Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer
File: 4mhztF-I0fXYg8F-TM9wokUWIUI.cer (raw, json)
Hash identifier: 9opgBv6og4nd4CpB4c65Z3QKr24IA46j1O5vL3rELvw=
Subject key identifier: E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020764
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 Aug 2024 21:17:17 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 140843
IP: 103.152.102.0/23
IP: 2001:df4:980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132964 (0x20764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 16 21:17:17 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:81:b7:38:c1:f1:be:1a:91:f9:1f:6b:44:97:
47:23:44:92:0c:f8:1a:bb:ca:a1:99:91:76:bb:b4:
5f:d9:be:68:f6:0d:d3:d4:bc:9f:5a:58:98:b9:80:
b1:82:a0:b7:77:39:b1:bb:47:90:2d:eb:13:ec:9e:
14:c2:02:db:02:33:57:2c:32:b5:29:88:29:38:d0:
69:10:43:83:e8:ca:2e:b8:ea:f7:2c:1a:98:a6:0b:
5f:02:6b:84:b9:8f:6e:34:d0:c8:d5:68:6f:86:ec:
e7:b2:e7:31:4b:81:49:38:cd:f6:54:0a:f8:c4:66:
eb:4d:78:65:ce:8b:f5:b9:89:9c:16:9a:5e:32:a4:
3c:2e:2d:4d:4b:14:4e:b2:d7:cf:bd:5f:24:24:02:
9c:9d:0f:c9:27:97:f8:7d:92:bd:28:aa:13:05:d8:
90:35:2d:c7:10:86:2c:3d:ec:62:d2:6f:c6:18:c7:
3b:71:9d:95:a0:f3:7b:6e:b7:f8:3a:9d:9a:87:8b:
4a:3e:4c:04:ed:8c:5d:c9:ad:62:6a:18:8f:49:46:
d2:d4:4a:a7:32:7a:5f:d2:0f:64:5f:7a:e8:42:02:
41:af:1e:06:f3:19:f7:1f:e4:10:d7:42:03:54:1d:
22:a8:a7:0a:64:c0:c6:88:6e:bd:a3:5a:ce:6c:b4:
0f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140843
sbgp-ipAddrBlock: critical
IPv4:
103.152.102.0/23
IPv6:
2001:df4:980::/48
Signature Algorithm: sha256WithRSAEncryption
d4:4c:b8:4f:3c:79:ea:ac:84:b1:da:94:77:b8:e5:b3:69:ea:
78:14:cc:20:ee:a1:5c:99:24:b4:c1:02:33:83:d2:4d:95:40:
35:67:5e:fc:c9:d9:07:3c:18:47:80:df:2f:a2:25:b9:10:ff:
1c:6c:9b:91:04:70:00:bc:e3:49:92:cc:5c:51:b9:37:b3:e1:
52:90:c0:c0:33:95:d8:3f:a0:8d:93:43:0e:2a:b0:eb:23:d0:
8a:0f:e1:0c:36:db:e5:e6:c6:7c:fb:a8:0b:b7:7b:47:67:e5:
ca:ad:fc:cd:7a:dc:9f:f8:91:eb:87:c9:56:b7:36:85:45:83:
a7:d1:b5:d2:ff:f8:2d:81:f9:ab:fc:96:65:e5:e0:b0:3a:44:
b4:f1:d9:10:9a:84:92:58:ce:63:fa:57:82:33:d6:a2:97:e4:
de:20:fb:d2:91:dd:78:fe:0a:df:c3:dd:47:90:c0:27:98:f2:
eb:69:a2:16:c8:71:75:2d:9a:0f:06:8d:25:16:43:ef:64:33:
a9:ce:28:54:c9:20:fd:ce:5a:ad:c0:0c:45:50:ba:6d:e0:e9:
dc:af:3d:de:42:fc:43:5b:dd:31:f7:2a:c6:ac:d2:e4:6e:c6:
a9:1c:29:02:98:c3:73:6d:fb:f9:c9:9f:8f:48:a8:7b:de:83:
ee:33:e3:6c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:15 2024 by rpki-client on console-ams.rpki-client.org