Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer
File: ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer (raw, json)
Hash identifier: 0Tq3cmboua0fChva2GwxPwewpB5a1fQkeqc/TNCWpdg=
Subject key identifier: 00:33:4B:8F:21:8F:A5:25:33:98:86:C8:FB:C9:40:93:C8:8E:D5:7B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021C3F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 19 Nov 2024 13:34:29 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 138521
IP: 103.127.162.0/23
IP: 2404:2440::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138303 (0x21c3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 19 13:34:29 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A913C0C6/serialNumber=00334B8F218FA525339886C8FBC94093C88ED57B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e4:8b:e8:1f:cd:bd:d9:39:55:a5:0b:ef:4f:
1b:ae:20:4a:8f:6e:b1:98:b0:da:1b:59:bf:56:4c:
1f:ae:08:ad:ce:23:b3:96:75:d0:dd:0a:17:b8:78:
72:79:59:a7:6c:7e:5c:35:4e:27:87:84:91:8a:05:
59:bb:fa:e9:4f:f4:b3:46:1a:eb:d2:db:ab:97:4b:
27:ba:72:17:72:16:59:67:40:d0:a0:c4:53:2a:5f:
a7:e2:3b:5e:93:00:fa:5a:2b:52:90:f6:74:84:f4:
b9:9a:9a:11:8a:66:10:14:35:2d:52:17:b5:f8:ec:
67:e8:2e:c5:d5:38:ae:01:46:b4:7f:2d:e4:80:c1:
a5:47:5d:76:64:11:27:01:b9:8b:06:e9:97:9a:7d:
d4:9b:00:8c:e7:3b:a5:08:3c:10:ab:f3:27:d4:d9:
7b:01:2e:48:d5:99:ce:ee:06:2a:f4:db:10:0c:3c:
35:73:c6:66:9e:9f:d6:a6:44:4b:e9:0c:3e:b9:e1:
36:00:0f:cd:3d:9d:1b:fa:5b:e8:63:ed:72:6a:92:
43:e8:e0:b6:da:75:74:ed:87:98:8b:3f:b0:ad:cc:
24:27:97:57:db:da:bf:f3:6f:f9:cf:65:2c:e1:db:
4a:83:73:c3:32:b0:50:3a:6f:63:59:fd:fc:11:8a:
d9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:33:4B:8F:21:8F:A5:25:33:98:86:C8:FB:C9:40:93:C8:8E:D5:7B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138521
sbgp-ipAddrBlock: critical
IPv4:
103.127.162.0/23
IPv6:
2404:2440::/32
Signature Algorithm: sha256WithRSAEncryption
7d:c3:b6:af:69:1c:15:5d:44:e8:df:e0:6e:7b:01:11:4b:14:
53:49:f0:6c:4b:f0:15:d6:de:88:4f:7f:32:e3:7b:88:2f:e8:
d2:e9:a3:e7:09:6e:f1:20:b4:c1:81:93:3c:63:f0:e7:5e:6e:
a6:3d:b5:f3:ba:f1:de:cb:71:6c:29:d9:b2:7c:ab:03:32:8f:
e9:ce:ba:4c:64:83:c1:9e:ea:a1:76:95:b2:d4:01:53:6d:61:
94:b0:99:38:08:bc:4c:d8:32:e0:05:16:e9:87:77:9d:10:77:
29:6e:f8:7f:4d:14:ed:25:9a:d6:6d:15:d8:6a:7b:2b:5c:65:
83:b1:4d:17:eb:66:ca:9a:3d:96:64:a4:13:ae:f3:90:68:28:
a3:b5:41:ff:25:62:b3:01:2b:40:42:08:2f:4a:ff:d8:e4:cc:
ea:09:74:bb:85:65:1c:a9:a1:00:7f:d3:84:05:42:20:68:ea:
e8:bc:a7:98:00:e6:0c:f2:f1:ea:c8:85:3d:81:b8:76:9f:9a:
46:f2:b6:d6:73:40:0f:91:05:d8:dc:5d:da:28:98:94:68:74:
fd:4f:79:0a:56:b2:59:32:b1:12:7c:da:fc:64:81:a0:db:ec:
45:b4:68:bd:c0:e8:d6:3b:16:bf:8a:03:38:6d:7b:a4:9d:00:
b0:5b:2d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:04:46 2024 by rpki-client on console-ams.rpki-client.org