Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A-8OOQoxXl88RhsKcrIYvuIj4A4.cer
File: A-8OOQoxXl88RhsKcrIYvuIj4A4.cer (raw, json)
Hash identifier: SPy1NU0hSkKMcgw4QLEpE98K2uU5uh32AUpq7p4flRg=
Subject key identifier: 03:EF:0E:39:0A:31:5E:5F:3C:46:1B:0A:72:B2:18:BE:E2:23:E0:0E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F53A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/A-8OOQoxXl88RhsKcrIYvuIj4A4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 31 May 2024 10:21:32 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 149517
IP: 103.182.62.0/23
IP: 2001:df0:75c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 24 Oct 2024 20:54:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128314 (0x1f53a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 31 10:21:32 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91A0FC0/serialNumber=03EF0E390A315E5F3C461B0A72B218BEE223E00E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:db:87:c7:96:b4:69:73:1d:98:f7:29:f6:2f:
9d:45:2a:ca:eb:0e:6f:1a:e0:2d:75:20:f2:a3:c5:
78:44:da:59:a5:44:8f:ad:bd:8a:23:78:26:ff:92:
15:19:e8:7f:74:51:fb:5c:08:b9:54:e7:18:5a:a4:
bd:9f:db:c4:c9:31:02:39:e8:67:f8:11:cb:15:6a:
77:12:ad:80:df:c0:be:da:56:27:e5:49:e0:e3:2e:
d7:e7:76:74:07:9c:b5:5b:6f:ee:8f:a0:61:aa:a1:
b9:53:02:34:7d:a4:98:f8:ef:ff:93:99:84:da:9d:
79:bc:26:a7:3a:ef:f4:d2:80:3e:ae:5c:f8:9a:f4:
00:5f:18:c5:fa:d3:ff:68:92:82:27:26:e2:0d:07:
fa:c3:00:a0:f6:12:6f:c3:b9:7d:e9:70:b4:d6:79:
49:06:51:8b:be:ac:c5:59:7f:38:c4:29:d2:35:66:
f6:8b:d1:7a:91:d0:6c:31:cd:53:12:a6:26:7b:4e:
7f:43:ea:74:5c:8e:13:96:da:bf:25:8b:1c:4d:70:
24:de:a9:23:1e:44:dc:6b:f6:69:94:e3:d6:69:ca:
73:a0:7a:7f:e2:3b:34:51:ac:7d:bc:cd:3a:3c:a6:
10:5f:ae:ca:a7:fd:b3:95:d4:76:1c:2f:bf:47:5d:
56:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EF:0E:39:0A:31:5E:5F:3C:46:1B:0A:72:B2:18:BE:E2:23:E0:0E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/A-8OOQoxXl88RhsKcrIYvuIj4A4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149517
sbgp-ipAddrBlock: critical
IPv4:
103.182.62.0/23
IPv6:
2001:df0:75c0::/48
Signature Algorithm: sha256WithRSAEncryption
6a:f5:94:8f:76:25:96:4d:4f:29:c8:ec:fb:23:f6:5b:70:2f:
ba:1d:c3:f7:bd:8c:b4:f2:52:ea:db:7c:6b:42:ab:ae:52:a1:
7e:c9:7a:b3:ed:fb:d6:51:a9:a8:23:c1:54:95:bd:d2:a7:29:
30:70:ec:27:f6:ef:ad:dd:f7:fc:23:36:14:96:75:d2:64:ed:
48:ab:5c:11:39:77:46:2e:9c:b9:b4:b4:36:3a:bf:43:a2:cb:
3d:9a:9a:60:a7:4f:79:5b:5c:e2:32:61:8e:ad:bc:74:de:de:
60:d3:fd:db:2b:38:c9:f7:b7:de:4a:58:a3:d5:27:36:c5:76:
b3:04:f5:ca:ee:de:45:98:ae:7a:c4:eb:8c:51:12:d9:3b:a1:
73:73:4d:7f:39:ca:31:bc:2f:53:a4:59:1c:1b:c4:44:d4:f2:
21:f6:4e:38:95:6d:4e:28:3f:79:cb:42:3c:8c:b1:1e:fa:ea:
0f:68:a3:7a:e8:bc:0e:83:d1:27:e0:a6:df:24:f2:0f:87:21:
ab:01:81:e3:95:60:43:3a:6c:55:e1:f8:df:7f:31:47:9a:58:
50:4e:b5:ce:67:cb:b9:45:74:cf:9a:6e:3f:51:18:36:1f:b6:
f5:a6:04:db:72:9e:c5:4b:87:6f:f1:e9:a0:f5:0c:10:9d:ce:
ae:23:36:76
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Oct 17 23:09:47 2024 by rpki-client on console-fra.rpki-client.org