Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer
File: 88hJQLK99AJViHBvWcHm7D0hR_A.cer (raw, json)
Hash identifier: w9VWoCJRfzS9nUNCazuXiNp1RsngYM5Bbo11LbQvhV4=
Subject key identifier: F3:C8:49:40:B2:BD:F4:02:55:88:70:6F:59:C1:E6:EC:3D:21:47:F0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CA79
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 13 Nov 2023 05:00:38 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 139296
IP: 103.141.8.0/23
IP: 2001:df0:e380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117369 (0x1ca79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 13 05:00:38 2023 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91BCC23/serialNumber=F3C84940B2BDF4025588706F59C1E6EC3D2147F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d7:20:25:c5:96:36:be:c5:ea:74:49:a3:5b:
80:3a:3f:ee:1f:58:0e:08:b2:1e:d3:b8:c1:87:a4:
23:f8:10:18:cd:70:b4:a1:31:20:97:65:ee:92:4f:
bd:01:12:a2:b6:d9:69:80:ef:64:ca:83:83:cc:7a:
32:fe:f4:0a:07:fd:61:c8:75:9a:a2:90:ea:fe:78:
26:d3:5c:bb:97:cb:5f:a2:67:b6:86:0a:1f:d6:34:
22:fb:b4:25:23:86:12:b7:f6:06:f9:a6:4e:37:4d:
f2:1d:cb:27:de:d8:d8:2f:59:cb:6b:20:e8:e0:58:
22:66:38:e5:8d:84:a5:1a:23:10:05:26:94:37:5e:
31:22:d2:3a:c2:38:38:6a:3a:68:b2:22:b7:b2:69:
69:53:f4:4c:b3:e6:0a:fc:07:46:5c:fd:a3:57:81:
4e:2d:23:e4:0b:24:9c:ac:17:9e:82:b9:d2:23:c1:
1c:d1:cd:3a:bc:2b:7c:b1:11:42:ee:25:e4:cb:eb:
4a:f4:fd:2e:07:b8:57:3c:0c:f5:ce:72:cf:99:f4:
ab:8a:97:99:28:c4:cf:4c:5c:30:98:d5:26:7e:8e:
8f:33:c9:5e:6d:bf:81:8a:24:72:38:cd:e9:ba:f5:
e5:33:d6:d8:cb:4a:89:fe:30:f1:34:c5:56:e0:2e:
f2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:C8:49:40:B2:BD:F4:02:55:88:70:6F:59:C1:E6:EC:3D:21:47:F0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139296
sbgp-ipAddrBlock: critical
IPv4:
103.141.8.0/23
IPv6:
2001:df0:e380::/48
Signature Algorithm: sha256WithRSAEncryption
d5:a3:df:c4:9a:8a:c4:82:d2:bd:61:11:22:70:6f:79:ac:12:
a8:61:ea:71:63:53:10:31:0d:40:aa:25:bf:16:18:39:30:8f:
25:78:8c:6d:1e:21:93:7e:05:fe:4e:76:7c:cc:7f:6b:b0:b0:
6e:94:e6:ef:a2:9c:d1:60:c1:d7:e2:1f:29:67:dd:9c:64:d4:
3c:a1:2c:89:79:e9:37:44:c2:49:67:a0:08:d0:30:d0:c4:bc:
ea:10:da:af:17:00:7d:f6:5b:c4:e3:82:96:25:86:a0:31:a8:
af:ae:a5:85:e0:1c:32:f6:f0:d0:3a:02:25:29:8e:22:de:bc:
d6:b8:a3:bc:be:b7:28:25:a0:e8:33:a6:7d:7f:ef:8c:dc:89:
8d:6d:9c:80:56:66:c4:b9:9c:ed:fc:67:7a:df:b0:4c:7b:60:
3f:a4:6e:27:e5:98:2a:fa:10:64:61:b1:97:11:25:ab:06:5b:
50:2d:81:c6:48:45:6c:0b:09:1e:74:a4:d4:f3:16:88:23:a3:
1d:0f:87:7a:6d:8e:79:16:33:39:c1:c9:a5:b0:2c:1c:4e:de:
68:d5:8c:0a:01:08:1c:dc:79:f8:f6:2e:ff:49:36:b5:1c:97:
26:e0:dc:08:39:b9:d1:0f:b4:31:46:c1:ef:21:8c:a3:48:0f:
62:6c:8a:c4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:11 2024 by rpki-client on console-fra.rpki-client.org