Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer
File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.cer (raw, json)
Hash identifier: C+SZC+vadH24TMQO6UCAv04vMYu/3Koal3OOYu8BktA=
Subject key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020483
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Aug 2024 14:42:48 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 18212
IP: 203.26.77.0/24
IP: 203.92.4.0/23
IP: 2001:df0:84::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132227 (0x20483)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 14:42:48 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:0b:7d:40:c9:d7:2c:e8:41:ce:df:d2:71:b8:
4b:c4:3a:94:62:70:fc:a7:08:3c:4c:ae:7e:bc:2d:
e8:f8:1f:06:07:52:46:5c:b6:df:cb:4f:cd:c5:1b:
44:bd:fb:5d:8b:50:04:82:f9:63:68:8f:a8:65:26:
99:07:01:0b:83:ad:5b:ca:21:cd:7a:31:dd:34:87:
7c:08:35:85:00:4a:cf:28:9f:e8:37:71:9a:c0:75:
83:e7:49:4d:b6:95:62:73:13:9e:c8:f6:ec:c0:7e:
ae:c3:55:3a:4a:2c:71:20:c2:af:e2:4a:27:ff:a6:
87:87:ae:a4:b5:6b:12:f9:ab:8f:63:8d:a2:0b:67:
16:bb:07:c5:50:0b:d1:cf:41:a0:90:5d:34:ae:a0:
bd:2f:90:de:7f:73:c8:6b:f5:e4:80:78:22:7e:8a:
b2:3e:1e:61:58:4d:7f:48:62:e7:49:a8:b1:aa:b4:
d6:db:e1:30:c8:1c:1d:b2:9d:a9:66:c9:1b:7c:1b:
82:78:01:e2:f9:68:66:1a:b5:65:75:67:31:61:87:
dc:dd:ca:5b:63:a0:52:87:2a:9f:61:65:b8:87:fd:
23:0c:fd:ca:61:51:eb:3c:f9:6b:8e:03:2d:17:39:
da:54:61:e7:a8:a8:c6:b6:2b:83:87:a3:23:22:68:
90:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18212
sbgp-ipAddrBlock: critical
IPv4:
203.26.77.0/24
203.92.4.0/23
IPv6:
2001:df0:84::/48
Signature Algorithm: sha256WithRSAEncryption
9a:8d:06:96:c5:c5:56:11:f9:40:8d:ae:d2:66:c6:90:66:18:
a7:33:d3:82:05:c3:fe:c6:c8:fe:a4:fd:77:d8:bc:e8:15:b1:
f6:a7:de:dc:1d:1e:1b:97:cf:8c:b1:f2:32:62:3e:ed:ec:fa:
32:e9:9d:bf:a9:85:c7:86:0e:53:58:11:09:9f:31:4b:77:36:
5f:5b:e8:d4:cc:ed:29:89:7f:7e:fa:42:b7:e9:4f:ac:90:7e:
b8:bf:c7:b3:5d:0e:77:da:6a:0b:b3:2c:97:a1:d2:d1:48:30:
73:8b:93:df:13:92:c6:b7:d5:e5:a9:a4:4b:4d:5b:89:46:23:
43:65:88:ad:55:a0:81:62:6a:f8:46:05:72:a1:52:7b:a2:bc:
69:7a:89:b2:79:4b:8a:7c:56:b4:7e:e4:70:b7:44:70:fd:2b:
cd:97:a6:c8:b7:c0:65:92:16:5b:a3:fb:f3:02:c1:f5:93:65:
09:ad:db:a1:65:77:7b:d3:4f:dc:8b:56:f0:35:bc:64:a3:12:
e9:eb:8a:87:6e:c0:15:90:d4:57:eb:00:5e:3b:81:c4:b1:c3:
c6:65:93:40:05:b7:77:02:e8:b2:bc:15:29:ef:ff:07:a6:9b:
2f:f3:fe:7c:3f:38:86:c8:e5:c7:10:cd:e5:d3:e5:00:07:76:
44:0d:67:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:08 2024 by rpki-client on console-fra.rpki-client.org