Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30PPMfEc2OafGltFHUP2ixRHa0c.cer
File: 30PPMfEc2OafGltFHUP2ixRHa0c.cer (raw, json)
Hash identifier: abu2yKQYYG8cD3GWvcWs7mZkQKKWr7U/j3c5sGFsNo8=
Subject key identifier: DF:43:CF:31:F1:1C:D8:E6:9F:1A:5B:45:1D:43:F6:8B:14:47:6B:47
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FA53
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E3D4D/ED6A19929AE711EB8A045626C4F9AE02/30PPMfEc2OafGltFHUP2ixRHa0c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E3D4D/ED6A19929AE711EB8A045626C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 20 Jun 2024 20:52:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 142050
IP: 103.165.186.0/23
IP: 2407:4d40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129619 (0x1fa53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jun 20 20:52:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91E3D4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:87:85:5c:0b:76:12:80:13:c7:92:fc:16:11:
cd:32:73:d1:2a:c9:c0:17:4c:0c:ed:c5:e7:b6:b4:
69:5d:8c:c3:ae:55:38:24:07:d5:ec:1d:89:68:7e:
38:8e:a1:08:9e:ae:cf:38:d3:9a:dc:6f:03:d2:e0:
0b:4c:1a:1b:0d:fa:a9:ff:4b:82:bc:9d:87:df:ba:
c9:73:3f:84:5e:80:e4:4c:60:50:20:e1:b0:4a:43:
8b:ba:3e:32:62:8f:b0:e8:a7:e2:e5:d3:70:4f:7e:
87:c6:35:0e:8f:23:06:36:0e:f5:43:9b:ff:39:37:
2f:11:3b:23:e7:c3:09:a0:1e:c2:67:b6:ae:8a:de:
53:b5:df:6c:98:93:49:aa:ac:f4:c9:ef:73:bf:39:
84:53:d8:08:10:49:3d:d7:7d:b9:91:a6:d7:1f:29:
1a:34:50:ba:ee:fc:fa:30:c5:5d:6e:1d:9f:1d:09:
09:e1:d6:1b:c1:5b:c4:f5:83:33:ce:0b:15:3f:b9:
ce:6d:dc:32:52:5a:39:a0:d5:ff:74:5f:13:38:af:
b5:78:20:34:86:45:1c:75:56:84:73:09:5e:76:b2:
bf:62:2a:37:27:f8:01:b6:af:bd:26:d7:3c:42:9d:
6f:f7:45:c8:58:ef:0e:06:d8:01:22:89:7d:84:7a:
4b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:43:CF:31:F1:1C:D8:E6:9F:1A:5B:45:1D:43:F6:8B:14:47:6B:47
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E3D4D/ED6A19929AE711EB8A045626C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E3D4D/ED6A19929AE711EB8A045626C4F9AE02/30PPMfEc2OafGltFHUP2ixRHa0c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142050
sbgp-ipAddrBlock: critical
IPv4:
103.165.186.0/23
IPv6:
2407:4d40::/32
Signature Algorithm: sha256WithRSAEncryption
38:5e:16:45:7f:a4:6c:d0:a4:33:42:c2:f6:bc:bc:4f:01:68:
27:76:56:29:90:fe:f5:b6:e3:fd:45:0e:97:ae:ab:6a:36:e1:
13:9d:41:63:89:25:b8:d1:24:67:21:87:9b:18:d7:62:35:29:
9d:66:51:59:c3:95:ee:6d:ce:5e:8a:f3:00:11:73:13:f3:63:
ad:59:f4:bc:3d:e2:fd:7e:49:18:7d:08:f7:96:f3:a0:0e:33:
11:3a:76:bf:05:6e:29:71:83:0b:15:c7:ed:80:6b:00:90:ab:
32:15:06:5f:20:04:16:6a:48:c4:78:b4:58:30:db:1b:ca:d8:
93:12:38:ae:d5:b2:b7:b5:31:6d:f8:80:f8:d6:df:0d:86:3d:
d8:82:58:1e:7d:de:d2:0d:59:ee:f7:f2:ad:84:76:8b:d6:50:
9f:26:07:9c:93:40:95:ce:ff:65:57:a2:39:f4:12:27:06:f5:
64:ea:ac:d5:38:52:dc:e4:a0:ff:35:6c:c3:dc:de:d1:f9:08:
00:32:95:43:ee:91:45:18:2b:35:23:98:fc:5f:22:6c:04:8a:
5d:a7:d2:60:aa:a0:a6:e4:67:df:ad:d0:db:f9:86:b1:99:3f:
e6:68:f2:ff:63:66:33:d9:6d:de:f3:9f:cf:db:73:c4:c3:87:
69:6c:94:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:29 2025 by rpki-client