Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer
File: 4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer (raw, json)
Hash identifier: wri48eP8US9Q6K6EupvJyAk1YBaO2lZ7cI8RE4Krq8w=
Subject key identifier: E0:E9:B9:39:9B:8A:4A:5F:DC:DE:20:9F:C5:BE:C0:78:AF:95:CF:7B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FA1F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 19 Jun 2024 20:34:10 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 135509
IP: 45.251.104.0/22
IP: 103.220.72.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 19:56:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129567 (0x1fa1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 19 20:34:10 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91E1887/serialNumber=E0E9B9399B8A4A5FDCDE209FC5BEC078AF95CF7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bc:99:b7:38:c3:0e:a1:ef:23:c7:9e:d4:0e:
df:79:2f:e8:1a:7d:8d:a9:fc:85:81:a5:cb:b9:3f:
83:ba:27:2e:b4:39:48:17:6c:6b:f7:1b:8e:c1:5e:
08:91:5b:89:87:7e:56:a9:b9:88:a4:5c:4d:6f:7b:
18:f1:db:d0:8d:72:fc:a3:27:31:15:bf:98:89:31:
7b:46:9a:bd:ef:dc:bc:b0:1c:99:9e:0c:30:1d:d5:
1e:7f:c1:4f:b2:b7:7d:75:24:23:6b:99:2e:72:2b:
7a:48:49:96:bf:8e:0f:27:ab:b2:36:d9:fe:af:9f:
12:39:07:cf:cc:4b:04:06:64:6a:fa:e6:ca:53:a1:
77:7b:b2:9b:c7:d1:0f:e6:5a:29:26:3d:c6:e3:e8:
0f:28:61:db:5f:35:9d:ed:35:29:52:55:0e:1d:91:
4e:c2:72:00:8e:5b:4a:af:c2:cf:37:2b:f5:e2:c7:
3b:1b:ec:9a:6c:76:a7:72:0f:a6:33:f7:1d:f4:63:
79:18:34:b1:1b:ac:12:6f:0a:af:a7:96:38:55:2b:
89:1a:7f:05:a8:9f:2e:49:06:3d:70:58:28:32:11:
e4:e3:1e:49:1b:05:82:fe:15:f8:1b:45:f4:d6:7d:
84:24:6f:b9:ca:58:37:21:45:fc:cb:62:09:19:23:
13:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E9:B9:39:9B:8A:4A:5F:DC:DE:20:9F:C5:BE:C0:78:AF:95:CF:7B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135509
sbgp-ipAddrBlock: critical
IPv4:
45.251.104.0/22
103.220.72.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:c6:fd:39:2c:a6:55:a3:a7:bd:20:bb:46:f8:ba:a4:14:bb:
d1:b8:ca:2f:de:94:ae:4e:03:34:0b:b4:05:9e:1a:1d:e2:bc:
2a:b2:11:ea:1d:ad:c4:25:ab:0e:e1:dd:9a:51:57:3f:20:42:
fa:b5:33:f8:2b:94:b1:a5:e2:69:ed:93:6e:08:29:0f:cf:45:
c8:0d:50:80:09:f2:32:95:23:33:95:4c:ca:4d:e6:cf:be:d0:
af:d9:47:f3:af:0c:45:c4:76:c4:4e:bc:ba:ab:a1:97:6e:51:
51:b5:d0:ce:f0:01:c5:93:0c:41:5d:c8:03:71:85:26:b9:b4:
4d:87:5f:05:dc:f5:03:19:d9:4c:68:d3:43:0d:5a:57:a9:dd:
7f:57:42:88:19:17:41:4d:d5:e1:ee:2f:ec:02:99:15:ee:fa:
8e:bd:43:21:37:8d:1c:06:58:f8:9b:5c:da:2c:38:d5:c2:d9:
76:9c:3d:5c:9c:71:f5:10:0e:0c:bb:1c:ad:b4:57:82:df:d2:
7b:81:b3:51:e0:5b:37:c6:3f:23:89:aa:64:78:7f:38:f1:fb:
99:e0:85:dc:89:86:33:f6:6b:10:d8:8a:94:fe:9d:e8:8d:8f:
46:40:53:ba:6d:aa:5a:fa:a2:61:c8:74:42:83:99:60:cd:fc:
e5:06:10:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 21:05:40 2024 by rpki-client on console-fra.rpki-client.org