Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3WHCKpWyjv3jeDEqdZ-sr-5AbBg.cer
File: 3WHCKpWyjv3jeDEqdZ-sr-5AbBg.cer (raw, json)
Hash identifier: QOVMS1k5Ez1wg0JTK3wRdV4nY/PTl008x5YjghZRcq4=
Subject key identifier: DD:61:C2:2A:95:B2:8E:FD:E3:78:31:2A:75:9F:AC:AF:EE:40:6C:18
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020F37
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912918B/7E0CEEFAEEB511EAAA4FAD32C4F9AE02/3WHCKpWyjv3jeDEqdZ-sr-5AbBg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912918B/7E0CEEFAEEB511EAAA4FAD32C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 24 Sep 2024 14:33:28 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 141154
IP: 103.155.98.0/23
IP: 2001:df4:c080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134967 (0x20f37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 24 14:33:28 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A912918B/serialNumber=DD61C22A95B28EFDE378312A759FACAFEE406C18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3d:a9:3d:2d:40:03:7b:b1:4d:16:c4:9e:5c:
32:0d:b0:79:4d:66:9c:df:52:00:87:df:9b:ff:82:
85:c2:4f:77:f4:24:55:34:74:be:2e:f7:3e:41:fc:
3d:ab:76:6e:c0:68:83:19:50:4d:fe:32:b0:c9:07:
ec:a9:36:33:da:60:56:55:e6:52:de:bc:bb:64:e5:
89:ee:21:38:96:62:9e:f6:24:b9:3b:7e:50:a2:43:
86:bb:df:0e:ac:5f:f7:c1:ab:d5:f2:c4:d3:ee:4c:
0a:7c:b9:9a:aa:fb:ac:bf:f4:2e:96:1b:72:81:3a:
ec:bb:d9:d6:fa:8e:8f:90:33:09:d0:f7:e3:82:36:
18:e6:ab:f2:a6:36:c8:05:86:e0:53:5a:b7:2b:2f:
59:9a:03:ed:a8:f4:8d:a4:26:d8:2f:02:9c:49:ab:
cb:7a:26:ff:a3:de:dc:71:63:db:a9:6a:70:80:ea:
2b:f6:d3:d2:90:75:35:ec:d7:dc:9c:45:18:f3:3f:
56:e3:5f:ec:e7:4e:e1:bc:9c:ab:47:9c:26:80:cf:
ec:2c:aa:a6:6f:62:ec:29:af:99:c5:51:e7:e7:fb:
20:30:d1:ce:b2:24:64:9b:b9:ce:e4:65:46:40:a9:
be:1a:01:bb:f3:3c:e5:20:38:ce:49:e1:17:fc:60:
7d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:61:C2:2A:95:B2:8E:FD:E3:78:31:2A:75:9F:AC:AF:EE:40:6C:18
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912918B/7E0CEEFAEEB511EAAA4FAD32C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912918B/7E0CEEFAEEB511EAAA4FAD32C4F9AE02/3WHCKpWyjv3jeDEqdZ-sr-5AbBg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141154
sbgp-ipAddrBlock: critical
IPv4:
103.155.98.0/23
IPv6:
2001:df4:c080::/48
Signature Algorithm: sha256WithRSAEncryption
15:c7:9f:7a:54:1e:2b:e3:cf:4c:2f:37:ad:bd:94:a4:4f:0d:
3c:1f:6d:13:a8:3a:56:a3:45:e7:00:88:25:0e:8d:98:c1:05:
8f:a6:7a:fa:24:30:19:06:c2:de:3b:f1:4f:57:f8:db:83:c1:
e4:a3:8d:0b:21:a5:9a:63:18:50:8a:3a:7f:44:30:4b:9f:c3:
9d:25:a4:22:c5:cc:8f:f4:d5:eb:91:f1:a8:bf:c7:33:15:e1:
9e:bd:78:71:1e:8b:2d:20:26:1e:9e:12:ec:6b:b3:48:11:9e:
b9:d9:ae:be:bf:5a:7f:cb:ec:8c:16:22:0e:6a:f4:5c:ca:e1:
e5:fd:f3:d5:ef:a4:2a:3d:64:2e:c8:bc:47:9b:5b:14:00:eb:
f2:c1:dd:c1:6b:22:48:b9:ab:65:dc:c0:13:be:ac:f4:e8:f5:
d3:c4:2c:96:e7:7e:29:42:ff:ed:e8:83:5c:88:84:f2:ee:30:
58:a3:d2:26:c6:11:6e:45:2e:5d:c5:ad:c6:db:ad:eb:83:30:
9b:e9:35:96:ca:e5:ad:f4:e2:cb:de:9a:12:93:3f:1b:61:1a:
56:6c:b6:51:2d:33:e6:da:f8:ed:fd:e2:de:32:92:42:73:3f:
de:f2:d6:1b:83:1e:fc:b8:0d:2a:d3:e3:9c:d7:fa:f1:95:2e:
bb:bb:31:94
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:13 2024 by rpki-client on console-fra.rpki-client.org