Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8daraClG-4avm9zNZ95tqNG9qQ.cer
File: H8daraClG-4avm9zNZ95tqNG9qQ.cer (raw, json)
Hash identifier: yl230VK7am0JFD/QNb+Y3DyNgkysH3Kx8ez62rxdkSE=
Subject key identifier: 1F:C7:5A:AD:A0:A5:1B:EE:1A:BE:6F:73:35:9F:79:B6:A3:46:F6:A4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020DB7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912372F/9326C790776F11EC82642461C4F9AE02/H8daraClG-4avm9zNZ95tqNG9qQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912372F/9326C790776F11EC82642461C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 16 Sep 2024 13:11:14 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 135525
IP: 103.155.50.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134583 (0x20db7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 16 13:11:14 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A912372F/serialNumber=1FC75AADA0A51BEE1ABE6F73359F79B6A346F6A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:79:bc:79:50:f6:61:e6:13:de:04:b4:25:24:
58:02:a4:9d:f6:8f:c6:74:87:66:6e:cf:33:6e:30:
fb:01:8e:b7:1f:d5:bd:4d:2f:10:d6:a9:77:cd:77:
42:e4:21:97:5b:ce:59:d4:07:11:85:14:9e:50:94:
af:1d:a4:14:d0:65:fc:70:8e:9f:6d:94:07:99:d5:
2e:c3:45:f5:80:e6:00:86:a9:4c:49:d1:00:bb:b6:
fa:a0:2d:60:3a:08:82:54:d5:f2:fc:8e:4d:4a:8c:
92:fa:54:d2:4f:ff:63:d3:60:b0:40:a6:df:0b:7f:
67:cc:8a:b7:d3:66:f6:f6:73:3d:5d:af:59:80:da:
b5:f3:37:21:61:60:b5:3d:47:2d:03:b6:9c:ac:b5:
97:46:95:70:09:ff:34:5d:81:7d:1a:47:0d:95:c1:
d8:e5:22:6e:1c:22:f7:a2:75:cd:b4:36:69:82:11:
b2:ea:bf:19:12:bf:62:0b:c9:6e:f4:e2:7a:85:0c:
85:89:4a:ed:46:46:4c:71:32:cf:9e:9b:27:c0:4b:
56:13:be:a9:cf:e9:e5:30:78:1e:b6:ed:5a:d0:2d:
e6:af:13:7a:5c:e6:af:f7:b7:19:47:b5:03:15:eb:
cc:6a:be:0b:b0:32:80:8f:67:20:ee:2c:c9:4e:8c:
4a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C7:5A:AD:A0:A5:1B:EE:1A:BE:6F:73:35:9F:79:B6:A3:46:F6:A4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912372F/9326C790776F11EC82642461C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912372F/9326C790776F11EC82642461C4F9AE02/H8daraClG-4avm9zNZ95tqNG9qQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135525
sbgp-ipAddrBlock: critical
IPv4:
103.155.50.0/23
Signature Algorithm: sha256WithRSAEncryption
34:c2:91:3f:15:50:93:43:ca:6f:1e:f1:f9:2b:2c:1d:93:54:
ee:6a:7d:57:db:ad:c5:11:2e:ea:e0:d2:a5:ec:fd:b9:c7:0e:
8a:d0:f1:cc:f6:9a:ed:d0:6c:e2:ad:da:4c:2c:47:a6:3a:33:
32:b5:52:49:29:8e:7f:96:8e:a4:26:5c:52:23:cc:a7:36:48:
df:39:f7:40:19:5c:7a:fd:92:ec:0f:e3:8e:50:e9:83:4d:65:
54:26:d6:c6:3d:ab:0e:0c:4c:e6:29:d7:ae:a5:26:e4:7f:f3:
45:e4:ae:18:aa:79:88:00:b5:b3:d9:b7:b1:da:01:a9:bb:7c:
ad:45:5d:c0:d7:91:d1:7e:6b:4b:8e:96:d0:98:eb:f8:fa:42:
b9:67:9f:a1:a3:f8:da:44:e9:67:72:58:fa:5e:a8:03:3f:89:
e8:f6:49:aa:bc:6c:f9:2e:a3:79:ce:8c:41:d3:de:7a:49:ab:
d8:e7:27:9d:35:0e:2e:a5:24:ff:a3:22:be:bc:c3:25:96:b8:
45:af:a0:61:c6:81:f5:ea:a9:71:96:60:c0:6e:bb:d2:c6:74:
d3:f0:69:c2:96:50:c7:43:c7:41:d7:a7:22:fe:52:ae:7d:11:
61:fa:a1:cc:cc:fb:22:8c:1e:88:ff:76:71:24:c6:13:3d:59:
f0:3e:fe:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:32 2024 by rpki-client on console-ams.rpki-client.org