Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer
File: AXJLovQFMrfgjXIPTAlmQbShyMQ.cer (raw, json)
Hash identifier: 1hx30Qms8ec17MDcdiI7n/TRIteVBRA4XH+70+l0thE=
Subject key identifier: 01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02104A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 29 Sep 2024 13:23:39 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 147029
IP: 103.173.60.0/23
IP: 2001:df7:8e80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135242 (0x2104a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 29 13:23:39 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9138271/serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:58:52:2f:fa:73:7a:f8:7b:d1:2b:18:bf:79:
ea:0e:77:a3:50:d2:04:96:93:55:a1:19:1b:b1:bd:
16:ad:ea:11:36:d1:fb:a1:c1:15:e0:b1:60:6d:d2:
32:c4:e2:3b:60:1c:62:19:bf:a8:38:ef:e0:7c:82:
8e:37:cc:22:97:39:24:e7:e6:cf:0d:29:8f:76:cc:
54:40:23:f1:df:82:5c:d7:f6:82:b4:d5:66:6e:4f:
13:9b:cf:a8:e6:2b:b5:26:22:52:fc:77:d5:0e:8d:
82:6b:79:57:fd:a8:81:41:53:03:c6:66:2d:21:3a:
ac:78:64:f0:19:2c:84:98:52:d8:02:28:17:66:d6:
f1:db:01:54:ab:bb:81:db:73:a5:0a:93:4b:87:04:
ed:60:91:f8:b5:34:2d:fc:97:4d:28:a1:18:87:2f:
4a:33:fa:62:df:9f:46:e6:4d:3d:f5:0e:a9:52:b4:
7b:06:9d:fa:ac:c4:45:69:ae:3c:36:24:92:4c:81:
fc:91:f1:5a:53:ae:c5:8f:57:f4:b0:8a:55:83:83:
80:bd:df:7e:68:7f:bb:da:d9:c4:d8:2c:74:1d:61:
dd:2d:9e:97:d4:36:cf:ba:6f:2f:77:40:06:65:dd:
c4:c9:92:9f:ef:46:97:a8:6d:90:ac:59:6c:85:8b:
e6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147029
sbgp-ipAddrBlock: critical
IPv4:
103.173.60.0/23
IPv6:
2001:df7:8e80::/48
Signature Algorithm: sha256WithRSAEncryption
bd:c2:e4:18:2e:0a:f6:f9:33:3e:ad:56:ac:8a:a0:e3:a7:54:
b8:7d:d1:ee:0b:81:32:17:cc:6d:0c:b5:6f:ec:c9:fb:cc:a0:
db:df:5c:4a:94:47:58:6d:3e:1b:9e:4b:11:47:bc:4a:34:40:
37:b8:d5:a8:36:4c:b2:3a:74:54:97:14:c8:b4:d2:95:75:2e:
7c:02:87:f4:2f:36:ae:d6:76:9d:68:00:92:8c:01:44:28:2b:
a5:64:cc:c6:48:e2:2d:d4:41:6e:fa:8d:a8:6c:20:16:80:8c:
0f:36:41:e8:01:0f:1c:b1:56:6e:69:ae:a8:7f:56:63:c5:75:
3b:36:24:34:e3:a5:ed:37:5f:8d:c2:78:35:35:3a:c1:53:0f:
9b:fa:79:cc:78:31:f3:69:0e:7b:0a:6f:d5:c7:eb:ad:4c:52:
dd:b0:9d:fa:87:1f:ed:6a:45:21:bd:08:95:e4:43:ff:11:d9:
06:c8:9a:b2:2a:f3:fa:8a:1a:8f:90:1f:7a:c3:8b:a6:c6:b8:
de:37:5f:aa:49:e8:30:7f:f9:e0:45:01:ab:ee:5e:23:bf:22:
87:af:3e:2b:1b:d3:5e:8f:e3:d7:31:99:eb:e0:66:1f:ba:d2:
10:d5:12:71:b5:88:e7:19:81:04:cd:55:c3:81:9e:b3:45:ef:
12:0b:a9:69
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:25 2024 by rpki-client on console-ams.rpki-client.org