Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/An8FUlFPJEqU7j8GVypK9zNWVzc.cer
File: An8FUlFPJEqU7j8GVypK9zNWVzc.cer (raw, json)
Hash identifier: rWW8JqXTVsPmiNTOib9iXGFrp3VXZbnk60CtkTJ5S34=
Subject key identifier: 02:7F:05:52:51:4F:24:4A:94:EE:3F:06:57:2A:4A:F7:33:56:57:37
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0219D8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913E042/AE9B1B6E3E4A11EDBC06537DC4F9AE02/An8FUlFPJEqU7j8GVypK9zNWVzc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913E042/AE9B1B6E3E4A11EDBC06537DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 13:27:18 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 150327
IP: 103.12.204.0/23
IP: 2400:ae20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137688 (0x219d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 13:27:18 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A913E042/serialNumber=027F0552514F244A94EE3F06572A4AF733565737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e6:80:21:4f:35:0e:64:29:2f:d3:9a:2e:54:
cd:88:21:7a:18:b4:b9:20:a6:70:ce:61:7a:f2:87:
fe:c0:3c:05:f4:36:ed:cf:0a:ae:24:fb:1f:74:65:
0e:cb:80:90:d4:b3:04:bf:05:02:95:dd:eb:52:3d:
28:9a:8f:ac:c2:79:97:59:5f:3f:3b:42:42:25:37:
03:54:d4:75:94:3e:0c:72:4f:9d:49:dd:8c:04:a7:
ca:91:b5:7a:5e:90:b3:43:79:43:e9:8c:7d:63:8f:
31:e4:a6:d0:f9:f1:12:1b:8c:9e:62:b4:03:24:23:
51:b2:5c:a6:da:18:33:34:0b:cf:f1:bf:00:0c:34:
fa:6d:32:19:79:f8:fd:ce:39:2c:3a:94:bb:1d:7c:
58:46:8a:61:30:4d:6a:c4:21:3d:32:b8:37:84:cb:
b2:5f:1e:af:2f:76:e3:4f:8f:70:f6:35:d4:4e:74:
ad:78:1d:10:dc:4d:99:e0:4c:7f:dd:2d:e1:6b:26:
9d:f2:e5:bf:84:ee:33:d6:36:f8:0c:1f:40:b6:96:
8c:0e:23:70:d7:cc:e9:42:d7:da:c5:70:ed:95:5f:
1d:ab:81:6b:43:a2:c3:9d:3c:94:41:da:a7:1d:90:
1a:a0:34:8b:20:50:da:51:c0:1b:a6:22:a5:66:e3:
72:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7F:05:52:51:4F:24:4A:94:EE:3F:06:57:2A:4A:F7:33:56:57:37
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913E042/AE9B1B6E3E4A11EDBC06537DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913E042/AE9B1B6E3E4A11EDBC06537DC4F9AE02/An8FUlFPJEqU7j8GVypK9zNWVzc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150327
sbgp-ipAddrBlock: critical
IPv4:
103.12.204.0/23
IPv6:
2400:ae20::/32
Signature Algorithm: sha256WithRSAEncryption
a3:b4:bc:fa:23:c7:a2:7b:e7:59:95:7d:b0:ce:c2:cd:16:71:
6a:a8:1d:8b:c4:b6:1a:5b:37:fe:5e:99:9a:87:ed:72:02:3f:
ce:5f:b3:3c:db:b9:d3:c9:a4:52:9c:8c:35:06:84:a1:e0:94:
02:24:bd:d1:19:df:0d:0b:e2:87:35:e5:71:3c:ed:0e:9e:08:
44:e8:40:07:06:9b:ea:32:17:1c:a0:7f:9c:a1:12:33:ac:b4:
bb:f3:b0:5b:e6:d7:23:af:49:ce:eb:f1:bd:78:8d:37:6e:b1:
74:c5:38:34:f8:7f:c7:47:ef:de:63:d1:d2:25:01:b7:d0:63:
3c:d6:cf:dc:03:b6:ce:04:fb:a0:95:7d:ed:56:22:f5:d9:d2:
3d:2a:be:13:82:7c:7b:c0:57:7a:11:70:20:76:1a:b7:b9:26:
ab:8a:8b:14:46:4c:ae:72:2f:1e:ba:fb:23:09:66:f0:3e:66:
59:46:8b:33:2d:12:d0:2d:da:3c:95:18:27:f3:c5:90:b6:a0:
9a:58:48:e9:7b:94:a5:5d:ff:6f:c7:ec:e4:e1:2a:b1:9b:03:
b3:d4:60:5c:1d:be:ca:f6:ae:47:e2:ad:0e:43:59:15:15:c9:
6a:d9:b8:58:de:6f:9c:1a:f3:07:56:1b:cd:d1:d4:cb:cb:05:
e4:03:68:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:16 2024 by rpki-client on console-ams.rpki-client.org