Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.cer
File: 8Ms18UXmGxwgQ6_Ruk41QUfEtV4.cer (raw, json)
Hash identifier: fFoBL6+VwNgtggAWhmwaoci35hNBTf4u8oQYKbGs0mQ=
Subject key identifier: F0:CB:35:F1:45:E6:1B:1C:20:43:AF:D1:BA:4E:35:41:47:C4:B5:5E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DE50
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 10 Feb 2024 14:43:07 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 140054
IP: 103.147.230.0/24
IP: 103.178.82.0/24
IP: 2001:df2:a780::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 08:04:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122448 (0x1de50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 10 14:43:07 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9163415/serialNumber=F0CB35F145E61B1C2043AFD1BA4E354147C4B55E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:64:a5:27:dd:e1:9e:5d:fa:b4:54:1a:4c:5a:
04:37:9b:5e:73:19:aa:e8:a9:a0:53:0d:fb:dc:78:
81:9d:92:ad:b3:58:bb:d3:0f:49:e0:ea:58:1c:21:
ea:5e:e0:9e:e3:79:89:a9:97:b2:3b:7c:f6:9d:f3:
2f:27:6f:dd:01:a2:b0:80:e5:68:48:ae:3a:ba:ba:
47:b9:b0:7f:46:2c:b0:ba:ea:42:a4:79:4f:f5:3d:
fc:d6:3a:c9:5f:17:fa:50:cb:36:2c:ce:a1:62:4e:
48:43:38:30:dd:a7:c2:03:49:6b:c6:d7:7d:07:c9:
37:73:b6:83:23:e6:c9:fd:44:e4:2d:52:7c:1f:95:
a9:ce:1a:98:c1:33:a5:62:0d:f7:5e:ad:39:0b:c2:
ea:d4:01:93:ac:44:b7:8f:be:fe:9c:b8:3a:27:6e:
db:9d:9b:3c:95:8e:cf:34:bb:e9:aa:6a:e2:47:7c:
03:a3:49:ee:da:d0:bf:80:d7:fa:5c:81:40:9d:a5:
bf:98:78:bb:41:67:77:0f:de:e6:5d:a7:83:9f:6d:
32:9d:c1:dd:4f:57:ea:c2:4e:53:54:f8:b3:73:9e:
2e:29:1c:6f:0b:c2:59:ef:ba:37:88:7f:59:cf:fe:
d6:3a:a6:a4:ea:a3:3c:1d:6d:8d:a8:03:1a:d5:62:
94:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:CB:35:F1:45:E6:1B:1C:20:43:AF:D1:BA:4E:35:41:47:C4:B5:5E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140054
sbgp-ipAddrBlock: critical
IPv4:
103.147.230.0/24
103.178.82.0/24
IPv6:
2001:df2:a780::/48
Signature Algorithm: sha256WithRSAEncryption
9c:b1:a1:b9:05:5d:aa:36:67:04:a8:23:23:91:32:1b:38:36:
0c:2f:d1:a9:9d:ba:03:56:92:6d:29:8b:ce:31:f3:15:02:d6:
70:d6:4c:f2:87:8b:93:1d:02:48:68:f2:d0:f4:1a:44:14:da:
de:88:f8:83:ab:38:1e:01:17:d4:6f:bd:1b:bf:f2:86:c2:8b:
a3:9c:81:ce:32:c1:e6:b5:5f:5a:ef:84:61:71:03:b8:02:ea:
be:f9:ca:1e:6b:3d:9d:30:13:5a:21:66:6c:c6:64:94:46:65:
44:78:85:bb:f3:b7:d2:2b:5a:3d:19:a6:61:ca:87:d4:47:7f:
be:82:35:db:ec:95:34:ac:56:81:f2:34:7c:06:0a:03:b0:4d:
15:0f:8c:3e:c5:38:dc:af:03:e9:22:64:e6:b3:3f:07:f9:b0:
21:14:5e:2a:82:05:f3:d1:d3:56:f4:2e:1a:eb:0e:61:ff:50:
02:32:4c:0b:d2:0d:8d:e2:7a:4c:ad:60:22:0e:88:dc:27:d5:
9e:40:3a:8e:16:1d:aa:76:27:eb:c3:1f:8f:db:e7:03:b7:22:
5e:5d:5c:ce:88:23:8b:90:6d:e2:79:79:19:c5:b8:6f:f0:e6:
7b:af:73:49:2f:76:2e:6f:cb:dc:14:4e:66:53:53:91:0e:cc:
7a:3d:69:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 08:44:52 2024 by rpki-client on console-ams.rpki-client.org