Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer
File: F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer (raw, json)
Hash identifier: IyRuG0fcqNMRQFZ74mbKnGfEKGNI7fBONaKcXprjQmo=
Subject key identifier: 17:60:FF:71:E1:6B:CF:EE:E7:B8:D6:71:0D:63:60:67:99:AE:F7:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F196
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 13 May 2024 21:15:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 138687
IP: 103.136.148.0/22
IP: 2404:95c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127382 (0x1f196)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 13 21:15:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91CB09E/serialNumber=1760FF71E16BCFEEE7B8D6710D63606799AEF767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:77:6c:cc:1f:57:cb:5f:11:f6:92:6c:06:00:
58:df:7a:f4:c4:1f:69:84:a4:6e:08:90:9a:22:e8:
76:c1:4d:1d:67:95:62:e9:8c:c9:11:e8:80:0c:70:
ec:cd:aa:c4:c4:77:90:68:48:8b:67:09:cb:83:09:
6e:a6:5c:68:7a:78:71:49:6c:8f:c2:e2:75:1c:31:
0d:80:a1:d8:63:f7:cd:7f:0a:02:6d:95:d2:88:a6:
e6:73:fc:f0:38:8e:c6:87:65:32:a4:3c:13:2d:97:
63:a0:de:23:5a:17:8a:0a:2e:2d:23:ff:2c:91:a6:
64:82:c1:e7:2c:4f:85:bf:5d:2d:c9:b3:f5:78:2b:
c5:45:d8:59:66:2c:1a:85:72:e4:a1:9a:20:68:8c:
2d:9b:be:de:4e:31:cb:93:b1:86:14:87:fc:10:ad:
a1:eb:74:a2:1f:fb:ce:d8:84:b5:ff:3b:c3:f9:9b:
b2:14:4d:c8:72:d8:d6:80:e6:62:f0:37:53:87:48:
e2:0b:11:b7:9f:34:24:75:04:a9:bd:26:a2:fb:e8:
ac:bf:df:16:b1:7c:8e:9e:d0:94:c3:70:94:32:b9:
71:00:92:92:45:3d:d0:e6:f2:f0:67:10:39:ee:c5:
7d:ae:5a:3a:1a:30:01:52:a5:72:66:86:14:ad:0d:
7c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:60:FF:71:E1:6B:CF:EE:E7:B8:D6:71:0D:63:60:67:99:AE:F7:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138687
sbgp-ipAddrBlock: critical
IPv4:
103.136.148.0/22
IPv6:
2404:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
2f:18:de:d5:2d:b0:0f:31:a2:58:fe:d8:5a:ab:89:96:07:72:
f6:9a:99:78:f7:3d:34:1b:55:66:21:bd:22:08:81:37:b7:57:
fa:09:d5:f1:fe:7c:5d:e1:da:5a:0c:cd:c4:7b:9d:f8:3d:a6:
33:72:40:de:72:30:75:b1:fa:39:ea:ff:c8:da:56:7b:45:87:
f3:91:92:d2:e5:47:db:5b:3e:9f:9b:58:86:da:8b:42:a4:77:
d1:d0:8a:07:49:46:93:7b:57:a5:d5:d6:58:91:16:52:15:c7:
ae:c4:37:3d:05:8c:f3:cf:d5:b9:0e:5b:d8:39:e3:22:6a:11:
5a:5e:ac:aa:04:fe:a5:64:df:d0:33:bf:78:22:9f:5e:b6:17:
8e:d3:0b:8b:50:0e:c2:f8:37:fa:8b:a2:c0:b6:54:ed:8e:1b:
d9:2b:61:49:6b:9a:e9:9c:c5:c4:78:19:09:52:15:04:ad:84:
e9:62:a6:13:f0:58:b3:ce:2d:0c:00:a7:4b:04:58:f6:a3:e6:
bd:ba:70:2e:bc:fe:bc:7b:2c:9f:10:c1:2e:7c:e2:53:4f:6c:
9d:37:ae:fe:37:20:43:1c:5d:4c:ed:28:8a:46:d3:88:ac:8d:
8a:da:56:99:c5:e8:d5:57:68:a8:02:cf:6b:d7:42:1f:a3:e4:
45:52:8e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:32 2024 by rpki-client on console-fra.rpki-client.org