Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gb5b5jVV8RtzQdxOHLyfRMntoPc.cer
File: Gb5b5jVV8RtzQdxOHLyfRMntoPc.cer (raw, json)
Hash identifier: 3t+mpXBaexgHJ0Ne1L0Y8mS2YVORkftBq3BZ849vvj0=
Subject key identifier: 19:BE:5B:E6:35:55:F1:1B:73:41:DC:4E:1C:BC:9F:44:C9:ED:A0:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FBBE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91753AE/F32998BCE1E211EAABEEC528C4F9AE02/Gb5b5jVV8RtzQdxOHLyfRMntoPc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91753AE/F32998BCE1E211EAABEEC528C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Jun 2024 17:43:29 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 140670
IP: 103.151.144.0/24
IP: 2001:df3:c580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129982 (0x1fbbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jun 27 17:43:29 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91753AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:43:17:8e:f8:33:e5:9a:12:65:cb:9c:f9:ac:
33:04:f9:3a:d0:2c:8c:66:e9:40:9d:b1:ac:60:ca:
b9:af:52:2c:c8:9e:68:a3:a2:fc:09:79:a9:2f:34:
12:83:4f:21:2e:46:83:98:29:81:41:f3:b1:98:28:
57:ca:15:b6:88:59:69:d8:1e:b3:83:ba:94:2a:4b:
02:1b:6c:93:f3:8a:33:b3:19:23:dd:2e:09:9e:25:
71:63:27:c9:6c:80:64:cd:1b:be:a2:c6:08:b3:61:
24:a7:fd:73:2a:91:4a:a5:1a:16:94:93:e9:3f:de:
27:6c:38:52:2b:a0:ad:cc:ed:21:c3:dd:2b:75:c6:
a7:b7:4d:dd:0a:df:96:24:87:62:63:f4:61:e3:43:
89:21:a1:85:7d:f7:1a:f2:02:50:ee:86:fb:fb:b6:
a4:43:bb:7f:9b:da:bc:25:a1:42:dd:d6:68:c1:f9:
31:a9:c5:35:6a:78:1b:28:40:2f:22:62:e7:f4:5e:
15:a6:29:47:34:98:90:03:d2:60:95:53:a4:0b:65:
cf:7b:12:8c:59:6e:8b:c4:ba:d3:d8:94:5b:26:53:
59:b8:1d:10:f9:1d:c5:84:de:f0:64:9c:06:b2:29:
7f:a7:e3:77:39:bf:6e:45:db:10:d7:2b:1f:0e:80:
c4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:BE:5B:E6:35:55:F1:1B:73:41:DC:4E:1C:BC:9F:44:C9:ED:A0:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91753AE/F32998BCE1E211EAABEEC528C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91753AE/F32998BCE1E211EAABEEC528C4F9AE02/Gb5b5jVV8RtzQdxOHLyfRMntoPc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140670
sbgp-ipAddrBlock: critical
IPv4:
103.151.144.0/24
IPv6:
2001:df3:c580::/48
Signature Algorithm: sha256WithRSAEncryption
51:06:2e:59:82:65:6b:fa:56:66:b4:89:17:c9:c8:dd:b8:4d:
26:8c:82:af:3f:1a:2e:41:b1:d2:62:ad:97:54:2e:03:24:6a:
5d:8a:d1:7f:fc:1e:b3:6a:04:02:9f:15:b0:af:05:46:a6:aa:
9d:5e:cc:f8:a1:69:2e:2a:19:29:01:08:75:93:58:fe:b4:93:
4f:6c:15:78:97:6b:1d:10:19:0e:ac:cf:12:d9:d4:e5:cf:88:
a8:bb:9b:d6:68:e7:3a:74:cf:33:d0:bb:b2:c1:c7:ab:80:48:
28:db:5f:de:22:90:50:90:0e:f9:d7:60:ee:3d:9b:95:39:11:
34:98:38:f6:27:40:eb:b9:2e:3c:f5:e0:51:0f:97:ca:a6:ae:
25:bd:8f:63:28:7c:e6:c7:c4:00:99:60:56:59:7b:12:79:9a:
8d:a2:a7:61:27:7f:e0:bf:5b:81:8e:40:c8:60:2e:4a:dd:3e:
5f:60:2b:95:b4:c2:d3:e2:6c:af:09:d0:56:61:6e:83:6b:50:
35:87:79:5f:4c:cf:32:d2:9d:90:a4:d9:50:22:f6:7b:fa:77:
3e:5f:cc:9b:ee:52:10:40:6c:6a:ed:f2:92:d4:3a:b8:bb:c4:
84:0a:d5:bd:d2:da:dd:2f:f1:b4:ee:6c:4c:d6:ed:19:78:f9:
3d:dc:c3:cc
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:47 2025 by rpki-client