Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer
File: 4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer (raw, json)
Hash identifier: tEfEG2l+l07zs87sprLSb+jFNsmpe0vIfwICM/Ybozk=
Subject key identifier: E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B1F8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 25 Jul 2023 09:27:29 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 149787
IP: 103.186.86.0/23
IP: 2001:df0:a5c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:14:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111096 (0x1b1f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 25 09:27:29 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A9149B61/serialNumber=E3E100F804013A05F922EE11CB4E0ABEA6C22B98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:51:16:e2:71:9b:cc:4c:6f:36:ea:b3:34:f4:
d9:35:f6:63:3f:9a:3c:97:dd:a3:11:40:e3:33:72:
cf:ac:83:4d:8d:6d:a6:c5:a9:4f:c7:d0:f0:e6:f6:
10:fb:1c:48:b9:41:e2:a6:4b:97:02:48:5a:05:94:
f1:85:5f:6a:57:47:e8:f3:db:16:19:74:26:b6:dc:
02:6e:31:de:03:eb:46:08:35:82:1f:1c:7c:a0:7a:
f0:20:6b:e9:e5:1e:08:a5:85:7d:a8:b2:d1:38:a1:
6b:aa:5a:eb:50:77:e6:10:d0:15:ee:e4:5f:76:87:
ca:b8:85:1f:83:61:ba:81:f3:bf:f4:39:92:d1:2b:
8c:99:33:a8:30:fa:4b:99:e0:a3:4a:27:b3:0e:d3:
5a:89:16:70:d4:db:03:33:1d:4c:46:d2:f0:10:29:
83:a7:4e:ea:8e:ae:08:09:e3:a6:a1:5f:4e:38:e8:
4c:67:97:79:7b:df:e8:f9:53:e4:4a:b0:92:53:78:
d3:04:7c:84:ec:f2:15:35:26:29:63:f6:57:bb:d2:
a3:c5:10:35:39:64:70:93:56:b9:99:11:68:26:d3:
ce:2b:5d:0d:ed:e7:59:dc:77:d7:d7:76:9e:85:77:
d9:8d:b3:55:5c:36:9f:09:cb:b3:12:80:10:2b:b0:
a1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149787
sbgp-ipAddrBlock: critical
IPv4:
103.186.86.0/23
IPv6:
2001:df0:a5c0::/48
Signature Algorithm: sha256WithRSAEncryption
da:9f:3f:f4:b4:b1:4e:6f:8d:ec:14:41:8a:1d:b8:c8:fa:4a:
cc:f7:44:be:e2:d4:2a:fa:2c:2a:cc:9c:50:71:6e:62:ec:d0:
ec:f2:68:6e:37:44:40:2f:7f:42:c4:c4:78:3c:2b:c6:8c:0e:
71:be:45:af:88:ec:6f:63:1c:6f:ee:9b:0b:b2:3a:8e:ca:d6:
db:9e:bc:63:14:4b:e3:64:6e:3f:73:e1:1b:89:f7:b9:ba:a1:
e4:1b:3d:3f:ed:1c:63:56:14:fb:e5:9e:27:87:84:4e:2a:13:
f5:44:4e:d8:62:f8:b9:18:71:3a:e9:f5:05:2e:16:0c:01:ad:
82:33:dd:d3:9d:18:86:24:37:dd:40:c5:95:69:ab:4b:9d:f8:
f9:f6:86:fc:bf:92:15:85:5a:b6:3f:d2:9c:9f:b7:f6:36:76:
2d:4e:25:e1:6a:e3:c5:bd:85:31:9f:c3:3f:69:dd:11:39:da:
54:c7:d7:33:bd:4b:13:84:1d:80:b8:f1:db:9b:e2:9b:11:a4:
64:e6:bc:bb:09:f6:b0:17:79:f2:82:9e:4f:bc:14:3d:9d:b8:
86:2a:31:57:18:51:b5:96:89:58:b2:98:ef:d9:27:9b:ee:31:
00:d4:c8:40:d7:43:54:73:dc:17:52:99:87:85:c5:59:4e:39:
c6:46:28:f2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 05:58:11 2024 by rpki-client on console-ams.rpki-client.org