Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer
File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer (raw, json)
Hash identifier: CiaaEo4KS1St1Nw7LE2q64hZRP9Jridbg/AhRAWEeds=
Subject key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D1A2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 12 Dec 2023 21:26:53 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 150372
IP: 103.19.122.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119202 (0x1d1a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 12 21:26:53 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:60:ba:db:3e:1f:fe:00:34:50:9d:6e:7d:93:
45:b2:2f:8b:57:7f:f5:18:fd:90:09:17:87:b3:01:
21:4f:91:26:e3:d1:99:6c:d9:a4:3c:51:3d:f3:af:
06:62:68:c9:1e:f0:8e:74:9a:ba:01:1f:54:38:bd:
f7:f5:34:3b:73:5f:3a:89:19:fd:0c:eb:77:14:e1:
48:87:84:fd:93:5f:c4:a5:bb:a9:f2:2d:f9:1e:34:
b6:dd:40:16:69:2b:b1:d9:d9:4e:10:d0:27:84:d5:
d0:ba:74:7c:15:86:07:9d:4b:36:e8:5b:6e:28:69:
4c:0b:9f:76:dd:95:77:f4:0e:59:e4:fa:20:af:c6:
5c:a8:28:7e:3e:cc:44:5f:ac:d9:31:45:da:53:f0:
63:52:88:3d:df:42:82:be:f1:76:60:8b:c6:0f:0f:
e4:06:2c:fc:1d:93:4d:8f:81:f5:1b:4b:6c:e5:b4:
1b:a7:a0:66:8d:8e:ee:90:17:b5:8e:e2:70:4e:f1:
7e:eb:00:b6:4d:b3:77:f9:5b:77:1d:6d:29:1d:7d:
92:e8:39:75:3e:38:e5:85:d6:65:d9:6e:5f:78:ba:
21:a5:04:d7:be:ad:bb:64:f7:67:2d:9d:0b:ed:34:
80:47:9a:72:1b:31:fb:fc:5c:42:5f:aa:ea:64:fd:
6e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150372
sbgp-ipAddrBlock: critical
IPv4:
103.19.122.0/23
Signature Algorithm: sha256WithRSAEncryption
16:ae:9d:a9:39:26:df:c3:b7:c2:ff:1b:fc:31:a5:be:a8:1c:
85:d1:1a:bf:c3:07:61:c0:b4:2d:e9:96:ca:bb:52:38:0f:bf:
df:75:a0:5b:41:b6:77:7d:d2:7e:a6:b9:60:70:4d:92:ae:19:
ee:a8:2e:7d:bc:f6:f9:3a:31:9f:0e:b1:e2:23:74:58:00:bf:
d2:0c:8b:d0:a4:c5:74:a2:10:23:dc:2c:81:b7:96:58:7e:9b:
dd:8c:d0:54:c7:a1:f7:86:f6:35:10:8f:4a:8c:3b:ac:71:30:
33:51:ed:7d:e9:84:d2:95:a7:61:f3:29:b0:62:fa:57:a3:78:
41:79:37:80:9a:11:d6:ae:14:3a:8a:3c:45:40:5a:50:73:d8:
75:7a:66:a0:b9:e3:90:38:e4:b0:bd:8a:81:68:f4:2a:f1:e0:
44:bc:af:3f:58:57:2f:af:9d:f8:4c:a4:dd:aa:34:14:cd:17:
6f:07:17:28:05:f4:d7:bc:f7:bf:13:c9:61:9b:3d:22:97:12:
bf:04:fb:94:b9:8f:ab:04:3a:2d:ba:c2:eb:7c:a9:8f:41:b9:
48:67:a6:0c:2a:14:55:5e:5e:e7:fd:a0:93:ab:e6:ff:b3:73:
ba:38:25:7b:a1:48:d8:65:2a:ef:36:1b:4c:70:34:c9:ee:6a:
7e:d0:ef:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:41 2024 by rpki-client on console-ams.rpki-client.org