Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWCLHD_M09zOv5lLkyXzou_nzO8.cer
File: JWCLHD_M09zOv5lLkyXzou_nzO8.cer (raw, json)
Hash identifier: qtdTnKDL+DS5IYRM5lcBIusEXMZTAcILCAOm2VoDgvs=
Subject key identifier: 25:60:8B:1C:3F:CC:D3:DC:CE:BF:99:4B:93:25:F3:A2:EF:E7:CC:EF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C21D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/JWCLHD_M09zOv5lLkyXzou_nzO8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 04 Oct 2023 19:17:42 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 150347
IP: 103.68.139.0/24
IP: 2400:b4a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 05:07:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115229 (0x1c21d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 4 19:17:42 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A919CFF5/serialNumber=25608B1C3FCCD3DCCEBF994B9325F3A2EFE7CCEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:5e:e9:66:02:2e:4a:ca:fa:f8:43:f2:8d:0c:
1d:8d:6b:9c:44:c2:2b:f7:84:2d:43:f0:dc:e9:11:
98:d6:76:f0:9e:00:1b:af:a9:1b:a0:41:a3:f3:76:
2d:35:17:fa:b0:da:8f:f7:40:03:49:f2:4f:e0:4c:
8c:45:d2:12:af:0f:66:3f:bb:2f:ab:10:ac:00:95:
22:c0:bd:ab:6e:43:99:4a:c6:bd:92:e4:a1:e6:21:
dc:92:a9:83:0a:5f:9c:ce:f8:a1:60:6a:8d:bd:10:
00:8c:57:ae:91:3c:f3:eb:2c:47:b3:b7:81:2a:1d:
60:48:c0:30:41:e3:e4:0e:89:bc:5c:84:19:a5:6a:
1b:8e:42:d3:49:2a:a6:1f:a0:09:56:5e:f2:36:5c:
af:f8:98:a1:d6:9f:88:43:38:c7:fe:0e:10:26:c5:
15:ae:34:77:41:1b:e7:6c:dd:a9:31:7d:73:ba:1c:
3b:6a:23:e1:b6:63:4e:b2:72:e9:a9:31:39:ba:57:
17:cb:be:3c:ac:05:54:9b:ad:f5:5e:d3:2f:d0:f8:
37:da:67:85:68:b1:85:7d:99:e9:c5:47:d7:a9:e5:
7e:fc:5d:2e:5d:fb:b6:d5:7d:f4:c9:2b:12:34:16:
96:a4:c9:f9:12:42:9f:a9:c2:6e:29:4c:f7:73:6c:
54:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:60:8B:1C:3F:CC:D3:DC:CE:BF:99:4B:93:25:F3:A2:EF:E7:CC:EF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/JWCLHD_M09zOv5lLkyXzou_nzO8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150347
sbgp-ipAddrBlock: critical
IPv4:
103.68.139.0/24
IPv6:
2400:b4a0::/32
Signature Algorithm: sha256WithRSAEncryption
38:16:32:10:bb:1c:91:7b:03:c2:fb:69:dd:80:7e:d1:50:3b:
86:25:f1:ef:39:e7:f2:a8:bc:8e:59:a4:58:27:4d:2d:cb:4c:
82:49:6c:91:8c:fe:c0:dc:d9:8b:e3:60:32:48:21:62:92:f1:
f3:c1:4d:bc:1b:ff:b0:97:59:ea:06:03:82:d3:da:a6:e7:e5:
ef:b1:8f:7d:d8:a6:6b:fa:cd:a8:9e:66:4a:f5:81:42:ba:17:
2c:45:57:4d:d4:3e:e2:80:e6:3c:2e:1e:90:c2:0c:fa:ee:f3:
64:a6:a0:ef:be:2d:79:a6:cb:52:8e:6e:67:d0:a8:d8:41:d2:
d6:b3:39:60:ae:05:6c:05:39:20:8d:a6:ae:91:6f:6f:e5:11:
8c:f8:20:0c:3f:d1:4a:b1:17:4c:89:c3:37:5a:d9:d9:e0:66:
0f:1c:d9:d6:c0:01:fc:5b:e8:fd:c3:3a:31:de:28:46:c6:6c:
81:5a:46:20:b9:c2:52:35:47:54:ce:8f:12:2d:17:fc:2c:67:
08:f8:2e:35:0e:2e:ca:c8:98:fb:d4:ec:10:c5:5e:00:fe:99:
68:25:65:51:8c:97:a9:35:b1:94:a8:11:3b:cc:3e:20:5f:28:
45:c7:93:01:b9:14:00:77:6e:37:7f:71:36:6b:8b:66:8a:6f:
56:4d:90:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 05:45:10 2024 by rpki-client on console-fra.rpki-client.org