Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D60b00YYTHGSfILGHT-m1-Ry7p4.cer
File: D60b00YYTHGSfILGHT-m1-Ry7p4.cer (raw, json)
Hash identifier: 4Ny6HTRkgrMIbqZ7E6ErTTTZI3lXg1npgS1Q/Dhr9a8=
Subject key identifier: 0F:AD:1B:D3:46:18:4C:71:92:7C:82:C6:1D:3F:A6:D7:E4:72:EE:9E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020EF3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/D60b00YYTHGSfILGHT-m1-Ry7p4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 23 Sep 2024 13:06:58 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133048
IP: 103.240.222.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134899 (0x20ef3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 23 13:06:58 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A912A455/serialNumber=0FAD1BD346184C71927C82C61D3FA6D7E472EE9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fb:ff:88:9c:6e:31:21:74:66:03:28:33:d5:
ce:ee:2e:a4:09:16:9f:fb:a3:c4:08:89:4d:e8:af:
17:b1:0f:43:47:68:63:21:04:2b:f8:07:e6:bd:eb:
55:71:5f:bc:7b:9e:e5:28:e6:75:b0:4b:6e:84:c5:
c7:02:0f:4b:89:93:7d:72:7e:31:ee:a1:c8:09:86:
4c:51:74:e0:34:a4:3e:40:38:5b:fc:15:9a:2d:4d:
12:5a:d5:f4:ac:76:0e:aa:f3:ea:ba:06:71:04:c9:
d8:88:22:00:72:e3:30:3f:e0:cd:f0:eb:8a:a7:c0:
84:be:c8:97:5f:c5:f8:56:af:84:34:d8:e7:ad:cf:
b4:18:8e:90:97:e2:4a:5e:27:f3:60:25:15:ea:ba:
38:fa:14:6c:8a:01:ef:91:e2:70:dd:e9:ad:3e:83:
59:08:f8:cc:89:f8:de:7b:b7:2d:cb:04:93:10:e2:
7d:9f:43:a6:12:6c:af:94:a1:4d:0d:00:2c:60:67:
66:ba:da:6e:0f:78:6d:dd:66:dc:c8:69:99:89:04:
d3:68:37:dd:95:16:f4:74:12:74:97:84:3a:b8:1b:
48:4d:94:39:7c:d8:e3:13:9d:20:d2:91:8b:14:3e:
a6:71:44:de:17:37:5d:b1:ba:cc:2b:81:8a:b9:86:
b0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:AD:1B:D3:46:18:4C:71:92:7C:82:C6:1D:3F:A6:D7:E4:72:EE:9E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/D60b00YYTHGSfILGHT-m1-Ry7p4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133048
sbgp-ipAddrBlock: critical
IPv4:
103.240.222.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:0a:38:b2:70:74:33:ba:15:98:66:77:5f:36:38:fb:46:2f:
dc:19:a9:6d:db:7f:05:93:91:54:6b:01:b5:3d:a3:fc:78:a5:
b9:16:d5:28:92:55:02:d2:74:cf:fa:c8:f0:33:67:c8:66:df:
ca:c5:be:fd:1b:a4:b5:ea:ef:81:2f:23:3f:90:84:b9:c6:5f:
bb:fb:af:e6:b9:bb:9e:f9:03:94:f7:bf:36:a1:43:34:e0:c9:
f7:f1:4b:5a:7c:93:ce:6d:72:f3:17:a0:6f:32:eb:bd:1a:1b:
04:f0:8c:c4:11:f5:c1:53:c5:91:11:a0:06:34:d6:64:ff:da:
66:35:2f:85:20:73:19:c3:eb:2c:df:08:9a:c8:f2:c8:ae:bb:
1e:40:79:36:53:2d:84:6c:f7:74:bd:5c:72:84:f4:3c:f4:22:
9f:d4:da:99:3b:56:c3:55:69:08:54:01:58:e7:9a:2e:cb:28:
ac:9f:8f:74:f1:6c:15:f9:db:ea:6c:20:20:90:b6:1f:01:45:
d0:ff:a8:e6:86:ce:8d:f5:d0:a4:f6:6f:aa:92:82:13:4a:12:
ab:f6:b4:9e:b3:da:47:c1:66:38:f7:e4:eb:f4:b2:1b:15:3e:
6b:c0:d4:72:0b:ef:8e:72:d6:ff:9e:b2:d0:40:5e:82:14:48:
ac:45:1f:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:16 2024 by rpki-client on console-fra.rpki-client.org