Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer
File: 9ouGJos33oELlo2481f3c-mDv20.cer (raw, json)
Hash identifier: D6LQlNrVzxRvmyD//an+NA5+h1c5Mb5CNxIskHInYNU=
Subject key identifier: F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F2CF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 20 May 2024 18:00:06 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 136992
IP: 103.149.43.0/24
IP: 2001:df3:1080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127695 (0x1f2cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 20 18:00:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91755F6/serialNumber=F68B86268B37DE810B968DB8F357F773E983BF6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e5:48:ad:86:9f:30:b5:fd:62:65:82:4c:7c:
87:06:e6:a5:1e:41:68:64:3e:b0:d9:58:30:3d:90:
e5:12:76:96:84:08:89:41:d9:3f:a5:9e:f1:ff:ac:
49:34:1b:b6:18:8c:3a:1f:fa:11:ff:ca:ea:c9:8d:
ae:ea:47:6a:8d:9a:23:f0:1d:a9:0e:04:10:e9:fa:
b9:1f:be:6b:b5:9e:0e:ae:13:6f:4c:79:70:2a:79:
63:45:75:65:84:33:b0:85:1b:44:05:3d:ad:25:71:
5a:4f:90:4c:62:ee:49:5e:d9:9c:60:0b:57:85:c6:
ba:bf:4b:c7:fe:27:a5:9a:81:5f:a0:28:7c:e0:49:
3d:0c:03:80:6f:25:11:b3:38:fe:3b:b8:af:5f:ef:
39:71:cd:c9:46:60:86:6b:01:14:46:ae:6e:e1:1f:
41:3e:67:0e:3e:ef:b8:08:f1:58:7b:74:cb:6e:f9:
2e:c1:6a:20:b7:a4:11:56:55:cb:20:a0:70:c9:14:
b6:b4:b8:b9:a8:74:f3:d0:23:89:3f:84:55:65:9c:
ff:64:0f:b4:c4:ef:f2:37:27:25:a1:51:f2:60:42:
df:dc:3b:25:1a:c3:14:d2:d3:cb:47:fd:48:9a:43:
19:07:b3:fc:df:63:db:e6:23:6f:31:4f:28:22:6c:
97:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136992
sbgp-ipAddrBlock: critical
IPv4:
103.149.43.0/24
IPv6:
2001:df3:1080::/48
Signature Algorithm: sha256WithRSAEncryption
90:2d:5b:9a:59:a0:55:b5:d4:62:65:a6:0f:99:d7:93:2b:c9:
c3:30:ce:a9:c5:92:84:aa:7d:f8:74:cb:b0:99:cc:2c:41:93:
d5:c1:ac:af:f4:1f:c5:ec:84:0d:9b:c6:41:a2:89:cf:f1:2d:
7b:9d:67:8d:c8:44:fa:d2:06:0c:2c:8b:59:f2:7c:68:85:6b:
e7:dc:a3:17:02:59:b8:80:27:de:b5:6f:e5:8b:0e:4a:e6:f3:
8f:72:18:af:e1:4a:a6:2f:39:29:6b:bc:93:9b:39:97:6c:52:
a7:8c:7f:53:fa:fb:cb:a7:7c:c3:3e:11:8d:a9:6e:b9:9b:12:
fc:0a:03:20:3b:db:62:85:39:e7:ef:a9:5e:cb:fe:a3:0d:04:
3e:3c:57:a1:30:07:37:dd:99:b9:55:ed:61:f5:69:8b:9f:37:
07:25:45:f7:57:26:36:1d:f8:62:3e:c4:77:07:73:71:72:bb:
c9:14:84:88:b0:69:73:90:9f:32:28:c6:44:65:eb:de:34:08:
5b:b3:a1:b1:af:e4:5a:9e:ca:67:9b:33:28:ba:15:56:bd:53:
bf:94:bf:f1:f2:aa:bf:8d:82:f7:30:62:46:d9:aa:6b:31:49:
76:70:2f:36:56:97:2a:bc:65:7c:64:4e:63:a8:e7:76:21:6a:
f2:de:7d:af
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:13 2024 by rpki-client on console-fra.rpki-client.org