Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7N0mV0PpIRvOCq3LsCLObzO-CwY.cer
File: 7N0mV0PpIRvOCq3LsCLObzO-CwY.cer (raw, json)
Hash identifier: MUI/nAhpkqP/RwJowMfJTHciTHDY+LwOpr1OU7j6b0A=
Subject key identifier: EC:DD:26:57:43:E9:21:1B:CE:0A:AD:CB:B0:22:CE:6F:33:BE:0B:06
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021883
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/7N0mV0PpIRvOCq3LsCLObzO-CwY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Nov 2024 11:19:41 +0000
Certificate not after: Sat 01 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 58701
IP: 103.20.89.0/24
IP: 2406:e9c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137347 (0x21883)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 11:19:41 2024 GMT
Not After : Mar 1 00:00:00 2025 GMT
Subject: CN=A91C1710/serialNumber=ECDD265743E9211BCE0AADCBB022CE6F33BE0B06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:de:34:dd:79:e0:40:da:e7:35:b8:8e:3d:62:
93:1a:93:bd:f2:eb:f8:e7:ab:19:15:92:dc:f7:5f:
72:52:9e:a2:7b:63:c5:46:94:c3:0b:dc:1c:15:f3:
ad:7d:11:c4:74:40:36:96:05:18:ea:cf:1e:fa:b5:
6c:ae:05:cb:8e:3f:51:f1:63:2c:96:2c:b3:54:88:
cb:d6:1b:02:6e:73:b1:48:6d:20:54:b8:32:fb:13:
0b:39:60:b3:42:c2:1c:ca:38:66:1e:3e:f5:d9:41:
19:c6:2a:00:71:17:46:62:0e:d2:ac:54:7a:41:24:
f1:49:e4:70:29:42:bb:8a:2e:9e:ce:16:44:e2:c7:
32:e9:f6:d4:8e:14:f9:61:b8:e5:d1:fa:b5:04:77:
1a:1b:b4:9d:17:4a:24:8f:66:15:32:9d:93:c6:bb:
51:af:94:29:d8:38:7a:21:e4:b3:b4:b5:60:b8:bd:
64:1d:3f:9f:d2:19:fb:0f:16:00:3e:96:0f:eb:03:
de:21:72:cc:fa:7b:87:c1:a4:8c:3d:88:b6:ec:60:
27:62:da:e2:7b:b7:5d:8c:c6:b2:3a:ae:f7:77:23:
7b:28:08:df:4d:7b:eb:a8:54:3e:e6:ca:2a:83:89:
1a:17:b8:92:ee:bf:be:0c:30:8b:c3:b3:93:cc:c4:
cc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DD:26:57:43:E9:21:1B:CE:0A:AD:CB:B0:22:CE:6F:33:BE:0B:06
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/7N0mV0PpIRvOCq3LsCLObzO-CwY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58701
sbgp-ipAddrBlock: critical
IPv4:
103.20.89.0/24
IPv6:
2406:e9c0::/32
Signature Algorithm: sha256WithRSAEncryption
50:ef:9e:5c:b6:8d:82:5e:4f:6f:ad:ca:bd:df:22:ff:fb:b7:
ef:fc:e0:2e:c3:2e:36:75:68:ce:15:60:fc:11:5b:0c:9f:52:
99:e9:19:7b:da:2d:be:a1:3b:7e:c8:69:98:e2:90:9e:77:7f:
71:56:64:a2:ea:d4:29:4c:9b:38:40:a1:b0:e6:e7:07:c1:1f:
d1:55:45:b7:5f:54:78:45:ac:ab:44:6c:f8:4b:3a:96:a7:41:
a6:90:9b:46:6c:a6:a7:5d:63:5d:20:fc:be:29:5d:a9:9e:0f:
3b:52:98:44:27:28:5c:9a:09:fc:e1:d9:61:f9:ef:23:8c:94:
3b:a1:cb:b9:1f:09:b8:f8:81:e5:f0:4e:22:e1:d6:1c:cd:ed:
13:be:2c:14:6b:d3:63:47:70:3a:e2:c7:d2:f6:84:69:23:86:
1b:d1:04:01:3f:d6:e7:c8:03:4b:2e:f6:cd:c2:42:df:e2:76:
d2:ca:be:90:49:c6:e5:68:8b:0a:d7:c9:36:83:b6:81:0c:6b:
03:b0:79:e9:ea:f6:b0:4c:02:9b:78:d2:41:3d:78:cc:e5:5d:
79:e6:b3:aa:6e:53:ca:4d:ba:86:b6:6b:ac:67:5c:3e:d4:f7:
dc:0d:e8:43:9f:37:77:d6:45:10:26:85:a7:04:3b:0e:9d:97:
6d:f7:06:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:11 2024 by rpki-client on console-fra.rpki-client.org