Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.cer
File: 4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.cer (raw, json)
Hash identifier: S7idH6HZ3cWfNfbPouEjrP1NcG70uSXYWD1cYwSCNdU=
Subject key identifier: E2:E0:43:A9:32:EC:E0:43:9E:2A:8E:F1:DC:40:64:D3:21:4C:27:E6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F3D3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 26 May 2024 18:32:49 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 149649
IP: 103.184.94.0/23
IP: 2001:df0:8f40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127955 (0x1f3d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 26 18:32:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91BAE1C/serialNumber=E2E043A932ECE0439E2A8EF1DC4064D3214C27E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:08:d1:4c:47:7a:c1:ba:e6:fd:5b:00:4d:aa:
d7:46:41:f2:b4:0d:ce:c0:46:8e:64:ac:e3:0a:bf:
2c:b9:f6:2f:a4:3f:80:90:b9:58:e1:9f:c7:28:8f:
28:76:bf:99:39:3f:79:3f:ed:1f:a1:f9:22:2a:96:
4d:b1:60:11:36:23:dd:a2:3d:c1:a9:10:d4:ea:e4:
52:dd:76:89:b1:20:1b:9d:bc:61:02:cf:2b:37:7c:
99:ba:b9:c1:bc:f9:ac:28:d7:e6:97:5a:77:09:e6:
f7:68:57:8b:77:83:15:6a:03:28:41:bd:1c:a7:0f:
0a:92:ec:33:6e:0d:18:2c:be:2d:53:22:c3:3a:73:
56:7e:38:0c:d7:40:b5:32:11:5d:fe:85:04:6b:0f:
c2:fe:8f:e1:7d:4c:d1:22:33:d3:4c:58:29:67:b4:
13:49:f3:9e:36:1d:1a:07:c9:86:5c:3b:99:f2:dc:
14:1e:c8:60:a5:74:68:d3:9a:83:4f:fe:b5:a1:9b:
42:ad:8f:6d:81:f2:51:9e:2e:ca:09:29:c2:ae:fa:
6d:b7:40:4f:a9:41:8e:8b:6b:c9:58:6a:a1:08:6b:
a2:88:fa:6c:c4:36:0d:0a:3a:a3:1f:67:05:13:1b:
0e:fa:1f:5f:11:5c:8c:36:fb:a9:20:f2:9b:10:52:
77:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E0:43:A9:32:EC:E0:43:9E:2A:8E:F1:DC:40:64:D3:21:4C:27:E6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149649
sbgp-ipAddrBlock: critical
IPv4:
103.184.94.0/23
IPv6:
2001:df0:8f40::/48
Signature Algorithm: sha256WithRSAEncryption
a7:81:12:1f:f4:27:5a:1f:f1:3e:6d:c8:f6:c1:54:95:a0:80:
07:4c:db:0b:73:4b:21:d4:25:38:f0:2c:b4:a5:06:11:d7:54:
6f:a2:0f:e1:19:da:ba:b2:fb:50:89:ec:73:cc:eb:65:1f:14:
33:8a:22:ec:99:22:27:2b:de:9f:e5:9c:64:7e:2e:ab:a4:eb:
a7:74:9f:8e:10:e5:8c:e8:4f:30:bc:a0:7e:60:3b:eb:4f:70:
19:ef:9f:e5:89:52:01:05:c7:35:61:50:cb:d7:67:67:05:d1:
92:55:52:47:a3:11:86:49:2b:a0:bb:b0:ac:e7:f1:bb:da:17:
10:06:03:f4:50:d9:6e:1b:3c:b8:2b:c2:8e:30:16:21:9d:13:
95:bb:60:53:a5:56:2d:59:89:7a:e6:e1:6e:f9:2d:ec:3a:7e:
fe:89:19:65:1d:51:56:8b:f7:1e:f3:ee:7e:b3:a1:63:c9:e5:
5c:1e:fe:d8:d9:1f:8a:f2:03:e3:77:70:b1:d4:af:f7:8f:dc:
e3:21:13:12:66:66:4d:ea:6e:81:98:18:31:0f:51:be:a6:de:
f2:de:46:c9:b3:1b:80:3f:cd:81:e9:98:76:c7:90:91:61:05:
66:31:03:02:0a:09:ad:49:a7:9e:dd:31:5d:15:4e:66:f7:bf:
a5:58:2e:cc
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:09 2024 by rpki-client on console-fra.rpki-client.org