Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D60b00YYTHGSfILGHT-m1-Ry7p4.cer
File: D60b00YYTHGSfILGHT-m1-Ry7p4.cer (raw, json)
Hash identifier: r2nkME9zHDpt7RowX4tEVznfolM6irALQvLvQrBa7fQ=
Subject key identifier: 0F:AD:1B:D3:46:18:4C:71:92:7C:82:C6:1D:3F:A6:D7:E4:72:EE:9E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BF64
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/D60b00YYTHGSfILGHT-m1-Ry7p4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 25 Sep 2023 13:01:46 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 133048
IP: 103.240.222.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114532 (0x1bf64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 25 13:01:46 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A912A455/serialNumber=0FAD1BD346184C71927C82C61D3FA6D7E472EE9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fb:ff:88:9c:6e:31:21:74:66:03:28:33:d5:
ce:ee:2e:a4:09:16:9f:fb:a3:c4:08:89:4d:e8:af:
17:b1:0f:43:47:68:63:21:04:2b:f8:07:e6:bd:eb:
55:71:5f:bc:7b:9e:e5:28:e6:75:b0:4b:6e:84:c5:
c7:02:0f:4b:89:93:7d:72:7e:31:ee:a1:c8:09:86:
4c:51:74:e0:34:a4:3e:40:38:5b:fc:15:9a:2d:4d:
12:5a:d5:f4:ac:76:0e:aa:f3:ea:ba:06:71:04:c9:
d8:88:22:00:72:e3:30:3f:e0:cd:f0:eb:8a:a7:c0:
84:be:c8:97:5f:c5:f8:56:af:84:34:d8:e7:ad:cf:
b4:18:8e:90:97:e2:4a:5e:27:f3:60:25:15:ea:ba:
38:fa:14:6c:8a:01:ef:91:e2:70:dd:e9:ad:3e:83:
59:08:f8:cc:89:f8:de:7b:b7:2d:cb:04:93:10:e2:
7d:9f:43:a6:12:6c:af:94:a1:4d:0d:00:2c:60:67:
66:ba:da:6e:0f:78:6d:dd:66:dc:c8:69:99:89:04:
d3:68:37:dd:95:16:f4:74:12:74:97:84:3a:b8:1b:
48:4d:94:39:7c:d8:e3:13:9d:20:d2:91:8b:14:3e:
a6:71:44:de:17:37:5d:b1:ba:cc:2b:81:8a:b9:86:
b0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:AD:1B:D3:46:18:4C:71:92:7C:82:C6:1D:3F:A6:D7:E4:72:EE:9E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/D60b00YYTHGSfILGHT-m1-Ry7p4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133048
sbgp-ipAddrBlock: critical
IPv4:
103.240.222.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:69:31:82:e5:7b:dc:07:f3:8c:47:b3:79:ed:d0:ba:b9:4d:
ee:98:08:e7:bc:bf:6e:02:3c:63:83:f8:e0:60:e6:24:73:ff:
bd:c8:84:2d:54:84:96:48:fd:49:22:55:77:62:6a:30:85:80:
34:bc:97:1e:35:e5:09:85:86:f5:5a:c0:15:bd:a1:7a:ae:0f:
06:0c:dc:ac:65:07:18:75:97:93:eb:77:18:6f:e5:ba:41:29:
68:02:02:2e:29:12:28:05:f0:5e:84:b7:cd:67:22:47:3b:54:
0a:ff:ba:2c:c1:64:b3:5d:9c:ce:b6:76:f3:cc:1b:4b:81:dc:
3f:b6:91:a9:f8:32:1e:86:12:6b:37:4b:fd:ef:d5:ff:6a:6e:
d4:2b:4a:7a:68:e9:bc:96:f2:99:15:77:e2:ef:48:25:8d:51:
09:9d:dd:f4:39:04:04:55:d6:d0:d2:fc:4a:75:21:d1:14:af:
5e:9f:42:2a:e4:64:9d:41:87:63:d6:01:84:77:af:e1:f0:c7:
8e:ac:b6:4e:d5:26:89:8f:fd:29:af:87:1a:27:b3:eb:f3:0e:
2e:30:0c:2f:f7:72:31:50:3a:2e:f9:90:f0:0c:de:49:df:5a:
a5:db:2e:2d:2a:59:88:b0:2a:f0:6e:3e:5d:9a:9b:d0:48:64:
aa:44:74:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:45 2024 by rpki-client on console-fra.rpki-client.org