Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAsd1farZExXB4GkKeRIBQIY6es.cer
File: DAsd1farZExXB4GkKeRIBQIY6es.cer (raw, json)
Hash identifier: VBtyfwVsH0MoXFCDqGFlC/ouClNRN05uTz2ofEdeBIc=
Subject key identifier: 0C:0B:1D:D5:F6:AB:64:4C:57:07:81:A4:29:E4:48:05:02:18:E9:EB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020B0A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Sep 2024 15:21:40 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 142610
IP: 103.170.189.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133898 (0x20b0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 2 15:21:40 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9134C3E/serialNumber=0C0B1DD5F6AB644C570781A429E448050218E9EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9f:01:f8:97:c4:93:a3:d7:13:70:9e:54:ce:
ef:8e:5e:2b:6b:8b:09:68:7d:94:6f:24:fa:e1:eb:
d4:07:2e:f9:da:47:1f:ec:01:10:9f:61:39:8b:25:
f5:83:8c:72:a2:82:02:c2:2e:77:52:91:9d:e4:a0:
7d:06:50:4b:5e:f9:1f:51:9c:9b:de:2b:12:bc:6d:
97:cc:78:c6:6f:63:70:13:af:d7:2a:2e:d8:b7:6c:
ee:d5:85:ab:29:71:1c:1a:7a:ad:37:8a:bf:bd:68:
45:39:9f:46:8a:13:c3:b2:c5:4a:5d:53:81:14:c4:
b3:71:19:1b:cf:7c:79:50:36:fc:63:1b:a6:84:f5:
f5:ac:11:93:83:f8:e5:d8:12:cb:b4:a1:bf:2b:bb:
a5:f0:0c:54:79:76:52:a9:7b:dd:b4:aa:3c:1d:25:
c6:7f:4c:0b:60:e3:b5:34:26:05:ec:94:54:8a:81:
e5:87:e2:c8:55:ae:75:b3:68:f8:ba:07:c2:b9:9f:
b5:60:b4:16:84:a3:c4:cd:be:7f:41:3c:77:cc:4d:
19:36:8e:e0:74:d0:9b:7a:dd:2b:2d:5f:3c:d9:c7:
dc:60:ab:c9:12:11:59:b3:1a:c6:75:3b:73:a7:3b:
46:ea:5c:1a:0a:e2:78:be:09:e4:fd:4f:bb:dc:19:
bd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:0B:1D:D5:F6:AB:64:4C:57:07:81:A4:29:E4:48:05:02:18:E9:EB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142610
sbgp-ipAddrBlock: critical
IPv4:
103.170.189.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:6a:37:ea:c4:7f:9e:32:c4:45:c5:57:a1:bc:45:67:d0:56:
6f:c2:2e:01:d6:d7:01:88:26:56:26:5f:78:9a:08:74:7d:d3:
48:9e:8d:5a:80:fc:2f:2c:29:6d:c9:9c:a0:02:f5:1f:64:7e:
86:a8:0d:94:99:c8:57:ca:c4:86:c5:1f:2f:1e:d1:9c:44:fa:
25:07:28:3e:f7:a4:5f:4c:57:75:69:8e:e6:7f:97:2c:e5:73:
fa:9c:dc:a3:47:57:1b:5b:d6:95:51:89:a7:94:78:e5:de:8c:
cc:e9:44:54:82:91:dd:7d:b3:80:07:9e:f7:e0:b3:94:2e:a6:
1c:70:bb:c7:ce:6d:1e:e5:a6:11:01:9a:6a:95:20:fe:52:0a:
a6:8e:f5:e3:9d:12:00:61:57:d6:f9:68:da:0b:e4:14:7c:3b:
8e:8a:f5:1f:ea:fa:cc:8a:18:7c:af:a4:34:d7:9d:7e:08:e2:
8e:17:6e:a9:a8:56:a2:6c:c4:26:82:ec:4b:62:36:49:a7:64:
4c:97:fd:89:48:e3:7c:71:fa:ed:08:68:93:19:bb:22:1e:27:
65:13:57:be:32:6f:84:3a:74:5e:16:15:f6:80:53:3b:58:e6:
54:49:b3:54:8b:d0:4a:ae:6c:cf:14:7c:bf:b2:b5:5a:ae:79:
31:14:68:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:22 2024 by rpki-client on console-fra.rpki-client.org