Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer
File: KHuwzWb71-W3qIumZ4kSTAsExXg.cer (raw, json)
Hash identifier: 34l120WZQnLynMtvAdsvLZzd0CBhRjuAgh6x55czEz8=
Subject key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A63C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 May 2023 20:59:51 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 139283
IP: 103.140.212.0/23
IP: 2407:f4c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 03:16:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108092 (0x1a63c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 30 20:59:51 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2a:b1:ea:99:00:03:bf:56:89:87:20:b0:2f:
60:05:e9:33:a1:11:6d:3b:97:13:5a:cf:ba:48:5c:
50:8d:89:99:50:94:a3:02:08:01:c7:db:c3:d1:dd:
dc:66:99:4a:f8:02:77:f4:90:cb:97:d8:fd:46:fa:
db:9f:9b:d4:d5:cc:9c:43:76:95:52:88:b5:38:3e:
a8:18:da:89:e1:10:05:4e:c2:2f:8b:86:94:0f:bc:
ee:84:c2:75:f1:df:f8:1d:4b:46:94:f7:99:ef:88:
d1:89:fe:0e:18:ef:25:e1:73:e7:f8:aa:20:27:18:
2f:91:4d:d8:c9:5b:23:77:d8:32:aa:e3:0f:70:7c:
cf:f9:59:51:e3:23:a4:31:b9:21:de:62:c9:bf:13:
a4:dc:1e:d6:0f:12:cf:44:b9:db:23:7c:65:96:a6:
ec:48:c8:45:87:30:64:c7:48:0c:8a:fb:ad:ae:3f:
cf:b3:ae:72:29:4f:4e:a6:43:85:37:9f:ef:bf:51:
e9:1b:82:37:71:5f:88:5f:3c:75:ab:4b:89:a4:92:
6a:bb:d1:72:81:5f:36:b4:eb:9b:b2:40:e4:72:97:
12:50:a1:81:0b:1d:35:73:68:6d:f2:5c:6d:76:b2:
11:5c:ac:af:be:3d:f1:6a:4c:83:ad:28:75:d2:65:
8d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139283
sbgp-ipAddrBlock: critical
IPv4:
103.140.212.0/23
IPv6:
2407:f4c0::/32
Signature Algorithm: sha256WithRSAEncryption
47:8c:70:af:af:6f:70:0a:32:30:2e:5d:ec:ac:0b:d7:03:c7:
ef:44:ac:f9:32:91:23:fb:25:60:10:fa:3a:0b:40:e9:25:34:
7d:77:f4:18:c0:62:e2:cf:53:1e:d5:05:45:4e:51:9c:a1:98:
c4:c3:f7:be:67:cd:92:ea:55:55:a6:ad:5a:65:97:07:e4:04:
91:a0:b9:e1:4e:4c:a2:17:76:58:18:0f:e7:24:2f:0a:83:eb:
d7:53:7b:fb:94:32:70:08:19:1f:f1:8f:68:50:f1:da:9e:22:
8e:bf:33:84:8f:9b:e2:1f:65:ad:63:81:d7:71:f1:2a:bc:fa:
2d:ae:b7:67:46:39:78:50:5a:07:bb:f4:ff:06:8f:4c:8a:51:
6f:5a:92:6e:a4:6d:f8:5b:80:77:02:22:a7:31:81:d1:e3:48:
79:88:e3:1a:2f:06:bf:ab:ea:21:e8:23:ef:fd:94:03:22:03:
4b:e8:08:be:cf:b8:92:53:4b:0d:3d:d8:24:06:a9:d7:92:c3:
b6:5e:b4:17:79:7d:9b:b3:52:2a:4b:c6:9b:1f:00:bd:6a:10:
5d:55:b1:7e:d6:24:ac:4e:19:ae:a3:c0:91:c0:22:b8:bb:4a:
99:56:cc:9b:7c:4b:5d:66:58:a2:c9:74:1f:14:dc:9c:2d:25:
74:87:ca:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 03:53:25 2024 by rpki-client on console-fra.rpki-client.org