Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer
File: Df2AHulmIu0X31XXqqZMce_5t70.cer (raw, json)
Hash identifier: /BNFuuiCX8MC9AZdSjCJi+uu+IKAVbnw55sSd39ElAQ=
Subject key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D1D7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 13 Dec 2023 21:30:01 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 139813
IP: 103.145.134.0/23
IP: 2405:87c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119255 (0x1d1d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 13 21:30:01 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0c:02:dd:e5:10:33:f4:86:07:d1:c5:b3:0e:
34:a7:ba:a0:61:39:91:88:4d:11:68:32:1f:f7:2d:
5d:52:44:4b:c0:3c:48:09:fb:a4:ff:1e:99:96:8d:
14:3a:7b:f6:4e:06:7f:39:c2:05:aa:b4:88:af:43:
5d:d7:63:98:2b:fa:73:70:97:d2:14:84:07:85:de:
c0:dd:dc:fe:ee:d2:10:9c:9b:22:97:e3:2d:41:01:
5d:fc:33:74:c0:da:48:bb:dd:d3:30:11:78:17:98:
9f:3b:c7:d4:c7:54:90:70:4f:9d:4c:ad:42:8c:bb:
fb:d0:70:8b:49:fd:fe:3d:b3:c9:7a:4a:c5:9a:1e:
b8:70:2e:59:9d:2e:59:26:2b:7a:ff:12:c5:c0:e5:
19:e6:09:c8:e6:33:f0:5e:2c:5d:c3:ac:e0:46:6f:
44:13:0f:5b:ed:a5:72:f4:5e:89:6e:66:d9:4c:6e:
ea:f4:7d:57:c8:ae:9f:17:eb:53:28:a3:a7:7a:7b:
03:df:d1:5c:0d:73:cd:c2:82:95:17:35:24:a3:e1:
70:e4:b6:86:ee:c7:01:d4:73:c5:f2:70:cd:a0:0c:
a2:5e:99:5d:0c:15:44:04:4e:db:02:b4:ab:c8:83:
4c:ed:48:c3:1a:83:51:97:8d:46:28:23:c3:c7:e0:
fe:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139813
sbgp-ipAddrBlock: critical
IPv4:
103.145.134.0/23
IPv6:
2405:87c0::/32
Signature Algorithm: sha256WithRSAEncryption
9f:86:e6:7c:79:fc:db:30:38:cf:0a:fe:75:08:ca:42:b2:22:
f0:d5:20:c2:ee:f0:f8:40:c3:fe:2e:ba:6c:1f:0a:70:2e:d3:
ad:73:04:f5:1d:a8:5c:4e:41:f0:1c:58:0c:c9:57:0d:bb:df:
61:a0:e6:2e:a1:71:17:ce:69:61:1f:ba:e9:aa:ef:0b:b5:8d:
c4:06:88:02:79:46:0c:83:f5:0d:c1:a1:0e:13:c2:13:a3:01:
40:1d:c1:77:e3:6b:2e:41:5e:a9:db:18:6e:e3:ee:bd:b2:59:
8c:bc:df:19:54:e2:54:d4:bf:ba:1b:ff:fa:84:ef:f6:5e:1f:
74:c4:4f:8b:a8:f4:ee:82:13:df:7e:ad:94:60:b6:b6:b7:35:
b3:d7:57:d8:6c:00:c3:0f:ad:3d:d4:50:3b:1d:e9:f1:e2:64:
0b:85:2c:70:1b:95:7e:69:86:a3:f2:e8:d8:44:64:88:4f:e8:
ac:13:37:36:13:66:1d:80:79:29:c5:d0:cb:c7:64:66:67:5d:
d4:01:0f:79:8f:da:95:af:1f:cc:ac:5b:a0:ca:0a:ef:d5:2b:
72:48:9a:fe:7a:3e:2d:99:24:42:0c:e6:46:7f:85:70:3f:94:
98:e2:c6:61:ca:fc:62:9c:ae:42:af:76:48:72:4f:ed:89:cc:
0e:6a:b1:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:17 2024 by rpki-client on console-fra.rpki-client.org