Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-izu07xkrh2NgHbMj9N4oMaEBo.cer
File: 9-izu07xkrh2NgHbMj9N4oMaEBo.cer (raw, json)
Hash identifier: LZH7ZS36VyOD93Uxc8GB30wH0AfNbPnwyQ1ial/de48=
Subject key identifier: F7:E8:B3:BB:4E:F1:92:B8:76:36:01:DB:32:3F:4D:E2:83:1A:10:1A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021A48
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914B6D8/16333DAEFFBC11E9ABBB1451C4F9AE02/9-izu07xkrh2NgHbMj9N4oMaEBo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914B6D8/16333DAEFFBC11E9ABBB1451C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Nov 2024 14:26:49 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 137013
IP: 103.101.253.0/24
IP: 2402:5440::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137800 (0x21a48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 8 14:26:49 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A914B6D8/serialNumber=F7E8B3BB4EF192B8763601DB323F4DE2831A101A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c0:08:de:88:f3:c7:f0:a4:d3:90:9c:8d:55:
81:ef:c3:93:12:ad:8b:c5:bc:e5:0b:fb:be:1a:60:
2d:57:7c:12:42:84:a5:0e:d7:e1:94:a0:76:3a:91:
98:3b:3b:0d:92:43:bb:b3:a2:96:1a:41:c2:31:fb:
e6:0d:b0:4c:99:13:e7:14:ba:69:6d:39:54:84:2a:
8c:fb:8c:48:af:17:0c:eb:df:49:9b:e3:b5:4e:14:
8a:97:b9:ee:3a:f0:59:c8:f7:60:f7:65:1a:e6:5c:
ed:09:5f:c2:1c:37:ef:b5:29:90:d1:d5:84:e7:f0:
4d:3d:88:33:06:93:2a:23:6c:09:71:5b:39:bf:f6:
59:c6:98:85:c0:f9:a9:91:c5:4e:3a:3f:d2:06:5d:
1a:a5:f2:70:e5:44:10:4b:33:77:5a:eb:73:db:e0:
65:70:f8:87:05:58:44:2a:1b:30:81:e7:78:1b:76:
2d:92:bb:bf:90:39:19:33:90:f1:59:76:c1:56:10:
93:bb:42:00:06:8b:ce:f1:b4:d0:80:30:b6:2c:3a:
dc:a4:df:89:18:54:43:46:3d:75:74:55:09:64:ce:
87:e4:b3:93:65:87:6a:51:bf:db:63:73:b4:74:cc:
0d:81:52:d4:6f:97:40:cf:cb:42:76:31:56:41:9b:
0c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E8:B3:BB:4E:F1:92:B8:76:36:01:DB:32:3F:4D:E2:83:1A:10:1A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B6D8/16333DAEFFBC11E9ABBB1451C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B6D8/16333DAEFFBC11E9ABBB1451C4F9AE02/9-izu07xkrh2NgHbMj9N4oMaEBo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137013
sbgp-ipAddrBlock: critical
IPv4:
103.101.253.0/24
IPv6:
2402:5440::/32
Signature Algorithm: sha256WithRSAEncryption
a8:fa:ac:41:81:8a:0b:a2:79:3b:73:79:56:9c:23:a9:17:95:
11:81:7a:9f:69:55:4d:bc:69:5e:b3:9e:5b:27:4c:d2:bf:30:
92:aa:7d:26:90:59:ad:c3:df:ba:c9:cd:58:de:a7:1e:ba:06:
d5:71:51:66:7a:2e:1e:42:fd:fa:be:2b:41:76:9a:b7:b3:2b:
89:73:b3:0f:86:33:c8:32:52:71:21:5c:c1:4d:cd:96:d8:78:
a8:72:c9:41:6a:60:a0:33:53:87:f6:c6:1f:48:45:94:c6:20:
71:4e:3c:06:f3:d8:ef:23:1c:12:ed:34:21:f8:28:3c:59:b8:
d8:45:ee:72:fc:61:55:e0:0a:db:93:f6:d8:bd:dc:aa:ab:5a:
3f:c2:72:36:45:d8:8c:06:0f:8f:fb:5c:2f:d9:57:65:60:ea:
1b:59:0c:60:d0:ec:eb:30:9c:92:53:86:ca:27:73:0a:35:e9:
c5:cb:33:12:38:9f:41:ad:12:97:f1:80:83:10:36:fb:45:ec:
8e:6b:f5:b7:26:24:e3:15:5b:6a:de:ba:92:8a:38:fb:cc:cd:
b8:db:16:93:f8:34:73:99:cb:67:3a:cc:74:fe:ed:1a:bb:9a:
e5:c4:66:87:8e:b0:3f:c8:53:9a:dd:8b:da:d3:fd:89:31:f1:
2e:42:4f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:04:46 2024 by rpki-client on console-ams.rpki-client.org