Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer
File: 6kGaeWKZYloHSmW3ys7_GLgGbIs.cer (raw, json)
Hash identifier: Zy94ldbw9HEptdRMbaycLnw8TH277GorKmf5IA8Ay+U=
Subject key identifier: EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02150F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 21 Oct 2024 20:17:14 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 150379
IP: 103.23.254.0/23
IP: 2001:df1:6d40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136463 (0x2150f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 21 20:17:14 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91BEBB1/serialNumber=EA419A796299625A074A65B7CACEFF18B8066C8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:07:ac:1d:b0:72:2a:63:6a:76:41:25:bd:63:
14:f8:8e:1c:5b:07:76:14:17:18:fe:a3:bd:01:0a:
e2:d2:43:de:5b:a9:4a:10:21:f2:a5:7a:88:74:11:
9c:73:be:51:1f:55:96:a2:35:23:1c:d2:1c:c9:47:
29:da:db:30:bd:d6:ff:99:a5:8f:51:fa:db:5f:e6:
d5:f7:37:71:10:58:d5:a3:b0:44:25:77:b3:2d:80:
8e:e4:b0:75:15:15:1e:ad:61:47:a4:f6:56:20:71:
19:d4:23:8c:e3:75:fd:9a:9b:cd:9e:d2:43:6e:54:
cb:43:3b:17:ab:51:7b:aa:f3:a5:b6:03:6e:1f:53:
be:06:97:3c:d4:ea:fe:b7:86:f8:bd:a2:50:d3:88:
3d:0f:38:67:80:cb:8b:b7:90:16:49:f2:fa:b3:18:
1b:80:33:be:aa:ee:8a:5f:e3:92:1d:8f:95:aa:e8:
7f:a8:0a:17:c8:f8:a3:64:eb:d9:5a:b8:95:df:94:
97:90:76:91:f0:aa:05:b9:d8:b5:95:7e:40:75:02:
94:36:f1:ad:c9:5a:5f:2e:71:c4:8c:af:92:b7:f5:
87:04:0c:9c:3a:aa:d8:a6:e5:8e:4f:b8:1f:7d:72:
de:ee:33:4c:ec:d1:a6:1b:30:47:42:40:1f:e9:e7:
d9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150379
sbgp-ipAddrBlock: critical
IPv4:
103.23.254.0/23
IPv6:
2001:df1:6d40::/48
Signature Algorithm: sha256WithRSAEncryption
78:1e:62:97:eb:c5:eb:93:04:d3:df:ef:f1:37:60:3d:ab:4b:
5c:75:52:3a:e6:84:10:eb:fb:39:ff:fe:de:7e:45:6a:b4:8f:
87:1e:06:fa:25:87:1a:8f:4b:16:24:74:74:04:49:6c:c0:4a:
99:e6:7f:57:60:3f:d6:d1:3c:52:fc:a8:bb:58:44:08:b4:35:
47:f8:ed:ef:5b:de:6c:33:35:1f:54:19:85:d0:6f:97:da:11:
f1:47:b9:2e:45:34:9e:e4:ab:8d:50:21:e0:5b:b5:69:6f:64:
b9:16:f7:e3:1c:cd:8c:90:1b:b4:dc:26:78:90:d8:b2:99:7b:
0b:cf:07:0c:64:67:f8:6a:29:70:42:3f:09:09:e1:c3:cd:24:
71:b8:47:a2:52:39:aa:c7:28:2d:df:d6:d6:7a:4d:f9:6e:78:
81:f7:6b:c5:b9:47:7b:17:61:60:d1:07:47:8f:bf:53:31:93:
5d:69:9d:5e:a8:3d:08:af:24:f7:16:ca:45:10:19:33:e9:91:
1b:08:5d:52:0a:76:6e:ff:62:7d:90:b7:65:ec:7d:fc:74:f8:
ba:df:5d:73:da:a1:45:9a:6d:7b:fb:b2:d7:94:d8:f8:a8:d6:
f0:c3:ac:e4:5b:ba:6a:83:40:f5:39:b7:04:ee:8b:8a:ef:c3:
93:d3:e7:a0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:10 2024 by rpki-client on console-fra.rpki-client.org