Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Oy1PsIwU5wLV-WbRn0VT63rOYk.cer
File: 9Oy1PsIwU5wLV-WbRn0VT63rOYk.cer (raw, json)
Hash identifier: Fg5P8HYtCrSv0dL1aSL97ghJd3hgA5xSfRGqvCM/7I0=
Subject key identifier: F4:EC:B5:3E:C2:30:53:9C:0B:57:E5:9B:46:7D:15:4F:AD:EB:39:89
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D204
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/9Oy1PsIwU5wLV-WbRn0VT63rOYk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 14 Dec 2023 16:30:48 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 134749
IP: 103.199.152.0/22
IP: 203.78.144.0/22
IP: 2407:fe80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119300 (0x1d204)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 14 16:30:48 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A916FA51/serialNumber=F4ECB53EC230539C0B57E59B467D154FADEB3989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:36:09:92:e4:50:7b:bd:4c:e5:50:17:37:a9:
da:9e:ed:90:ca:db:44:21:c0:cc:52:dd:74:bf:2f:
b0:8a:b3:4c:b5:44:62:3c:8d:b8:69:8e:b5:80:c2:
50:8b:bc:8a:fd:b2:21:fd:79:d8:54:de:38:15:34:
ae:de:87:01:a9:b3:a0:19:4b:ed:85:92:c1:2d:f7:
10:07:be:93:9d:9b:01:e1:73:56:a0:66:12:3e:dc:
ff:98:dc:06:37:24:09:de:8e:c2:67:18:5f:7f:75:
1b:d4:3e:48:3e:9a:7f:d1:68:7b:71:9b:b3:c7:e8:
6c:3b:40:93:73:96:e3:f9:7e:bb:12:a9:62:f5:df:
e6:a6:2f:e7:66:64:0b:e3:8d:4d:80:3b:bf:c2:14:
c7:f6:1b:c3:69:8f:95:12:85:27:2e:ab:f2:2b:92:
06:5a:1d:64:65:bb:d0:38:a7:aa:86:6e:75:c9:74:
02:4c:e2:a6:48:e0:e7:89:23:16:9f:2a:70:a8:a5:
db:e7:87:43:78:cb:c2:ca:de:dc:e7:42:f0:5b:bf:
9a:94:49:d9:7d:b0:58:08:34:59:75:06:14:3a:eb:
3f:fc:ee:68:ed:7c:cf:d5:6f:96:7d:c4:8e:18:a7:
65:4b:f1:c1:66:f9:82:9d:34:a9:59:59:af:b9:de:
44:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:EC:B5:3E:C2:30:53:9C:0B:57:E5:9B:46:7D:15:4F:AD:EB:39:89
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/9Oy1PsIwU5wLV-WbRn0VT63rOYk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134749
sbgp-ipAddrBlock: critical
IPv4:
103.199.152.0/22
203.78.144.0/22
IPv6:
2407:fe80::/32
Signature Algorithm: sha256WithRSAEncryption
3b:10:5c:8d:85:b0:5b:24:9d:a6:90:90:7f:99:93:b8:af:0d:
91:01:0d:4c:a5:1a:6b:93:11:a6:5b:0f:03:e6:20:cd:3f:ad:
db:0a:dc:4e:2a:8a:c2:65:05:51:e9:d5:8c:ce:9b:3d:bb:7a:
7a:2e:28:bb:a7:67:89:2f:7f:db:2b:1d:17:2d:0e:60:ed:10:
41:ed:ae:ed:3f:00:b8:37:ba:a5:a0:3f:40:c5:01:c6:fe:85:
15:28:e2:63:5c:33:a9:f2:53:55:d1:64:7f:8c:f5:88:98:25:
2f:4f:b7:40:e0:c2:c2:06:3f:4d:56:23:b2:7d:e3:ae:f3:2e:
9a:e5:9e:37:64:64:cd:b9:47:90:e2:b7:bd:0b:c9:44:35:be:
74:b0:f8:db:40:12:7e:f1:50:02:64:14:b6:57:53:ff:02:6e:
5f:1b:61:2b:93:85:67:71:4c:0e:b4:55:18:70:0f:dd:b4:c5:
ef:51:fe:45:e0:23:c7:44:d9:1e:57:fa:bb:78:aa:16:68:fb:
7d:f5:1d:9c:78:55:fa:b1:3e:0e:62:c6:72:f2:e6:3a:5b:af:
63:1a:5c:de:03:07:e0:68:b8:68:6d:8f:05:80:79:0e:f2:25:
a7:c8:eb:90:60:20:79:ad:fc:a0:e4:51:78:b3:21:c9:2e:e5:
7c:a4:2c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:04:46 2024 by rpki-client on console-ams.rpki-client.org