Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer
File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.cer (raw, json)
Hash identifier: pWgNIsch7y/uhEDA3htn9jgIbAGmu6nrOPhMYATcuH4=
Subject key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AF0D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 07 Jul 2023 16:22:24 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 18212
IP: 203.26.77.0/24
IP: 203.92.4.0/23
IP: 2001:df0:84::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110349 (0x1af0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 7 16:22:24 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:0b:7d:40:c9:d7:2c:e8:41:ce:df:d2:71:b8:
4b:c4:3a:94:62:70:fc:a7:08:3c:4c:ae:7e:bc:2d:
e8:f8:1f:06:07:52:46:5c:b6:df:cb:4f:cd:c5:1b:
44:bd:fb:5d:8b:50:04:82:f9:63:68:8f:a8:65:26:
99:07:01:0b:83:ad:5b:ca:21:cd:7a:31:dd:34:87:
7c:08:35:85:00:4a:cf:28:9f:e8:37:71:9a:c0:75:
83:e7:49:4d:b6:95:62:73:13:9e:c8:f6:ec:c0:7e:
ae:c3:55:3a:4a:2c:71:20:c2:af:e2:4a:27:ff:a6:
87:87:ae:a4:b5:6b:12:f9:ab:8f:63:8d:a2:0b:67:
16:bb:07:c5:50:0b:d1:cf:41:a0:90:5d:34:ae:a0:
bd:2f:90:de:7f:73:c8:6b:f5:e4:80:78:22:7e:8a:
b2:3e:1e:61:58:4d:7f:48:62:e7:49:a8:b1:aa:b4:
d6:db:e1:30:c8:1c:1d:b2:9d:a9:66:c9:1b:7c:1b:
82:78:01:e2:f9:68:66:1a:b5:65:75:67:31:61:87:
dc:dd:ca:5b:63:a0:52:87:2a:9f:61:65:b8:87:fd:
23:0c:fd:ca:61:51:eb:3c:f9:6b:8e:03:2d:17:39:
da:54:61:e7:a8:a8:c6:b6:2b:83:87:a3:23:22:68:
90:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18212
sbgp-ipAddrBlock: critical
IPv4:
203.26.77.0/24
203.92.4.0/23
IPv6:
2001:df0:84::/48
Signature Algorithm: sha256WithRSAEncryption
64:50:e4:69:eb:0e:80:e9:b2:5c:f6:57:04:d0:79:3c:5a:a9:
30:9a:8a:20:9a:ff:11:59:f0:0e:88:57:fd:ca:ad:a7:33:b5:
ad:fb:da:ff:47:a9:cd:ae:cb:4e:93:41:91:5b:17:6b:da:1e:
29:b9:11:54:22:d4:4e:c9:08:e3:f5:23:3d:26:18:ae:3e:f1:
b0:c8:eb:a9:34:e8:a3:06:19:a9:3b:5f:43:4d:e3:6f:8d:2b:
a4:a8:c7:b5:26:a5:d5:00:43:fa:b9:38:03:04:e0:4f:74:28:
cd:93:89:20:c2:ea:e0:8b:fb:82:48:e4:ff:9b:18:e3:9e:4d:
ae:3d:64:ad:e5:f0:ee:a6:2b:75:41:41:f6:27:f1:d8:6d:9f:
b4:90:e7:14:f5:54:44:33:cb:9a:26:b1:db:04:ec:66:83:cf:
bf:76:7d:e8:2b:42:bc:6f:e0:fb:fb:19:15:c2:d7:3e:cf:0c:
5c:f6:08:2a:42:6c:c1:5a:74:2d:86:ad:7f:30:ff:ab:e0:dd:
e8:78:9e:79:71:e3:8f:fc:08:c3:e9:71:5c:35:c3:ce:39:ae:
4f:90:fd:a5:30:47:9c:f2:2a:c4:55:1f:96:d4:f5:75:d7:86:
5d:1e:63:c8:41:4e:86:f6:d3:07:ba:91:fa:65:89:1a:4a:59:
21:9a:5d:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:10 2024 by rpki-client on console-fra.rpki-client.org