Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.cer
File: Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.cer (raw, json)
Hash identifier: 3knD63k1FyTV2ea8wyGsa4E7kFp/8DareEZY0Oaqut8=
Subject key identifier: 21:BE:8C:8F:E9:53:F6:EC:97:B7:F1:21:61:7E:D9:10:47:DA:A5:A4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020C98
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Sep 2024 09:47:40 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 133098
IP: 103.248.143.0/24
IP: 2001:df2:c840::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134296 (0x20c98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 9 09:47:40 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9176302/serialNumber=21BE8C8FE953F6EC97B7F121617ED91047DAA5A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:db:af:4f:53:ee:13:c0:e6:8a:aa:1b:83:fa:
ac:13:a5:95:3b:4c:59:63:aa:8f:d0:86:da:de:2b:
03:bd:4e:44:f3:71:c0:84:4f:6d:d2:d6:83:b7:e2:
c0:01:3b:a7:92:cd:bb:68:aa:86:5c:55:36:54:a6:
83:46:c3:49:1c:0a:b9:e6:1d:1e:5c:1b:ce:5c:be:
64:f9:7d:df:ee:37:87:d7:1d:f9:c8:26:98:9c:cb:
a7:af:a9:43:a7:26:01:66:3b:60:51:bf:1a:94:ae:
59:7d:f9:b7:a2:89:0a:33:71:92:3e:06:9d:2f:cb:
c7:e3:12:0a:bb:35:ea:81:32:68:68:cc:bc:55:8f:
77:91:41:58:2f:5a:5d:62:20:82:7d:79:72:01:dc:
1e:f1:75:ac:f4:20:c9:c2:bf:48:67:16:c9:01:f8:
fb:f3:cf:6c:8e:45:72:5c:6c:82:e5:3a:20:d6:61:
c7:82:13:05:48:75:cf:d2:e0:6f:c1:4d:4e:84:5c:
31:49:eb:db:96:1b:3f:1c:33:fe:eb:c1:89:95:f6:
5b:45:64:e5:d0:9c:de:f1:29:34:06:03:83:cd:e8:
e3:ee:e0:84:36:6a:96:1b:18:c6:b5:03:2c:8d:ab:
fb:1c:ef:c1:7e:34:df:50:62:32:56:93:e8:a3:ce:
32:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:BE:8C:8F:E9:53:F6:EC:97:B7:F1:21:61:7E:D9:10:47:DA:A5:A4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133098
sbgp-ipAddrBlock: critical
IPv4:
103.248.143.0/24
IPv6:
2001:df2:c840::/48
Signature Algorithm: sha256WithRSAEncryption
8d:9d:b0:0e:e5:ce:0d:c3:44:da:24:db:45:d9:ee:7e:28:b3:
41:ac:cc:d2:9d:09:67:4e:b4:21:3e:53:ce:45:55:4b:75:e2:
b3:76:4d:f5:29:4c:7c:0b:3a:0b:c8:bf:77:b2:58:2a:10:fe:
06:2a:bf:92:ad:44:e3:93:a0:11:09:69:8d:f7:c6:a4:6c:dc:
5b:e8:74:df:a3:f0:c2:a0:99:73:e2:b3:18:92:59:3a:2d:0b:
48:5e:4b:4f:ba:3d:e2:fa:3d:f1:03:14:21:31:ec:55:ee:45:
28:e8:65:4e:17:18:fe:94:98:9d:60:6c:bc:1f:15:ad:eb:e0:
47:2a:a6:3c:1a:b4:6d:7f:ef:97:d7:84:ab:61:65:e0:e1:8a:
b2:f5:80:80:f7:f2:34:bf:ee:8c:a5:03:4a:52:80:c1:1a:a4:
45:40:9c:ad:fa:29:91:10:1d:dc:24:b3:93:71:b4:7f:88:78:
a7:8b:22:40:e4:6b:3b:70:26:f5:b9:6f:dc:11:3f:57:00:12:
aa:4b:e7:c6:54:01:a4:74:5a:bb:86:03:63:c0:bf:f0:50:48:
2e:6b:7e:54:df:0b:78:2f:b6:9f:0d:86:52:26:74:f0:0a:c8:
e3:e7:d9:99:2f:1e:70:72:3e:91:68:69:88:89:51:64:ec:d9:
b0:27:49:c0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:22 2024 by rpki-client on console-fra.rpki-client.org