Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer
File: GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer (raw, json)
Hash identifier: 9JYlf72iZ/wEPUlPIAmvCOf6AX1oP82eZXBxNNQzTNg=
Subject key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DB10
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jan 2024 16:49:38 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 149423
IP: 103.168.154.0/23
IP: 2407:9240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 12:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121616 (0x1db10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 29 16:49:38 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:99:34:e4:fa:37:64:93:f1:11:f9:99:f6:5c:
21:fd:c5:15:4b:58:c8:ff:52:e4:5a:20:59:93:34:
84:8c:ac:14:e2:e5:4f:5d:a5:c7:06:ec:47:ce:0f:
b5:d8:62:c3:af:18:5b:5f:b7:65:94:5f:84:40:d4:
08:6f:78:6f:80:11:df:f9:8d:4b:56:f6:42:31:7f:
ee:4d:71:53:4d:65:07:d7:2a:d9:35:14:7b:d6:5d:
ab:cc:74:9c:b5:4f:be:d2:ee:ba:1c:ec:d1:1e:18:
85:ac:2c:87:a8:cb:75:99:63:c6:42:41:fe:93:c6:
a9:7d:26:7f:54:e7:61:09:9a:b1:a5:a4:a8:a8:cb:
95:41:42:2b:56:36:19:11:24:ca:78:39:64:b4:dc:
d5:9b:14:c8:5b:df:7e:ee:2d:e5:bc:fc:b0:d5:b6:
72:dd:32:24:f6:51:01:46:14:69:c8:f9:70:64:28:
03:06:c4:8e:3d:9c:41:64:90:68:f4:93:4a:86:a5:
27:cd:a8:c4:0f:70:23:45:46:2f:77:15:88:0c:83:
ff:ed:17:f4:36:ec:97:07:7d:eb:ea:37:8b:a7:74:
eb:c8:3d:52:c9:f6:50:73:f2:35:f9:6c:fb:ce:a1:
6c:fc:50:61:84:49:b4:17:ee:0a:f1:d9:5f:b2:a3:
b3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149423
sbgp-ipAddrBlock: critical
IPv4:
103.168.154.0/23
IPv6:
2407:9240::/32
Signature Algorithm: sha256WithRSAEncryption
4d:bb:96:48:34:a5:ab:c2:8a:b0:1d:a6:89:6d:e8:27:8a:9c:
bc:d3:06:0d:10:1e:81:5d:c6:bd:85:95:58:04:ee:26:a1:d1:
b2:8b:6f:8c:c2:ba:32:2d:53:55:cc:30:d5:72:0e:1a:95:4f:
c3:64:4b:ea:cc:f0:09:f0:71:ee:5f:46:b1:14:21:4a:b8:0e:
93:5a:24:d2:9c:da:ab:c5:f0:30:b1:aa:d7:c6:e1:23:3c:f6:
6d:35:5e:cc:14:8d:35:a2:d2:b0:0a:18:91:13:32:17:50:ca:
a5:2a:57:49:a2:28:69:8d:ed:26:ae:f9:53:98:34:d0:34:5b:
73:cf:9b:c6:fb:e0:fa:7d:11:e2:9e:ed:4f:0e:4e:90:a1:aa:
10:d4:7c:5a:2a:8c:86:e7:12:f8:0b:e5:f8:96:d7:d8:10:5f:
45:63:69:b7:ec:89:c5:d5:70:d5:03:02:fa:65:52:3a:82:cd:
e4:6b:5e:75:aa:14:cc:1a:be:5e:fb:b8:df:69:f4:4f:71:1c:
3e:8c:10:b1:cf:a7:3f:3d:35:81:47:d8:72:84:aa:0d:c4:e1:
c4:91:5f:77:6e:5b:8f:78:88:bc:f8:fc:01:8a:09:b7:6a:fd:
d6:17:b6:47:29:e5:7b:e7:4b:80:c0:3b:63:c0:5a:50:55:95:
ee:81:0d:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:35:42 2024 by rpki-client on console-fra.rpki-client.org