Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer
File: IAAAWsWhdEBL07_CmUMyPpYGJbk.cer (raw, json)
Hash identifier: cL6o2SQJtZkpKgCSY/RKEnjN4ghpTSH5kRsUU8ZAUlY=
Subject key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B8A9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 24 Aug 2023 19:07:45 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 142153
IP: 103.166.250.0/23
IP: 2001:df6:a080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 11:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112809 (0x1b8a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 24 19:07:45 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b8:17:a1:0e:6e:60:e3:30:70:8f:95:94:93:
c0:e5:0d:34:c2:20:93:be:d6:72:9c:0e:86:5f:6c:
81:cf:ba:db:56:23:f0:40:1e:25:99:d1:df:ec:6a:
b2:08:d1:d0:bc:a5:3d:33:3b:b0:9e:fa:c7:8d:56:
ad:d6:75:c7:78:f8:24:8f:4f:64:53:67:f4:0d:67:
3d:13:4d:f2:03:58:5e:36:d8:63:13:8a:c4:58:0c:
b3:f1:bd:f8:df:6b:16:f9:37:ba:c7:1b:15:61:56:
a6:1d:f3:e4:a9:fd:6f:3e:b9:87:4f:23:aa:3e:3c:
bb:e5:7b:a0:7e:41:eb:89:cf:ce:e0:69:c8:f1:11:
a8:fe:63:b7:04:ec:72:c3:f2:14:13:8e:38:4a:b6:
b0:ed:45:18:93:12:8f:8b:c7:16:64:b7:dd:d5:a2:
82:cb:f8:69:f7:a4:79:1b:b3:9c:73:31:0b:fe:1d:
df:66:49:cd:05:55:09:da:1b:a1:7b:49:84:07:da:
92:04:bc:4c:b0:7f:6c:5f:97:c2:e5:d3:dc:be:df:
46:a4:aa:47:64:f1:6f:c5:a6:fb:6a:fd:c0:21:12:
30:95:9a:59:c6:35:fa:d1:91:5e:2a:c5:33:9d:85:
e0:10:43:67:18:ad:5c:a7:8d:96:1a:19:02:3b:42:
94:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142153
sbgp-ipAddrBlock: critical
IPv4:
103.166.250.0/23
IPv6:
2001:df6:a080::/48
Signature Algorithm: sha256WithRSAEncryption
c3:c6:3c:4e:1b:4a:41:fa:0d:a8:5a:cb:ce:79:a1:db:cd:62:
73:75:8d:fe:91:09:ee:79:a9:b9:1e:22:e1:17:0d:ab:b9:ed:
5e:b5:82:98:c3:bc:9a:37:41:d7:f1:59:00:5a:c2:81:d6:36:
64:68:b0:45:d1:cc:d3:ea:19:d9:16:ac:6b:42:9c:1a:44:4e:
80:d3:00:69:55:c5:dd:f5:70:da:2f:c3:52:1c:9e:38:1b:a1:
5e:af:e2:f0:cd:0b:3e:f1:d6:c9:57:e1:6a:bc:98:54:25:85:
1b:1f:0e:8a:ed:05:73:b2:c0:a3:4d:14:7b:66:1f:19:4a:cc:
3e:98:a0:5f:de:83:05:28:96:d2:ab:25:fb:83:50:6e:de:bf:
90:0f:3c:35:9b:8a:61:9f:54:4d:85:1f:0f:de:30:d3:62:7a:
50:2a:a5:af:31:29:72:e9:1b:53:0c:0c:49:fe:cd:8c:f7:89:
2a:c5:9b:03:04:db:48:cb:56:db:fd:57:24:4c:8f:92:95:c6:
55:f8:7d:1e:d5:1c:7b:a4:fb:2b:6e:6b:59:c7:a3:b5:fa:15:
d8:c2:7d:7d:d0:87:2d:e4:f8:71:12:cf:04:6d:be:1f:ef:57:
b5:82:a5:95:c8:b8:39:47:51:e8:2e:a1:89:d6:f4:1f:08:69:
4f:7a:eb:be
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 19 13:18:29 2024 by rpki-client on console-ams.rpki-client.org