Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.cer
File: Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.cer (raw, json)
Hash identifier: ydcYR9fpsssPY9PAVFJzBJQ/y//TuuAGLvAJUAWuI3o=
Subject key identifier: 21:BE:8C:8F:E9:53:F6:EC:97:B7:F1:21:61:7E:D9:10:47:DA:A5:A4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FC99
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Jul 2024 01:10:06 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 133098
IP: 103.248.143.0/24
IP: 2001:df2:c840::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130201 (0x1fc99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 1 01:10:06 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A9176302/serialNumber=21BE8C8FE953F6EC97B7F121617ED91047DAA5A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:db:af:4f:53:ee:13:c0:e6:8a:aa:1b:83:fa:
ac:13:a5:95:3b:4c:59:63:aa:8f:d0:86:da:de:2b:
03:bd:4e:44:f3:71:c0:84:4f:6d:d2:d6:83:b7:e2:
c0:01:3b:a7:92:cd:bb:68:aa:86:5c:55:36:54:a6:
83:46:c3:49:1c:0a:b9:e6:1d:1e:5c:1b:ce:5c:be:
64:f9:7d:df:ee:37:87:d7:1d:f9:c8:26:98:9c:cb:
a7:af:a9:43:a7:26:01:66:3b:60:51:bf:1a:94:ae:
59:7d:f9:b7:a2:89:0a:33:71:92:3e:06:9d:2f:cb:
c7:e3:12:0a:bb:35:ea:81:32:68:68:cc:bc:55:8f:
77:91:41:58:2f:5a:5d:62:20:82:7d:79:72:01:dc:
1e:f1:75:ac:f4:20:c9:c2:bf:48:67:16:c9:01:f8:
fb:f3:cf:6c:8e:45:72:5c:6c:82:e5:3a:20:d6:61:
c7:82:13:05:48:75:cf:d2:e0:6f:c1:4d:4e:84:5c:
31:49:eb:db:96:1b:3f:1c:33:fe:eb:c1:89:95:f6:
5b:45:64:e5:d0:9c:de:f1:29:34:06:03:83:cd:e8:
e3:ee:e0:84:36:6a:96:1b:18:c6:b5:03:2c:8d:ab:
fb:1c:ef:c1:7e:34:df:50:62:32:56:93:e8:a3:ce:
32:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:BE:8C:8F:E9:53:F6:EC:97:B7:F1:21:61:7E:D9:10:47:DA:A5:A4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133098
sbgp-ipAddrBlock: critical
IPv4:
103.248.143.0/24
IPv6:
2001:df2:c840::/48
Signature Algorithm: sha256WithRSAEncryption
32:3c:1a:2a:17:87:bd:53:77:0b:17:7f:7c:f4:7c:4e:ff:21:
1d:33:88:91:41:a7:ce:69:0e:1b:72:2e:2d:83:a0:91:10:05:
5b:16:ca:dd:86:0a:d9:eb:33:ef:71:61:4e:e2:4b:9b:92:db:
ce:3a:f3:be:83:a7:31:5b:fb:27:ee:53:77:56:33:4d:fc:0e:
32:5b:59:0a:67:dc:cf:77:25:ef:9c:4e:e4:ca:ff:f5:62:01:
68:c1:26:01:16:b9:7d:69:48:1e:00:78:df:69:cd:5b:8a:d7:
88:70:0f:77:e6:ff:63:d1:2e:0b:d5:3e:94:f5:6b:0d:95:f6:
02:a5:1d:5b:2f:31:8e:e6:b6:ac:00:d5:51:4a:61:42:36:0e:
14:0a:24:df:dc:ba:d3:5d:79:69:30:30:03:06:41:1d:44:01:
d9:73:d5:aa:96:98:a6:eb:44:40:c5:16:ee:20:2f:ae:75:58:
4f:f1:ff:3d:c3:ff:15:8e:75:bd:ce:4c:9b:fa:00:e8:71:8c:
76:90:c6:f8:d1:40:0c:f9:cc:ff:23:97:a5:7f:ae:61:b7:14:
72:5a:35:8a:ad:0c:ed:80:60:ae:06:7c:6b:fd:b6:3f:4e:c2:
09:e0:3c:c9:6f:67:9f:ce:20:24:05:8e:b1:44:d5:06:0f:25:
bb:6f:b8:32
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Sep 7 22:12:32 2024 by rpki-client on console-fra.rpki-client.org