Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JNqnqbrGVI2Kxs0QWBxLe_0HZGU.cer
File: JNqnqbrGVI2Kxs0QWBxLe_0HZGU.cer (raw, json)
Hash identifier: iASU7ho2SgQKGuQLeqMphbQmTJh0hTVTSkoN1ol1fgk=
Subject key identifier: 24:DA:A7:A9:BA:C6:54:8D:8A:C6:CD:10:58:1C:4B:7B:FD:07:64:65
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0212B0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/JNqnqbrGVI2Kxs0QWBxLe_0HZGU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 08 Oct 2024 12:33:43 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 138205
IP: 103.129.236.0/22
IP: 2403:8b40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135856 (0x212b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 8 12:33:43 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9119A40/serialNumber=24DAA7A9BAC6548D8AC6CD10581C4B7BFD076465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0f:af:c0:c6:c0:1f:0a:e2:cb:29:34:17:2e:
a8:a4:b0:43:eb:d2:5b:3e:e6:d4:4d:26:6c:50:6f:
41:13:92:49:dc:33:2b:96:ea:5e:b5:84:e7:0c:e9:
11:96:74:05:d7:a8:ef:12:ed:c1:a9:76:9c:aa:79:
64:cd:9b:a3:8d:7d:d3:4d:d5:fa:d6:a4:ba:5a:9c:
95:e9:d1:39:d6:c4:ad:9a:20:ad:b7:b9:89:70:30:
1f:be:de:a0:7f:a8:7d:a7:33:a2:e4:52:4d:e5:15:
b5:c1:96:ca:da:f8:eb:dc:90:d7:27:d8:4e:2f:e4:
83:9c:5e:18:20:34:7e:d8:42:26:52:15:30:8a:44:
3f:85:b8:7e:da:b5:2b:c0:b1:66:db:93:b6:ec:3f:
2e:86:93:e1:09:42:81:f8:d8:7c:e5:24:c4:87:3d:
25:4a:dc:af:df:84:8d:4f:77:84:db:95:4a:a4:2f:
61:60:55:6c:60:04:df:c3:8a:8c:3d:da:b7:d9:60:
03:cd:8e:65:b5:33:ae:e9:1f:ac:87:d6:04:d3:7b:
cc:56:50:c8:0b:15:24:ec:31:e3:c6:69:ec:4c:72:
50:39:11:16:b7:62:8e:03:37:a1:4b:f7:cf:7f:da:
32:cb:57:67:58:06:2e:0e:c0:69:1f:b2:aa:e8:8e:
78:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:DA:A7:A9:BA:C6:54:8D:8A:C6:CD:10:58:1C:4B:7B:FD:07:64:65
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/JNqnqbrGVI2Kxs0QWBxLe_0HZGU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138205
sbgp-ipAddrBlock: critical
IPv4:
103.129.236.0/22
IPv6:
2403:8b40::/32
Signature Algorithm: sha256WithRSAEncryption
08:48:df:4a:39:a2:7f:18:e3:35:d7:25:da:75:d5:40:c9:da:
a6:05:63:e4:f1:53:0c:e2:7b:a1:7a:9c:57:60:9d:7a:40:58:
4e:0a:d5:4c:6b:44:88:e3:6c:c4:09:c4:e1:35:d1:e3:c1:a2:
b7:67:68:58:01:f3:17:26:cb:a1:11:9c:dc:38:6a:ef:d5:07:
c8:88:69:a5:db:39:15:00:ef:b1:c5:7d:c9:0d:7d:d6:d3:34:
50:de:95:7a:54:97:61:21:de:8d:45:1b:12:54:21:9d:d3:b2:
11:ff:d8:08:8c:fa:95:4f:f2:f8:37:21:09:60:b6:7f:8b:83:
cf:b7:ca:57:75:52:70:bc:1d:82:b6:7c:d4:cd:d3:34:fe:cd:
23:ba:17:c9:f9:d8:13:33:6d:7d:39:ef:3d:5e:96:5f:89:9c:
d1:3e:68:df:f7:e5:ca:a1:19:20:8b:a1:a8:05:df:82:f2:1f:
a9:c0:6a:db:64:20:ad:6c:e3:b2:31:1f:19:1f:a3:3b:89:4b:
0e:47:81:18:5a:29:df:da:33:fc:24:61:5c:8f:ac:4a:34:6d:
bf:16:96:db:2c:a3:ad:64:9a:40:08:15:9f:53:17:b1:05:25:
9f:15:e1:3e:20:06:eb:88:dd:56:17:ed:cb:74:f3:de:12:e0:
10:29:3f:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:23 2024 by rpki-client on console-fra.rpki-client.org