Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer
File: 6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer (raw, json)
Hash identifier: bEil3GDIotGjY15JWDt/gYTGVF6ESE+z0ElYW++GX0w=
Subject key identifier: E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BDC5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Sep 2023 14:39:56 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 132311
IP: 103.72.100.0/22
IP: 2001:df4:1600::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 11:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114117 (0x1bdc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 15 14:39:56 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:54:48:1b:41:0d:70:b1:ed:cf:be:44:f1:0e:
76:f8:54:94:69:9c:5b:34:c9:54:d7:20:33:58:51:
53:7c:97:0d:d0:c2:fd:fd:e1:05:29:52:63:1f:c1:
a6:4b:4f:2a:a6:c6:39:96:32:f6:02:82:2e:d0:43:
fe:f9:35:4a:c0:c4:c8:ab:e6:2b:05:03:b1:d1:f0:
0e:47:bd:a8:4b:e5:05:83:39:b9:1c:bd:cb:e3:12:
24:89:6d:29:0c:db:e9:29:d9:8f:1c:af:42:3a:b7:
2c:43:79:83:e8:66:28:6e:bc:28:07:84:ff:22:0c:
97:43:75:93:0b:d6:76:59:8e:bc:eb:11:5c:47:61:
7b:b1:3a:86:61:e5:b1:a1:6f:0d:d2:4b:12:4f:48:
39:fd:7a:94:e0:07:17:f7:01:2f:14:fb:84:20:e4:
c1:10:db:de:e4:dd:44:90:3f:75:7a:cf:10:1d:a7:
ce:d8:13:82:d1:37:aa:83:41:e2:ef:8d:a4:64:2e:
d3:bc:1c:8a:cd:97:4b:4f:2d:4b:aa:61:b0:cd:39:
80:67:17:6b:14:d6:e4:71:47:7c:41:e2:11:3d:a0:
fd:c0:66:96:d1:3f:51:1f:4e:81:7e:7e:87:72:16:
6e:17:99:0e:ec:52:97:5b:6d:b7:57:a7:c1:f9:46:
7a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132311
sbgp-ipAddrBlock: critical
IPv4:
103.72.100.0/22
IPv6:
2001:df4:1600::/48
Signature Algorithm: sha256WithRSAEncryption
a9:62:d2:93:b1:e1:dc:fa:10:1d:00:0d:10:52:b8:bf:02:23:
e5:72:2b:11:c4:0c:f4:ab:c4:42:af:b7:27:c4:67:ec:1d:f2:
e1:16:5c:0b:fe:ec:88:d2:bc:d1:94:29:3f:cc:96:34:21:ec:
91:df:7b:7b:15:3e:e4:5a:28:70:5b:2f:78:38:59:7a:13:cd:
bf:11:3e:c3:0a:0a:3c:5b:52:89:72:d5:c3:55:b4:42:3b:1c:
8e:f9:4f:3d:37:3d:68:32:72:93:f3:52:86:ad:b5:6d:5b:a2:
23:d8:f7:25:c9:27:0e:88:20:ab:b5:9a:bf:10:57:a4:ac:0a:
fc:7f:23:fb:f6:ac:7a:f8:7b:57:ca:7b:84:56:65:51:75:cf:
85:f9:58:1d:b8:1a:62:6d:b1:dd:c0:71:9f:6a:7e:22:f1:0b:
8a:92:d3:6b:45:53:8d:ba:0b:c5:e3:e7:b0:a6:69:4c:f0:4b:
07:b1:a4:b7:78:f5:45:96:2d:af:27:2b:87:ba:0d:fb:01:60:
ed:88:38:3c:44:10:fe:b0:d1:0d:3d:8f:51:c0:0c:4a:f9:8b:
fc:17:87:c4:23:e0:77:76:47:ba:64:c6:07:e8:4f:3d:c3:82:
a0:25:6c:57:79:12:04:21:ac:1e:60:2f:7a:c0:d7:e0:bb:78:
50:eb:71:74
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 19 13:18:19 2024 by rpki-client on console-ams.rpki-client.org