Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GH7u6irWB7ylQi0JLdrMGZCPL9c.cer
File: GH7u6irWB7ylQi0JLdrMGZCPL9c.cer (raw, json)
Hash identifier: ZCWBt5M1mCoJu676J4Wix3pxagj3o5vsjZ3UlbjM1tA=
Subject key identifier: 18:7E:EE:EA:2A:D6:07:BC:A5:42:2D:09:2D:DA:CC:19:90:8F:2F:D7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D10D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91767B4/8026F394708011ED9E4C6A2DC4F9AE02/GH7u6irWB7ylQi0JLdrMGZCPL9c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91767B4/8026F394708011ED9E4C6A2DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 Dec 2023 04:44:17 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 150453
IP: 103.47.100.0/23
IP: 2001:df1:99c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119053 (0x1d10d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 11 04:44:17 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91767B4/serialNumber=187EEEEA2AD607BCA5422D092DDACC19908F2FD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d9:ad:0a:06:25:8c:66:d8:d8:9a:08:82:f8:
7d:e2:76:82:ea:0e:03:43:db:a6:92:fe:40:16:ca:
ba:dc:4a:56:7e:65:3c:11:3b:62:33:a9:e3:a2:46:
fe:3e:6e:73:30:4f:a3:29:23:23:24:52:16:36:ed:
25:d3:68:9b:87:2a:42:1a:6a:9a:6f:a5:b3:07:af:
80:53:7d:30:fa:df:85:4f:c8:81:06:7a:87:80:ff:
3f:5c:59:1b:12:dc:4b:69:49:15:99:ca:10:e9:80:
0c:8b:c2:19:5d:bd:d4:9c:15:41:ec:82:79:b6:67:
78:3f:5a:1f:c3:c5:e5:40:f6:e1:f7:a1:ed:5e:90:
15:28:60:1c:63:6d:48:82:da:44:57:24:34:22:35:
f4:b6:01:4e:3b:4c:28:70:cd:b9:42:cb:1c:72:2d:
ac:e2:e7:24:cf:de:78:84:14:84:27:51:76:a3:bf:
52:15:f2:ec:c5:34:e9:6b:7c:bd:d9:a5:0b:ae:87:
6d:a2:e9:02:6d:46:31:f8:5f:37:60:ce:06:bd:d7:
cf:d6:0a:c5:b0:b7:79:27:28:0a:98:4b:18:e9:c4:
dd:9b:25:ac:2a:6c:ea:07:46:f9:14:82:c3:7c:c9:
49:0e:48:6b:9b:12:db:64:f7:bc:70:6f:23:d8:75:
7c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7E:EE:EA:2A:D6:07:BC:A5:42:2D:09:2D:DA:CC:19:90:8F:2F:D7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91767B4/8026F394708011ED9E4C6A2DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91767B4/8026F394708011ED9E4C6A2DC4F9AE02/GH7u6irWB7ylQi0JLdrMGZCPL9c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150453
sbgp-ipAddrBlock: critical
IPv4:
103.47.100.0/23
IPv6:
2001:df1:99c0::/48
Signature Algorithm: sha256WithRSAEncryption
8b:f0:91:90:0a:c8:79:1a:81:c4:49:82:3d:e3:ff:00:1e:82:
29:5d:53:ec:78:fb:bf:6e:13:fa:e3:4e:af:de:2e:4f:37:d1:
62:ce:8b:7a:97:b4:dc:06:ae:19:58:e3:32:1b:c7:1a:b7:33:
76:50:52:71:31:e2:f6:6c:6f:9f:db:10:05:c9:6d:23:a3:03:
5b:9f:28:e6:1f:51:6e:e3:49:88:d3:23:12:21:2a:2b:e3:1c:
38:9e:98:08:6b:28:ba:18:5a:99:3d:ab:63:db:93:b6:e5:a0:
bb:39:f8:4f:33:e3:44:4b:07:16:89:c5:32:ab:94:45:52:87:
23:cd:f1:31:2e:bd:67:7e:0e:ff:c9:6c:42:06:4f:59:0e:65:
71:c1:c3:09:5c:32:1a:94:37:a7:e7:fd:7c:6a:7a:25:b6:e1:
03:c0:a1:63:ef:4c:32:f2:1c:fd:f6:f0:55:b7:45:f5:e2:33:
4c:37:4f:a2:8e:5e:a1:5e:90:e8:1f:28:20:ad:16:28:6c:d1:
d3:e1:fb:92:9e:ae:44:c4:1f:2c:72:f6:36:3d:a4:f3:1f:67:
e1:33:8f:a6:ea:c9:a1:42:71:d4:e3:32:b6:6f:50:45:28:b9:
b7:7b:b4:7c:04:97:75:ac:08:ed:36:8c:6f:9f:14:3a:8a:56:
63:fc:78:64
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:33 2024 by rpki-client on console-fra.rpki-client.org