Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FfB_78oF6EbUU4USXou0J3WDAPk.cer
File: FfB_78oF6EbUU4USXou0J3WDAPk.cer (raw, json)
Hash identifier: Un88s2LXNfvG+FV+cu2XkrlRM91AX+nzivSNdb4raUg=
Subject key identifier: 15:F0:7F:EF:CA:05:E8:46:D4:53:85:12:5E:8B:B4:27:75:83:00:F9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CAD7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FfB_78oF6EbUU4USXou0J3WDAPk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Nov 2023 15:45:05 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 58910
IP: 43.241.96.0/22
IP: 103.18.88.0/22
IP: 2400:5380::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117463 (0x1cad7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 14 15:45:05 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91503BB/serialNumber=15F07FEFCA05E846D45385125E8BB427758300F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:87:9b:53:06:6d:ef:7f:ed:69:70:d6:10:57:
5f:81:a0:60:15:11:36:5b:1d:2a:dc:9a:ee:90:3b:
7d:f1:05:81:a7:08:14:6f:02:62:cf:6d:04:be:5a:
99:2d:d8:4e:e2:37:bc:27:cc:d3:5a:de:1b:61:ff:
2b:47:67:c8:b7:8f:b3:6e:c5:a0:67:c2:6f:eb:1a:
3a:e1:04:ba:03:78:76:d6:a3:bd:c2:5e:08:13:85:
fb:f1:fd:f1:5b:17:00:b7:38:5c:b4:63:ee:eb:b9:
14:6a:2d:bb:2c:15:4c:86:41:ab:97:93:ad:c4:8f:
68:8b:11:88:13:d1:c4:82:aa:10:be:ef:c7:51:b3:
6b:f9:2b:1a:47:9e:52:74:17:9f:ba:12:a8:ad:07:
c4:bc:98:e2:87:9a:7a:a6:ec:74:bf:44:3c:dc:c9:
04:c8:e0:b5:15:76:39:5c:5c:6e:c4:b1:17:36:a6:
e1:ac:a6:fd:3a:68:9e:fe:6f:3b:d7:3b:bc:2a:0c:
3e:2e:74:e2:15:9a:94:47:41:c1:16:58:5e:61:d4:
66:87:36:8e:78:36:a3:27:a1:ac:7f:0a:24:af:7b:
d7:b9:ab:6d:ac:ca:bb:d7:6a:86:cb:ee:5b:56:4e:
e1:9a:c6:ef:da:cf:4f:96:d4:be:8d:17:07:c6:7b:
36:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F0:7F:EF:CA:05:E8:46:D4:53:85:12:5E:8B:B4:27:75:83:00:F9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FfB_78oF6EbUU4USXou0J3WDAPk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58910
sbgp-ipAddrBlock: critical
IPv4:
43.241.96.0/22
103.18.88.0/22
IPv6:
2400:5380::/32
Signature Algorithm: sha256WithRSAEncryption
c4:25:f5:2f:20:a7:ff:d8:c7:20:b6:ac:56:5f:7e:c5:c5:b8:
cc:72:db:2e:4a:8f:10:de:2e:ab:8a:df:d4:5b:31:8e:4f:b4:
f5:b5:7d:16:a4:0d:b1:8a:9a:08:6c:b8:df:95:c7:a4:4b:f1:
18:0c:a6:5a:1a:5c:3e:78:f0:e6:4c:11:1a:7d:72:f7:1e:f8:
02:c6:fa:44:22:d9:9c:54:02:fe:c7:d2:77:9e:c4:8d:81:ff:
82:af:71:c2:92:60:f5:5b:5e:e2:6e:ea:9a:d5:43:b1:b3:9d:
f7:e2:ea:b1:8e:31:a9:3b:f6:5f:9c:17:11:e1:69:45:27:b8:
d4:2f:d6:60:f2:bb:87:35:3e:cf:8d:6a:75:e8:82:e9:3d:3b:
06:73:81:45:fe:bf:0b:53:ff:48:ae:e5:88:ba:79:e0:1b:d9:
95:d7:d6:f5:29:87:92:86:b0:11:01:67:a5:39:f4:b9:3e:3b:
cd:7a:af:8c:83:3f:7f:bf:0e:db:e8:2b:2b:55:f4:3a:11:64:
8f:e5:63:9b:9a:15:cf:43:8f:34:1b:39:d8:16:52:6e:ab:4a:
49:75:c5:4e:56:8d:93:8c:d2:c7:c4:f3:55:2c:e0:09:19:27:
28:30:64:e8:0a:e4:3a:de:0a:b5:d2:a1:d1:72:63:4a:8a:6f:
c4:6a:62:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:17 2024 by rpki-client on console-fra.rpki-client.org