Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer
File: 7bQ_87hP5VlboMvE9ruHNxPkG7I.cer (raw, json)
Hash identifier: uvXYzFD2sCc/wqr6r4paZgAhj8bm/B8XFH+M7xnSsSM=
Subject key identifier: ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020BA3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Sep 2024 16:19:32 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 134353
IP: 103.129.44.0/22
IP: 2403:77c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134051 (0x20ba3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 3 16:19:32 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9167D85/serialNumber=EDB43FF3B84FE5595BA0CBC4F6BB873713E41BB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d2:29:c8:7f:cc:07:f7:5f:df:87:12:e6:4d:
12:14:20:45:de:b7:61:2b:bf:54:a4:b5:90:78:86:
fb:40:67:07:dd:ef:10:c8:55:94:fc:d2:3f:68:b0:
4d:21:34:15:33:4c:6c:17:f7:a4:bc:f5:d3:06:f2:
76:ab:dd:71:c4:f1:68:1c:48:02:93:3c:79:b6:20:
66:3b:ab:46:2b:68:38:b6:99:7a:c3:1e:2a:11:fb:
bc:aa:b1:d1:51:b0:3b:27:c4:a1:4d:28:e6:42:75:
41:98:cd:92:e3:e4:2f:c9:1c:17:8f:1f:81:53:79:
e5:39:b5:c6:43:5f:60:91:71:ae:3b:d4:cd:c6:b0:
35:0e:59:f4:06:06:71:38:b8:59:e4:ec:ae:14:2c:
8e:e3:c8:49:a6:ed:28:d3:83:ed:32:b6:d6:30:4b:
61:d6:c9:3b:f1:9c:d9:04:ce:4b:ce:ad:e6:12:41:
82:b6:da:fb:11:2b:44:f4:dc:cc:6f:b6:bd:cc:40:
40:00:e7:1d:dc:4f:a8:8b:fb:4c:b4:52:25:f4:d7:
05:35:d3:d7:df:2c:57:90:44:72:aa:76:20:c9:93:
e4:24:0b:77:f9:32:21:7b:f2:76:d4:fa:06:97:b1:
0d:e0:02:55:50:f2:74:48:09:45:23:95:f0:fe:ae:
35:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134353
sbgp-ipAddrBlock: critical
IPv4:
103.129.44.0/22
IPv6:
2403:77c0::/32
Signature Algorithm: sha256WithRSAEncryption
da:ba:c6:4d:9b:0c:57:2e:86:89:c1:43:3a:0e:66:36:ca:bb:
75:e1:05:80:96:84:e3:27:54:19:0b:40:33:ac:9d:0e:06:c5:
90:61:dc:90:90:3f:18:da:e5:94:bb:f1:d6:79:40:ab:05:c9:
3e:14:d2:dc:04:74:bc:af:3b:a5:1f:24:9c:39:fc:28:01:2c:
e0:e6:e6:25:17:84:c8:f5:7d:7d:20:1f:25:ca:ab:e3:fc:32:
df:3b:4e:83:a4:0a:b6:b4:78:7e:ce:53:f8:a7:fd:20:0d:3f:
a0:93:64:c0:57:0c:cf:b5:21:fd:27:ae:51:b9:ee:09:21:8e:
6c:aa:35:c4:e0:f7:62:6e:5c:0c:04:f6:3d:db:43:6c:00:fc:
45:d1:8e:fe:bb:bf:b7:be:4a:6d:e4:fe:ac:74:22:de:2b:93:
0f:78:f8:8b:58:67:66:fd:3c:93:2c:4a:a8:dd:84:21:3e:79:
04:ad:82:5b:1e:74:67:94:c2:c7:da:91:db:18:e3:ae:39:c8:
dc:63:8e:22:4b:9b:e1:9b:01:8d:c6:da:ac:5c:6a:74:e8:47:
0e:4a:4f:37:f9:a9:b8:9d:ea:ff:93:56:80:84:25:51:fb:8c:
ec:af:08:06:d5:ea:83:ee:bc:bd:1b:f2:2e:69:af:0d:90:c1:
7d:af:05:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:07:27 2024 by rpki-client on console-ams.rpki-client.org