Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer
File: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer (raw, json)
Hash identifier: VJ8dSX7SFxMnJLMfEFA8kmMgKBCsrRNq9nBDPJtoVpQ=
Subject key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CC61
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 22 Nov 2023 20:04:36 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 151796
IP: 103.144.196.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 08:04:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117857 (0x1cc61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 22 20:04:36 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:41:25:a0:8f:55:13:15:64:a8:53:8f:45:0f:
48:7b:fa:1a:fc:7b:4b:0f:65:6e:7e:0d:90:48:d2:
84:0f:d9:89:cb:59:50:ba:d4:35:18:00:47:8f:07:
e1:01:d4:38:e2:eb:36:15:09:52:5a:5a:fc:b9:37:
5b:ca:f2:40:71:a1:92:92:c0:0b:60:7e:2a:09:c5:
c9:00:21:50:06:7e:1d:15:c0:48:c1:2f:84:af:ea:
8d:62:d5:5a:02:84:ab:37:e3:f9:f2:ea:51:60:8a:
9f:f0:f0:0c:5d:5d:2c:0f:52:b3:7a:44:26:3b:9b:
54:57:87:67:e4:13:3e:2e:73:2e:27:77:48:3e:09:
78:7b:e5:dd:48:f0:07:ff:ca:69:60:cc:f6:fb:cb:
e1:74:2e:e2:49:82:60:1b:15:86:9b:4e:c9:69:89:
17:14:36:2a:8c:5e:3a:4a:f4:ec:5c:37:df:60:c5:
b5:ef:66:b3:f1:8b:87:91:cd:f4:7e:4f:2e:0a:4a:
db:32:3a:10:95:16:7f:04:9a:37:ae:89:c9:42:4f:
b1:6b:03:a6:43:3a:bf:05:d4:2a:b7:fd:aa:2f:88:
bc:91:bc:0b:15:5f:72:28:fb:ee:26:03:3d:a8:14:
cd:78:db:46:33:b3:e4:58:bd:72:de:4a:38:ca:63:
e7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151796
sbgp-ipAddrBlock: critical
IPv4:
103.144.196.0/23
Signature Algorithm: sha256WithRSAEncryption
45:6b:4c:0b:fe:1a:88:51:47:38:48:61:5c:ae:05:33:42:49:
23:97:59:e8:4e:94:c5:e7:7f:a4:c4:bd:5e:3b:f7:bc:bd:89:
b6:64:39:59:80:75:db:6b:06:10:f9:5c:f9:07:79:21:8a:9a:
27:c9:65:89:47:19:ce:89:92:ef:ec:45:71:06:0e:df:bb:6d:
9b:4b:8e:b1:8a:7c:82:ff:a2:f9:81:0d:88:19:ca:6b:db:1a:
90:34:08:11:21:3f:5c:6a:e7:33:0d:6f:84:75:2c:1c:2f:5c:
f8:35:c3:0b:13:b9:b7:37:5c:07:68:cc:d6:ce:49:2f:5a:47:
cf:cd:05:2e:38:9d:5b:55:b1:aa:ce:61:12:56:33:2c:6e:e9:
85:61:45:2f:1e:60:e2:b1:42:84:53:c8:75:8a:c5:8e:00:c6:
ca:a2:e5:d3:d5:8d:68:19:8c:91:67:a6:35:a2:59:0a:0b:82:
83:a9:e1:b8:10:73:fd:c8:63:31:2b:04:79:45:c2:25:50:61:
b3:a7:67:bc:71:a6:60:bd:99:5b:60:61:7b:da:06:35:71:19:
40:bc:6b:84:e5:4f:78:a4:68:4d:bd:30:94:ed:00:1c:00:2d:
ff:89:6c:97:7e:42:89:81:bf:e2:b7:a7:a5:95:fe:39:28:cf:
99:71:c8:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 08:44:47 2024 by rpki-client on console-ams.rpki-client.org