Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer
File: IAAAWsWhdEBL07_CmUMyPpYGJbk.cer (raw, json)
Hash identifier: puH0bMYnLnt7QivPauFgE8bgBKFJvJ0oqEH3cafY3PU=
Subject key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020BFA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 04 Sep 2024 20:59:27 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 142153
IP: 103.166.250.0/23
IP: 2001:df6:a080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134138 (0x20bfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 4 20:59:27 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b8:17:a1:0e:6e:60:e3:30:70:8f:95:94:93:
c0:e5:0d:34:c2:20:93:be:d6:72:9c:0e:86:5f:6c:
81:cf:ba:db:56:23:f0:40:1e:25:99:d1:df:ec:6a:
b2:08:d1:d0:bc:a5:3d:33:3b:b0:9e:fa:c7:8d:56:
ad:d6:75:c7:78:f8:24:8f:4f:64:53:67:f4:0d:67:
3d:13:4d:f2:03:58:5e:36:d8:63:13:8a:c4:58:0c:
b3:f1:bd:f8:df:6b:16:f9:37:ba:c7:1b:15:61:56:
a6:1d:f3:e4:a9:fd:6f:3e:b9:87:4f:23:aa:3e:3c:
bb:e5:7b:a0:7e:41:eb:89:cf:ce:e0:69:c8:f1:11:
a8:fe:63:b7:04:ec:72:c3:f2:14:13:8e:38:4a:b6:
b0:ed:45:18:93:12:8f:8b:c7:16:64:b7:dd:d5:a2:
82:cb:f8:69:f7:a4:79:1b:b3:9c:73:31:0b:fe:1d:
df:66:49:cd:05:55:09:da:1b:a1:7b:49:84:07:da:
92:04:bc:4c:b0:7f:6c:5f:97:c2:e5:d3:dc:be:df:
46:a4:aa:47:64:f1:6f:c5:a6:fb:6a:fd:c0:21:12:
30:95:9a:59:c6:35:fa:d1:91:5e:2a:c5:33:9d:85:
e0:10:43:67:18:ad:5c:a7:8d:96:1a:19:02:3b:42:
94:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142153
sbgp-ipAddrBlock: critical
IPv4:
103.166.250.0/23
IPv6:
2001:df6:a080::/48
Signature Algorithm: sha256WithRSAEncryption
d5:f3:e2:cb:c5:5f:62:25:06:e3:40:74:2d:75:3a:c5:b9:43:
41:57:0f:12:a7:b8:12:94:75:39:df:76:3b:f7:9c:29:49:cc:
c5:28:8c:ca:1f:61:a7:05:71:11:57:29:e0:34:9d:a1:4c:08:
bb:4b:26:64:2d:a9:b5:a9:88:ec:fe:06:1f:34:f3:d7:a5:62:
53:14:f1:4d:9e:2a:f7:6a:96:8e:72:a0:8c:7b:85:31:69:0f:
a3:ca:a2:8d:64:8a:d1:33:0c:a0:2f:fd:04:c7:c2:e0:08:9e:
3c:1c:ae:18:f2:6a:cb:e9:76:11:11:af:17:4b:56:4e:fb:85:
c5:6b:22:cf:22:97:b1:f6:b4:28:f2:a7:0d:ad:ab:aa:45:a9:
b1:81:e9:3f:ac:d1:78:f1:1a:a9:e4:b6:b1:1c:2d:59:3f:72:
bc:78:5b:a7:a5:45:fe:fe:23:12:bc:65:5b:55:2f:d4:78:e4:
55:c6:6a:f5:d5:05:06:3d:02:5b:09:51:2c:06:36:6e:67:28:
51:8a:fe:69:59:d1:9e:7d:9e:d6:5a:5e:3b:7a:72:8f:c0:a0:
de:05:34:98:b6:33:10:e3:4c:ee:ac:53:b9:d9:a7:15:88:67:
98:f6:e3:ea:af:02:02:28:31:29:d5:81:cf:f6:56:26:29:53:
30:63:76:37
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:22 2024 by rpki-client on console-fra.rpki-client.org