Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IBLfhBNZXbwyNxIKlG142eqH3c.cer
File: 6IBLfhBNZXbwyNxIKlG142eqH3c.cer (raw, json)
Hash identifier: xCSAriPWYwMeooQ+vPBqH/u7EcwQXMREQJWibWMWOtA=
Subject key identifier: E8:80:4B:7E:10:4D:65:76:F0:C8:DC:48:2A:51:B5:E3:67:AA:1F:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02059E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915392C/A6404A4A54CB11EFA1627016C4F9AE02/6IBLfhBNZXbwyNxIKlG142eqH3c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915392C/A6404A4A54CB11EFA1627016C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 07 Aug 2024 14:45:17 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 131219
IP: 103.68.94.0/24
IP: 103.120.247.0/24
IP: 2001:df3:e00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132510 (0x2059e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 7 14:45:17 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A915392C/serialNumber=E8804B7E104D6576F0C8DC482A51B5E367AA1F77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9c:b8:3a:a4:4d:74:96:bb:32:3c:36:a2:9d:
cf:c6:96:b9:22:6f:a2:91:18:d9:e7:17:15:5e:fe:
4e:8a:12:c4:07:8a:79:b8:39:01:48:05:bd:45:3d:
99:8a:b1:1f:53:90:64:0f:2f:d4:88:a7:f1:4e:7d:
63:1c:ca:29:ea:f3:fd:b3:aa:1d:84:d1:46:8b:59:
99:de:55:b0:e6:23:c8:eb:0d:0e:2f:59:d2:c9:36:
01:05:4e:cc:8e:b7:44:88:43:65:bf:b2:ac:9e:40:
eb:cb:1d:e9:09:a0:bc:ec:49:1d:d1:62:aa:2f:e8:
93:aa:69:4a:34:61:73:31:1c:d3:8a:49:01:29:d2:
63:b4:31:c1:53:34:54:02:06:c7:6c:85:7a:10:f2:
8a:5b:3c:e7:a1:fb:87:3e:b7:70:91:64:a3:ef:72:
77:cd:20:60:2c:ba:36:ad:41:e2:9b:c4:be:f4:8b:
28:74:91:33:58:09:f8:8f:73:ed:bc:40:57:2a:2f:
62:33:fc:db:7f:4f:41:f2:fd:e4:7c:cf:ac:e1:42:
52:8e:64:75:90:74:46:3f:39:22:fb:d8:4d:02:e6:
44:f2:ac:8e:88:d3:a8:9e:2c:24:a1:a8:39:f7:67:
42:9d:de:28:79:7a:62:f4:ba:9c:e0:c2:44:90:b4:
67:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:80:4B:7E:10:4D:65:76:F0:C8:DC:48:2A:51:B5:E3:67:AA:1F:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915392C/A6404A4A54CB11EFA1627016C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915392C/A6404A4A54CB11EFA1627016C4F9AE02/6IBLfhBNZXbwyNxIKlG142eqH3c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131219
sbgp-ipAddrBlock: critical
IPv4:
103.68.94.0/24
103.120.247.0/24
IPv6:
2001:df3:e00::/48
Signature Algorithm: sha256WithRSAEncryption
1c:cc:59:2b:10:5c:6d:f7:dc:1d:08:ca:7b:60:17:cd:ed:27:
8e:f1:39:b0:0a:50:ff:b7:72:33:85:fb:a6:e8:2d:1c:8d:46:
b7:43:93:2b:ea:f2:74:ea:db:e9:69:0f:79:95:d3:4e:b6:d7:
96:ff:ac:33:18:9a:bd:2d:a1:9d:4d:f4:21:03:5b:6b:2e:29:
79:ab:7f:99:27:6b:8d:bd:47:01:b3:62:5c:1b:cd:77:b6:14:
78:72:f3:b9:21:8f:55:15:4a:30:90:20:41:6f:e2:9e:ae:ca:
62:a1:55:28:13:4a:8e:af:d2:ab:87:9d:20:36:98:7e:71:b8:
2d:28:6d:e5:ff:49:9e:3f:8f:14:9f:23:ca:d7:a8:93:c7:61:
6f:45:b4:f9:ed:4e:bf:03:9f:5c:bc:f0:4a:c5:29:ae:4c:34:
74:0a:9c:d5:49:19:bf:1d:aa:2f:33:cf:c7:fd:53:4e:70:b0:
88:fc:dd:5a:20:de:c7:9d:98:14:45:d9:db:f3:c6:e7:e5:37:
ea:8a:b6:6b:03:24:4f:31:f1:b4:42:4c:4f:98:cb:d8:f0:34:
75:d1:ce:c1:d5:0b:c6:e8:63:9f:e6:d7:5a:29:0c:d2:30:71:
9c:e3:f0:fe:7b:1e:f1:76:0b:34:8c:6d:21:85:ed:75:74:0f:
f7:16:77:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:17 2024 by rpki-client on console-ams.rpki-client.org