Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5c15IB7rS9nw73ZW5zJfVxZffqA.cer
File: 5c15IB7rS9nw73ZW5zJfVxZffqA.cer (raw, json)
Hash identifier: 6GG7zhEQsRFZI5Fpd4O45ycDboWnZ05CN2xlOqzmt/o=
Subject key identifier: E5:CD:79:20:1E:EB:4B:D9:F0:EF:76:56:E7:32:5F:57:16:5F:7E:A0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021BE9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/5c15IB7rS9nw73ZW5zJfVxZffqA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 18 Nov 2024 12:23:43 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 141209
IP: 103.156.126.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138217 (0x21be9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 18 12:23:43 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A911218D/serialNumber=E5CD79201EEB4BD9F0EF7656E7325F57165F7EA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b8:fd:b9:05:7e:31:b2:06:ae:12:db:b9:de:
bd:a7:a8:c6:90:a7:42:1a:58:34:21:8a:2e:80:8d:
b6:2a:bb:d6:b8:0e:ca:7d:6e:95:30:89:0f:22:f4:
59:17:59:38:71:42:3f:c2:2a:fe:f2:4f:a8:c5:1d:
f7:2b:5a:83:8a:ed:2f:ab:aa:4c:d1:8c:1b:d6:bd:
a5:94:9b:9a:af:4a:2e:ed:48:76:2c:43:16:f5:f6:
7c:00:b0:ef:52:4f:65:d3:0e:50:4c:3d:c0:79:6d:
e3:4c:04:5b:03:36:fe:ea:8c:2c:e1:dc:3b:80:c0:
c2:7c:5a:7e:6d:77:7c:93:20:d6:83:95:7a:8d:61:
cf:89:61:ae:6d:12:76:6a:c7:bf:4d:53:1f:93:7d:
99:d8:1c:34:02:eb:44:f8:06:0f:a9:6e:31:dc:68:
27:0a:a6:08:4e:fa:33:09:91:45:62:b3:b6:97:7a:
73:4a:05:76:0f:d2:46:fe:75:b8:fd:91:74:48:45:
23:f7:fb:5b:a7:ab:3d:67:20:0c:20:85:2c:5d:46:
c8:8d:05:b4:80:c7:fa:e0:93:d2:11:05:88:fa:43:
91:c4:1f:f4:dd:48:0d:51:a1:e6:1a:45:45:51:b7:
9f:3e:3c:dd:95:0d:d4:80:e8:26:11:60:de:1b:68:
4f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:CD:79:20:1E:EB:4B:D9:F0:EF:76:56:E7:32:5F:57:16:5F:7E:A0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/5c15IB7rS9nw73ZW5zJfVxZffqA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141209
sbgp-ipAddrBlock: critical
IPv4:
103.156.126.0/23
Signature Algorithm: sha256WithRSAEncryption
44:45:ba:a2:01:4c:94:cb:a2:10:6b:8b:c4:4c:20:44:e9:e9:
05:91:f7:05:f4:db:24:d5:ba:89:58:e7:de:5f:35:52:05:23:
99:56:15:04:d3:ea:3a:4a:27:30:e5:5c:c3:93:4b:2c:6b:e3:
4e:e9:7a:5c:d8:57:da:75:75:4d:a5:bc:0c:84:2e:79:6a:58:
28:c3:34:fe:8c:f0:b7:7e:c7:52:13:18:97:af:89:fe:20:42:
ad:fc:3f:ea:f4:d8:e1:48:88:a1:b3:66:ec:2d:f9:27:c7:d4:
f3:d7:fd:dd:12:7f:17:a2:bd:76:d3:66:71:b7:59:dc:02:46:
43:dd:7f:f9:e3:2b:f7:96:a4:9d:10:89:48:49:c4:06:56:da:
6d:8e:24:72:b9:64:c3:6b:fb:61:fc:fe:09:e7:52:9f:e6:53:
db:e8:fb:ae:1d:a7:4e:5d:bd:bd:60:d5:2e:21:92:f0:64:b9:
a0:6f:bf:5d:49:c5:75:d3:7e:7c:06:f1:1e:61:7c:e4:49:b0:
ba:2d:9c:6b:e8:e9:77:7a:3c:b0:fb:e6:9c:b7:11:87:93:12:
f2:a6:35:cc:2a:01:da:8f:18:51:dd:c5:7a:ab:04:5d:20:07:
04:b9:88:56:33:da:92:87:c5:a9:87:b6:1e:00:13:15:3d:25:
7b:64:d8:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:16 2024 by rpki-client on console-ams.rpki-client.org