a8:
97:8b:1e:ad:24:f0:2b:14:d3:c0:b2:50:66:05:20:
e1:e2:f0:5b:e1:6e:d5:9d:9d:fb:12:8a:1c:12:08:
97:cb:85:24:0c:ad:24:01:2b:34:a9:0f:4a:b3:fa:
74:e8:54:6a:1d:41:70:39:c7:69:54:a8:8b:3d:29:
98:e1:b0:7a:60:a7:dc:44:1b:88:88:fa:fd:03:73:
42:9a:17:c0:b5:b7:40:5c:bd:d3:54:26:8d:f5:fe:
7a:8c:ae:6b:54:43:4b:a2:3c:8f:c5:73:a8:fc:81:
31:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150399
sbgp-ipAddrBlock: critical
IPv4:
103.30.60.0/23
Signature Algorithm: sha256WithRSAEncryption
97:00:d9:5c:90:91:74:5a:2e:3b:26:a0:43:1e:92:01:d1:60:
05:b8:7c:e0:13:03:31:60:d7:87:30:62:08:ba:fc:ed:93:e0:
d9:a4:66:bc:1a:66:30:d2:a8:30:a8:1e:13:af:30:ab:88:14:
77:68:59:bd:13:6e:5a:74:01:99:63:95:c9:41:e8:a3:a0:55:
46:32:4e:ea:2a:af:6c:6e:a3:b3:a0:10:fc:36:c8:ed:6d:78:
87:34:5b:d1:2a:60:29:b0:1a:a6:e1:cb:f6:13:b5:ff:18:80:
c1:20:31:97:35:da:f7:89:d5:6d:10:d2:26:51:8f:86:d2:8e:
38:50:33:d2:ca:89:6a:5a:6d:a9:7f:e3:23:62:a8:e8:05:39:
4b:7e:9d:d2:3f:f9:ec:3f:91:39:63:8a:e5:d5:80:8b:5d:71:
f1:bc:3b:1f:ea:46:77:90:ce:12:2d:ca:04:4b:c6:74:01:73:
a6:af:7e:26:70:ee:17:6c:63:07:6a:e9:dd:5e:be:77:6d:0e:
c1:1e:0f:c6:6a:1d:c0:15:44:af:59:e7:4e:d3:08:75:08:ed:
59:32:22:68:ce:d6:a7:20:6b:b9:68:2e:d9:2a:db:ad:48:83:
df:f8:65:12:ec:a1:a7:cf:8e:0e:7d:55:48:d8:08:94:bb:37:
f6:18:50:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:31 2025 by rpki-client