Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhmPmhfws17bhJVg-1-YUBw8nK8.cer
File: GhmPmhfws17bhJVg-1-YUBw8nK8.cer (raw, json)
Hash identifier: vGXKfTdF/g+78WlrDtUwH5QgneFvKGorTX9a88jI/9o=
Subject key identifier: 1A:19:8F:9A:17:F0:B3:5E:DB:84:95:60:FB:5F:98:50:1C:3C:9C:AF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F7B9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/GhmPmhfws17bhJVg-1-YUBw8nK8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 06 Jun 2024 18:30:13 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 139312
IP: 103.221.60.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128953 (0x1f7b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 6 18:30:13 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A919B300/serialNumber=1A198F9A17F0B35EDB849560FB5F98501C3C9CAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:11:20:1b:ea:9d:f5:a1:1c:74:c2:f3:53:eb:
a1:38:07:78:8f:e0:08:99:0f:04:4e:c3:f2:47:3d:
71:7c:7d:8a:88:9c:c1:4f:14:91:0a:00:11:03:a9:
7f:4f:bd:44:af:91:c4:67:9e:4f:91:6e:87:d7:fa:
65:bd:49:fc:6e:04:e9:9c:72:5d:fd:56:07:54:1b:
10:e7:08:44:cc:19:89:40:1c:bf:74:da:4d:6e:b8:
f5:f8:00:3d:d6:91:8d:d7:23:cf:c8:51:da:9e:09:
a9:b5:7c:20:7a:70:d3:7c:66:bc:66:7e:a0:a1:32:
da:9b:e5:93:b6:b9:d4:9b:3a:1c:a7:8c:a4:b0:70:
49:b0:0a:e8:ff:30:30:f0:f9:c4:d7:4b:27:d0:ff:
00:bd:47:9f:19:c7:0e:ae:a8:0b:d8:30:3d:54:39:
d5:7b:b3:46:4c:f3:ec:de:22:44:02:b9:98:70:11:
20:17:90:e0:91:8e:76:57:4c:d3:c7:7b:e1:7e:4a:
f2:d1:ca:9d:24:dd:d5:dc:9d:52:4b:0b:5c:01:5f:
b4:20:6f:62:73:61:a7:da:dc:49:e1:53:8e:86:9a:
ab:2d:cd:39:ac:3c:dc:32:1b:4b:10:48:e2:80:d8:
c6:ad:3e:2f:43:97:e8:1f:4b:51:ad:ca:06:d1:63:
0b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:19:8F:9A:17:F0:B3:5E:DB:84:95:60:FB:5F:98:50:1C:3C:9C:AF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/GhmPmhfws17bhJVg-1-YUBw8nK8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139312
sbgp-ipAddrBlock: critical
IPv4:
103.221.60.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:95:cb:5f:a1:5a:9f:77:4d:be:4b:a3:65:4b:64:a9:f6:dc:
f5:7a:3a:e6:25:f4:2f:49:48:c3:72:28:68:97:f7:f4:97:b6:
16:45:ed:27:b6:fd:4b:97:71:58:a3:60:37:16:a5:ab:a4:ec:
9a:4c:79:7e:e6:54:7d:ad:fd:84:75:63:15:9d:e5:e5:06:c4:
c6:58:9e:50:a2:23:23:84:64:13:93:3d:e5:ce:5d:ad:b6:5e:
f2:3d:0f:0f:98:c3:78:a4:64:f4:8c:35:a9:b8:76:5b:41:57:
d5:21:82:36:0b:40:e6:a8:69:ee:a0:aa:bb:3b:35:c3:e3:2c:
42:f8:14:f7:38:f0:25:05:e4:74:7b:56:6a:68:6d:2d:eb:0e:
ea:83:60:56:37:ce:cd:35:19:ba:e8:2b:e8:95:9f:f4:56:c7:
24:53:17:8f:e9:83:7d:8a:3c:72:ba:91:e4:94:8c:f4:c9:de:
16:0a:4c:d0:7c:0d:5a:94:51:77:5e:aa:62:cd:ea:e0:cc:0f:
96:b0:53:d5:50:40:5f:33:0a:ec:c9:b5:c2:e2:ab:bb:4d:22:
25:62:a2:42:57:69:af:a3:a4:b9:6b:54:cd:bb:64:6c:d1:e9:
1a:9c:04:6c:d4:ad:c5:ae:00:dc:74:38:48:79:fc:d9:17:25:
91:6f:17:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:21 2024 by rpki-client on console-ams.rpki-client.org