Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWCLHD_M09zOv5lLkyXzou_nzO8.cer
File: JWCLHD_M09zOv5lLkyXzou_nzO8.cer (raw, json)
Hash identifier: VW9CZTunvj2wFaH0yVoLIBgvxlDD56uzvF38JXI546Q=
Subject key identifier: 25:60:8B:1C:3F:CC:D3:DC:CE:BF:99:4B:93:25:F3:A2:EF:E7:CC:EF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02124F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/JWCLHD_M09zOv5lLkyXzou_nzO8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 04 Oct 2024 17:34:01 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 150347
IP: 103.68.139.0/24
IP: 2400:b4a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135759 (0x2124f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 4 17:34:01 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A919CFF5/serialNumber=25608B1C3FCCD3DCCEBF994B9325F3A2EFE7CCEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:5e:e9:66:02:2e:4a:ca:fa:f8:43:f2:8d:0c:
1d:8d:6b:9c:44:c2:2b:f7:84:2d:43:f0:dc:e9:11:
98:d6:76:f0:9e:00:1b:af:a9:1b:a0:41:a3:f3:76:
2d:35:17:fa:b0:da:8f:f7:40:03:49:f2:4f:e0:4c:
8c:45:d2:12:af:0f:66:3f:bb:2f:ab:10:ac:00:95:
22:c0:bd:ab:6e:43:99:4a:c6:bd:92:e4:a1:e6:21:
dc:92:a9:83:0a:5f:9c:ce:f8:a1:60:6a:8d:bd:10:
00:8c:57:ae:91:3c:f3:eb:2c:47:b3:b7:81:2a:1d:
60:48:c0:30:41:e3:e4:0e:89:bc:5c:84:19:a5:6a:
1b:8e:42:d3:49:2a:a6:1f:a0:09:56:5e:f2:36:5c:
af:f8:98:a1:d6:9f:88:43:38:c7:fe:0e:10:26:c5:
15:ae:34:77:41:1b:e7:6c:dd:a9:31:7d:73:ba:1c:
3b:6a:23:e1:b6:63:4e:b2:72:e9:a9:31:39:ba:57:
17:cb:be:3c:ac:05:54:9b:ad:f5:5e:d3:2f:d0:f8:
37:da:67:85:68:b1:85:7d:99:e9:c5:47:d7:a9:e5:
7e:fc:5d:2e:5d:fb:b6:d5:7d:f4:c9:2b:12:34:16:
96:a4:c9:f9:12:42:9f:a9:c2:6e:29:4c:f7:73:6c:
54:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:60:8B:1C:3F:CC:D3:DC:CE:BF:99:4B:93:25:F3:A2:EF:E7:CC:EF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/JWCLHD_M09zOv5lLkyXzou_nzO8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150347
sbgp-ipAddrBlock: critical
IPv4:
103.68.139.0/24
IPv6:
2400:b4a0::/32
Signature Algorithm: sha256WithRSAEncryption
20:e9:94:fa:93:32:0f:35:41:9e:5e:de:78:21:1c:b8:80:91:
e3:6f:5d:21:3f:ac:c7:7c:52:93:99:82:9f:ca:75:f2:eb:43:
9f:54:4e:75:30:0b:ec:1c:e4:d9:f3:58:e3:95:6f:5d:8f:55:
23:3d:89:47:29:a3:57:74:71:68:83:59:39:ac:44:10:d4:3b:
e6:a2:da:09:12:ff:a1:ac:48:61:77:38:92:f4:3f:c2:11:4e:
3b:76:23:91:42:3e:de:cc:65:f3:1f:6a:27:d3:3d:15:e8:4e:
cd:6f:58:b8:18:d4:56:8d:3e:06:69:e7:a0:60:6d:28:01:31:
03:4f:15:09:85:0f:39:ce:2c:38:27:1b:8b:c5:99:31:f8:0b:
6b:6c:b4:b3:25:f9:1d:f3:61:b8:6a:94:b4:3a:df:4a:fe:38:
8b:29:bc:a5:96:a9:72:f7:15:92:f2:42:1d:f6:3d:f5:e5:c9:
8e:e2:a6:b4:9a:75:e3:4c:5a:e9:cd:f8:b4:da:1d:f5:04:46:
92:a7:fe:fd:6e:a4:7d:1e:60:f3:cf:2f:9c:7e:ad:ae:2a:4e:
eb:4b:0e:45:06:cb:86:bb:f6:17:2c:cf:9e:a8:ed:8a:db:17:
57:dd:d2:2a:df:16:14:25:f2:98:f7:63:4c:34:ec:4c:06:64:
b5:2d:aa:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:34 2024 by rpki-client on console-ams.rpki-client.org