Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer
File: CpU4Un2lMv4x11DRNpblzq8qm88.cer (raw, json)
Hash identifier: MMJI7mTbD3RBe9mQ988jNwJbSC37iLWLbQLJof8ciuE=
Subject key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F0E9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 09 May 2024 20:53:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 151056
IP: 103.122.142.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127209 (0x1f0e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: May 9 20:53:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91C2677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:35:d7:a9:b7:bc:e3:00:b6:9f:1f:cc:09:b0:
0d:55:54:7a:c7:a3:cc:48:af:39:86:07:f9:c7:f9:
63:f9:78:18:f8:27:91:86:c3:4f:2f:53:16:d0:93:
ea:d8:6a:0f:62:70:5f:bf:f4:6e:d6:e7:80:80:0c:
76:5b:5c:ac:4f:4e:ce:30:42:24:ba:81:75:2e:ee:
4f:fb:67:23:22:c9:9a:cf:c5:74:83:69:ef:c9:8b:
59:32:e6:9a:0b:0d:1d:71:d0:14:c3:77:8c:fc:1e:
82:c5:3d:24:47:99:da:57:90:6b:8e:16:fd:e7:9b:
1c:89:ac:c9:f7:c0:74:ac:7e:63:ea:84:ec:ac:6f:
39:33:6e:77:fc:e3:aa:30:dd:ab:eb:35:6e:fc:67:
e2:1e:42:cd:b1:78:14:96:a1:5f:c9:73:dc:17:81:
5e:44:ee:f0:8b:81:f9:ce:9b:52:11:ba:84:49:4d:
f6:23:ba:4c:0a:8f:f1:a5:f8:34:1e:91:dd:6a:2d:
1f:ae:ed:00:0d:ae:6b:55:71:3f:83:03:08:8a:25:
3d:72:c1:df:df:e0:b9:5b:5b:6e:04:66:9d:cb:25:
0f:5a:2f:83:60:e6:f7:d4:4c:02:14:23:c0:83:59:
c3:72:e9:1b:df:e3:95:f1:42:e8:3c:c5:5e:54:b5:
9f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151056
sbgp-ipAddrBlock: critical
IPv4:
103.122.142.0/23
Signature Algorithm: sha256WithRSAEncryption
89:01:aa:a4:4d:98:58:59:8c:65:72:b2:c8:95:74:26:f3:2f:
e1:89:aa:83:bd:e5:f9:b7:17:1f:8c:a1:65:8a:3c:68:a1:44:
a7:49:8a:e0:1a:8c:a5:4c:e7:75:a3:b3:eb:04:1b:07:63:7a:
9e:a5:51:2b:7d:20:89:5f:2c:f9:fb:88:95:c9:de:f0:cd:1d:
17:6c:d8:ea:ce:10:36:ad:f9:2b:81:79:48:8f:f7:c8:cf:be:
6e:49:d3:f0:5c:46:99:79:66:95:ef:28:74:7b:fa:2c:4c:cb:
6c:ac:f3:1e:cf:b3:25:36:7c:cd:1b:2b:c0:c4:2a:c6:64:7f:
e5:77:0b:69:b3:52:c0:4e:67:4d:ee:08:18:b0:ff:03:7a:0e:
8d:16:8d:57:c5:58:76:a4:d0:ff:f0:59:0a:f0:ec:71:99:14:
f1:5d:0f:b3:e6:01:72:8c:8f:4b:35:fd:a6:b9:8b:6b:39:a2:
dd:33:b9:0d:e5:7d:8d:bc:30:e5:05:72:dd:06:cd:c5:6c:dd:
82:22:e0:98:91:3d:15:f7:0b:6b:84:61:fd:db:2d:57:d6:a0:
ed:02:fd:73:26:e3:cf:bb:c5:da:84:f4:55:a1:7f:50:26:76:
7d:31:93:30:26:e4:ac:03:b9:0d:ad:b4:7c:2b:03:bb:71:08:
ce:3c:68:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:18 2025 by rpki-client