Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer
File: F61gXQbH7QoUSFwCoS8AFwmiLWI.cer (raw, json)
Hash identifier: 67HK9dHrDsuMjwBJLYhgtd6+A31VTwmtGFvmbhIIhjg=
Subject key identifier: 17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B937
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Aug 2023 11:19:30 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 151781
IP: 103.26.28.0/24
IP: 2001:df2:db40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 20:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112951 (0x1b937)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 28 11:19:30 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A911BEA7/serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0d:9b:8c:0b:24:f4:e0:e8:9b:42:8d:d2:ff:
be:b6:6a:ef:8d:00:76:60:21:5d:f2:08:6a:8d:3e:
90:fb:9e:d3:92:c1:5d:5e:bf:89:32:b8:37:03:a1:
4b:57:cb:e8:c4:34:64:e4:10:a8:d5:15:52:2e:32:
5b:69:a1:26:60:83:ef:e2:e4:0c:fb:eb:8a:7c:1a:
5d:bd:3f:ce:50:9a:3e:7a:b4:e8:d6:a1:94:1e:a7:
2c:aa:bd:e5:43:36:77:53:b4:21:a0:31:bf:c0:ba:
01:27:f9:14:53:23:55:9d:b6:b8:8f:77:d0:ed:70:
5a:07:b0:c1:f3:c8:dd:53:92:4a:f3:a1:1d:fa:cc:
4b:5d:77:e5:32:0c:aa:01:83:78:39:6f:7b:71:46:
eb:62:3f:c8:67:69:18:56:7e:4a:f4:56:b8:32:45:
11:c5:e3:65:2e:5b:1d:88:9c:f1:63:ab:9f:6b:5f:
86:98:9c:ff:2c:ad:a1:0c:1f:1f:a4:a2:57:99:bc:
60:5e:dd:16:ca:bb:6b:be:87:77:b9:c5:b6:b8:02:
19:5a:7e:6b:e6:c7:db:69:4f:9b:37:80:df:68:d6:
e1:7f:b7:e3:26:c6:66:11:7a:bc:9a:ed:d2:0b:79:
a4:7d:24:61:a1:49:24:6c:2d:52:ff:67:8b:66:19:
6b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151781
sbgp-ipAddrBlock: critical
IPv4:
103.26.28.0/24
IPv6:
2001:df2:db40::/48
Signature Algorithm: sha256WithRSAEncryption
6e:ea:58:7e:66:3b:6c:aa:c7:ff:2f:07:07:43:4c:f1:bf:e4:
93:51:ee:6c:b1:f7:a4:45:95:92:80:4a:bd:01:70:4d:7e:4b:
82:4d:62:7e:80:d5:fe:52:51:dd:5f:ef:36:87:a0:b7:19:c1:
04:e9:2e:39:cb:c0:1a:ec:17:a3:12:a8:53:7c:ee:4b:29:9f:
97:4f:af:8c:3a:d0:43:49:12:3d:6b:68:8d:de:24:f8:6d:d0:
87:83:b1:f9:45:d3:c3:b3:f6:09:9b:74:f4:8e:d7:04:1b:a8:
7e:d9:1b:5c:93:4c:4c:dc:98:61:28:10:e7:57:ef:3d:3b:a3:
7c:a4:f7:2b:9f:1e:f8:5d:d9:7e:c3:05:f6:03:36:5c:af:7b:
13:4e:4a:69:13:c0:a9:51:e0:a9:a1:9d:e0:dd:5a:16:4f:c5:
02:3b:3e:e6:c2:c8:6e:dd:6e:c9:6a:c2:89:43:56:97:a9:7c:
8f:5a:97:19:21:1e:0e:fc:a3:5d:21:33:8f:45:32:17:b4:91:
2f:56:a4:34:92:38:f7:45:fb:51:ff:ea:57:70:e4:ee:a2:45:
14:85:ed:39:c5:bf:d0:1f:66:0f:8b:8a:5e:63:e9:2e:9a:13:
11:d7:dc:14:21:5f:06:40:c3:6e:9e:02:04:e2:e4:b1:d6:fe:
0b:40:4f:f8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 1 22:07:59 2024 by rpki-client on console-fra.rpki-client.org