Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer
File: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer (raw, json)
Hash identifier: AlIQ5qqbdrBU74LaK6G1mX/TwO+CPtM/OMjYUtJ47OM=
Subject key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021A5F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Nov 2024 18:26:53 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 151796
IP: 103.144.196.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 12:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137823 (0x21a5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 8 18:26:53 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:41:25:a0:8f:55:13:15:64:a8:53:8f:45:0f:
48:7b:fa:1a:fc:7b:4b:0f:65:6e:7e:0d:90:48:d2:
84:0f:d9:89:cb:59:50:ba:d4:35:18:00:47:8f:07:
e1:01:d4:38:e2:eb:36:15:09:52:5a:5a:fc:b9:37:
5b:ca:f2:40:71:a1:92:92:c0:0b:60:7e:2a:09:c5:
c9:00:21:50:06:7e:1d:15:c0:48:c1:2f:84:af:ea:
8d:62:d5:5a:02:84:ab:37:e3:f9:f2:ea:51:60:8a:
9f:f0:f0:0c:5d:5d:2c:0f:52:b3:7a:44:26:3b:9b:
54:57:87:67:e4:13:3e:2e:73:2e:27:77:48:3e:09:
78:7b:e5:dd:48:f0:07:ff:ca:69:60:cc:f6:fb:cb:
e1:74:2e:e2:49:82:60:1b:15:86:9b:4e:c9:69:89:
17:14:36:2a:8c:5e:3a:4a:f4:ec:5c:37:df:60:c5:
b5:ef:66:b3:f1:8b:87:91:cd:f4:7e:4f:2e:0a:4a:
db:32:3a:10:95:16:7f:04:9a:37:ae:89:c9:42:4f:
b1:6b:03:a6:43:3a:bf:05:d4:2a:b7:fd:aa:2f:88:
bc:91:bc:0b:15:5f:72:28:fb:ee:26:03:3d:a8:14:
cd:78:db:46:33:b3:e4:58:bd:72:de:4a:38:ca:63:
e7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151796
sbgp-ipAddrBlock: critical
IPv4:
103.144.196.0/23
Signature Algorithm: sha256WithRSAEncryption
68:7f:93:d9:1d:cb:a8:90:24:75:da:b7:b2:43:b8:bb:b8:f3:
53:05:51:b1:93:e0:96:76:c1:c6:23:b5:2b:ed:fc:a8:36:94:
f6:58:e8:21:98:29:13:33:95:c2:9a:45:c7:81:59:98:50:8c:
2b:cd:22:e4:79:de:64:06:74:e3:bc:21:ae:c5:2d:e8:55:01:
e0:22:e5:40:69:42:bd:e7:c2:7c:82:b8:8a:2b:c7:96:54:4c:
eb:a0:2e:df:ef:9f:ba:34:63:7f:21:33:ad:dc:5b:ea:88:51:
18:ce:fc:e9:94:8a:5f:27:6c:68:87:d4:07:63:f8:c9:69:7b:
be:9e:2c:d7:9b:c6:f4:ab:ae:78:b9:ba:83:14:1d:af:09:34:
61:2b:85:29:26:70:2c:9a:84:14:50:c7:47:d1:69:89:46:6e:
6b:84:5f:d7:8c:b9:61:e4:33:e6:42:a4:34:38:6d:ab:96:f9:
f5:52:13:ea:ae:a4:75:7d:ae:9c:28:32:38:9f:82:2f:03:4f:
92:12:4f:ea:73:f0:f0:60:d4:2d:75:cd:76:51:73:ca:66:74:
59:0c:7c:e8:a8:79:91:ea:77:fe:ae:12:93:7d:7b:af:b4:85:
4f:8c:83:28:1e:13:fe:c8:6e:bb:0d:f2:e8:f3:49:ad:49:25:
46:f7:4c:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:35:29 2024 by rpki-client on console-fra.rpki-client.org