Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer
File: ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer (raw, json)
Hash identifier: 03xkMJ3qM3FthXnZLfnFAW1DBTIbQxGYlqYx6Wm5yII=
Subject key identifier: 00:33:4B:8F:21:8F:A5:25:33:98:86:C8:FB:C9:40:93:C8:8E:D5:7B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DFD3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 20 Feb 2024 13:41:26 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 138521
IP: 103.127.162.0/23
IP: 2404:2440::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122835 (0x1dfd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 20 13:41:26 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A913C0C6/serialNumber=00334B8F218FA525339886C8FBC94093C88ED57B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e4:8b:e8:1f:cd:bd:d9:39:55:a5:0b:ef:4f:
1b:ae:20:4a:8f:6e:b1:98:b0:da:1b:59:bf:56:4c:
1f:ae:08:ad:ce:23:b3:96:75:d0:dd:0a:17:b8:78:
72:79:59:a7:6c:7e:5c:35:4e:27:87:84:91:8a:05:
59:bb:fa:e9:4f:f4:b3:46:1a:eb:d2:db:ab:97:4b:
27:ba:72:17:72:16:59:67:40:d0:a0:c4:53:2a:5f:
a7:e2:3b:5e:93:00:fa:5a:2b:52:90:f6:74:84:f4:
b9:9a:9a:11:8a:66:10:14:35:2d:52:17:b5:f8:ec:
67:e8:2e:c5:d5:38:ae:01:46:b4:7f:2d:e4:80:c1:
a5:47:5d:76:64:11:27:01:b9:8b:06:e9:97:9a:7d:
d4:9b:00:8c:e7:3b:a5:08:3c:10:ab:f3:27:d4:d9:
7b:01:2e:48:d5:99:ce:ee:06:2a:f4:db:10:0c:3c:
35:73:c6:66:9e:9f:d6:a6:44:4b:e9:0c:3e:b9:e1:
36:00:0f:cd:3d:9d:1b:fa:5b:e8:63:ed:72:6a:92:
43:e8:e0:b6:da:75:74:ed:87:98:8b:3f:b0:ad:cc:
24:27:97:57:db:da:bf:f3:6f:f9:cf:65:2c:e1:db:
4a:83:73:c3:32:b0:50:3a:6f:63:59:fd:fc:11:8a:
d9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:33:4B:8F:21:8F:A5:25:33:98:86:C8:FB:C9:40:93:C8:8E:D5:7B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138521
sbgp-ipAddrBlock: critical
IPv4:
103.127.162.0/23
IPv6:
2404:2440::/32
Signature Algorithm: sha256WithRSAEncryption
2e:07:2b:5a:2a:35:51:a4:f1:1a:23:ce:a0:0d:67:96:b5:1c:
ee:e2:c7:21:32:29:74:c4:5f:ff:53:61:09:0e:c6:86:c5:a6:
52:ee:ab:d5:c4:3b:78:ae:24:66:02:0b:19:d0:98:82:85:a3:
79:0e:f0:32:4d:65:4a:e1:25:86:18:68:22:0a:92:f4:e8:77:
df:3e:3b:d8:f6:34:fe:1d:d0:5f:54:e7:c7:4f:35:e8:db:4e:
96:59:c2:ae:0a:72:4b:ac:36:87:f8:b0:62:b9:ca:a5:29:da:
45:aa:d4:a2:76:44:1a:81:b8:47:34:67:44:f9:aa:88:b6:6f:
b2:03:6c:a0:9f:5c:dc:3f:bb:a4:8e:cd:52:8a:31:4a:da:db:
af:0e:dd:a3:35:e0:0a:02:23:f6:10:50:c9:bc:1e:9f:8d:77:
29:4d:57:be:3e:aa:d8:c8:49:30:b3:e7:1e:b0:a9:f8:00:cf:
c3:13:42:89:00:3c:54:26:a1:9b:e7:53:7f:19:f0:4d:cb:74:
c5:42:f1:26:38:9e:89:a4:fd:be:f2:97:4d:f5:20:5a:0b:ee:
fb:b0:3b:00:9f:cd:ca:b4:e7:2c:2c:a9:f6:50:ec:df:97:8c:
00:48:d8:1a:12:4f:bb:ba:77:1a:09:f4:8a:64:c8:f8:97:0e:
dc:bb:e4:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:13 2024 by rpki-client on console-fra.rpki-client.org