Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JgPGdCltNFZsjuj5fNtKSyD2I-k.cer
File: JgPGdCltNFZsjuj5fNtKSyD2I-k.cer (raw, json)
Hash identifier: fabyjwxW3Bsec73rYzTcH8LcOs1xFLKwajyySnydsHQ=
Subject key identifier: 26:03:C6:74:29:6D:34:56:6C:8E:E8:F9:7C:DB:4A:4B:20:F6:23:E9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0215A1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F1BF8/D089349E348711E38FB5B7745911EA32/JgPGdCltNFZsjuj5fNtKSyD2I-k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F1BF8/D089349E348711E38FB5B7745911EA32/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 24 Oct 2024 01:24:27 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133122
IP: 103.195.12.0/23
IP: 103.243.148.0/23
IP: 2001:df2:2900::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136609 (0x215a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 24 01:24:27 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91F1BF8/serialNumber=2603C674296D34566C8EE8F97CDB4A4B20F623E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:be:02:50:ab:26:2c:0d:76:09:01:0b:78:27:
5c:8f:3c:8f:fc:db:16:9d:76:45:35:de:b6:8a:a9:
fd:71:29:ec:ec:7d:47:c0:05:ae:37:04:e4:6e:57:
d4:18:7d:8b:13:58:aa:7a:7e:6e:50:bc:1e:be:0c:
64:ba:5d:26:35:a2:7d:58:1e:20:7f:ec:bb:45:56:
c3:b3:10:3e:da:2a:08:aa:89:1b:57:8b:5b:2d:20:
6c:c4:98:71:3f:4a:24:bc:a7:81:74:49:25:54:97:
ba:80:33:00:fc:ee:ad:7c:3c:49:49:ff:5c:71:09:
ca:6a:35:93:04:93:e5:58:36:1c:31:95:cd:b9:ca:
f8:18:eb:38:02:3d:73:33:1b:06:81:9c:53:2e:0f:
50:ef:f9:c0:5c:7a:a1:e6:bc:f7:99:c7:84:3e:61:
f7:f6:d5:7a:84:03:dc:d3:05:0c:6c:c9:a3:68:6b:
79:17:12:65:4a:7f:0b:03:3a:af:21:27:aa:fd:da:
68:b5:9b:13:d5:c0:96:3a:34:6b:28:4d:2b:da:2e:
55:8b:a6:ab:2a:10:8e:43:99:71:5a:bc:41:01:55:
06:0a:81:ca:b2:62:f2:5c:03:25:ac:42:01:8a:cd:
f3:06:1d:93:0a:a6:9a:7b:d7:e8:15:de:4d:22:52:
c9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:03:C6:74:29:6D:34:56:6C:8E:E8:F9:7C:DB:4A:4B:20:F6:23:E9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F1BF8/D089349E348711E38FB5B7745911EA32/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F1BF8/D089349E348711E38FB5B7745911EA32/JgPGdCltNFZsjuj5fNtKSyD2I-k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133122
sbgp-ipAddrBlock: critical
IPv4:
103.195.12.0/23
103.243.148.0/23
IPv6:
2001:df2:2900::/47
Signature Algorithm: sha256WithRSAEncryption
d2:70:38:17:44:c9:b6:86:31:5c:70:3b:30:2b:e8:14:e8:61:
79:66:24:e3:da:ab:ab:99:d6:2e:20:be:21:46:48:f9:bd:14:
c6:0e:37:e0:89:62:79:e8:f4:46:5b:49:29:b5:03:20:f4:a7:
99:b1:a5:20:54:72:a1:65:0d:1d:61:99:1c:2a:55:6e:46:7e:
a2:06:95:4e:96:97:4b:dd:2e:e4:26:57:f7:8f:6c:2e:14:d1:
9b:13:ab:3f:c0:9e:98:75:f9:fe:f7:cd:43:d5:d3:81:00:3c:
86:5b:07:1c:5d:a1:07:b6:50:07:3f:9d:3c:4f:1f:8c:91:bf:
25:24:15:f2:5e:8c:d2:99:ec:3c:a8:49:87:4f:c8:64:c4:d5:
50:2b:da:cb:e0:07:5b:e1:6e:e7:a8:08:57:82:7f:0f:d3:6b:
89:f7:35:d1:e5:8a:ff:5c:2b:1e:23:53:be:99:5e:0f:85:93:
59:28:83:da:6e:11:40:2d:7f:69:c1:cb:a8:71:0e:d8:5e:90:
c7:7d:ba:98:4e:ac:95:dd:a2:1c:1c:09:50:d2:1f:ec:4a:55:
56:40:61:cf:b4:20:c8:a8:6f:a7:fb:c2:33:41:91:1e:ae:dc:
4d:2c:57:e4:ee:1c:8d:0a:9f:7d:57:0c:0c:fb:43:d8:5a:18:
d3:3b:8a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:35 2024 by rpki-client on console-ams.rpki-client.org