Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AOQNlW1o1h2oWB5U6LjC26Fssyc.cer
File: AOQNlW1o1h2oWB5U6LjC26Fssyc.cer (raw, json)
Hash identifier: Jx8dSiIq1ejIj/+tARBv5PxAhwaAYo7WgWGm5v5rf54=
Subject key identifier: 00:E4:0D:95:6D:68:D6:1D:A8:58:1E:54:E8:B8:C2:DB:A1:6C:B3:27
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020A3D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/AOQNlW1o1h2oWB5U6LjC26Fssyc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 30 Aug 2024 20:12:11 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 151644
IP: 103.247.30.0/23
IP: 2401:2020::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 12:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133693 (0x20a3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 30 20:12:11 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A918C21E/serialNumber=00E40D956D68D61DA8581E54E8B8C2DBA16CB327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:19:aa:a0:34:85:f7:50:c2:46:3b:bb:95:48:
13:48:bb:e5:d1:37:d1:d5:65:26:54:97:37:63:57:
c6:a4:ff:a0:17:5c:78:a8:ed:b8:34:d3:a1:fb:9c:
5e:b7:72:1a:be:0e:1d:e9:7f:03:9b:70:f0:7c:e8:
e3:a1:47:83:05:c8:89:66:e3:8b:d3:4d:78:76:8d:
eb:04:09:b3:a0:8b:75:90:c1:52:3b:99:83:3b:c1:
18:d4:62:9e:01:d3:9a:b4:88:09:b3:05:da:a0:dc:
e6:6d:3e:a6:46:64:4b:96:82:ed:99:57:18:6f:ed:
c9:75:97:bc:9a:5d:19:89:d7:73:aa:9e:2e:17:04:
f4:2a:79:51:90:ad:0d:46:86:3e:c3:8c:7e:38:56:
3b:98:1b:f3:e4:6c:17:65:a7:5a:a6:fc:56:ef:e8:
a9:e2:02:ef:b7:2c:ee:b5:b4:8d:5a:78:12:c1:ae:
a5:70:9f:9b:5f:47:98:79:eb:be:75:33:b6:ff:ef:
d6:3c:7f:af:97:0a:9e:a1:b1:2f:79:12:1c:d2:2f:
7c:00:98:92:74:5f:8b:6a:96:79:93:6c:63:f2:11:
5e:ca:e9:5a:72:1e:b2:a0:fb:03:ac:9b:28:d9:61:
44:c8:c5:0d:45:c9:d6:03:c5:30:b0:eb:da:28:24:
47:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E4:0D:95:6D:68:D6:1D:A8:58:1E:54:E8:B8:C2:DB:A1:6C:B3:27
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/AOQNlW1o1h2oWB5U6LjC26Fssyc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151644
sbgp-ipAddrBlock: critical
IPv4:
103.247.30.0/23
IPv6:
2401:2020::/32
Signature Algorithm: sha256WithRSAEncryption
ba:86:13:12:7a:ca:2a:8d:ce:d2:6f:af:ee:b1:4e:34:d3:68:
80:94:4e:4f:c5:df:69:56:d2:af:90:52:1e:b9:56:f0:29:a6:
d9:c1:43:26:14:ee:7c:c8:db:d6:2f:53:f1:4e:f8:2d:22:0f:
29:4a:53:31:80:7b:0f:46:0d:a6:73:da:4b:ec:21:f3:ba:77:
05:35:30:1e:56:aa:72:20:8f:32:9b:14:79:74:c0:ff:13:fc:
a7:f8:38:c2:68:5c:be:88:98:41:85:bd:b6:37:36:f5:e3:88:
2b:d2:ba:80:ae:16:ab:5d:4b:a6:dc:eb:48:0e:99:ce:b6:05:
9d:46:d7:f1:ca:4c:e7:af:af:31:dc:51:07:f4:91:ec:61:85:
41:ca:57:5c:fb:60:54:ca:b8:5c:4c:b7:6f:d1:c8:14:d4:f4:
d1:47:1c:0b:9c:3a:6e:8b:44:69:a9:99:79:cd:06:1d:77:de:
cc:b3:73:a9:b0:2f:81:10:f7:e6:44:8f:78:75:51:25:4d:1d:
ea:b6:c3:d0:f7:d5:78:1a:be:41:a5:6c:a8:3c:ed:c3:51:eb:
7f:87:8f:3e:40:2c:be:49:3a:bc:27:a3:23:2a:74:93:9b:74:
50:6c:20:0a:30:0a:af:58:34:a1:0f:b7:88:8d:4b:cf:80:e6:
6b:8f:eb:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:35:36 2024 by rpki-client on console-fra.rpki-client.org