Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer
File: Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer (raw, json)
Hash identifier: +//LILspdA3aQ1iyruLcEGQVN5v/A0tJxT1FH+1rz4E=
Subject key identifier: 29:CD:8D:F8:80:6E:11:67:4C:BC:5F:9D:F4:DB:F8:D2:3E:0C:22:83
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02084F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Aug 2024 06:11:11 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 136953
AS: 153306
IP: 103.100.26.0/24
IP: 103.111.216.0/24
IP: 2001:df2:6d00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133199 (0x2084f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 22 06:11:11 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A917F241/serialNumber=29CD8DF8806E11674CBC5F9DF4DBF8D23E0C2283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ba:8e:b0:f5:89:53:05:91:02:8e:35:99:e1:
f0:2c:57:b7:6f:b1:75:1f:ca:c7:cf:f9:26:f7:c7:
06:ea:c0:f7:53:a9:83:d0:ad:a1:ae:96:bb:0d:f5:
65:20:dd:16:3d:ff:9d:91:d8:7d:16:f8:56:62:02:
f2:32:62:80:cb:10:bc:aa:0f:53:91:e8:28:5e:37:
d2:bd:8d:ee:da:9a:06:2c:33:c2:a9:dc:5d:dd:44:
4b:1d:e2:b7:bd:a9:5e:90:93:3f:ed:ac:df:65:0f:
03:27:9b:d5:02:ca:34:d6:dc:1d:39:0d:5a:e0:4d:
ae:29:fe:2a:d6:12:b6:c7:55:75:f5:45:e3:87:58:
5b:2c:4e:22:79:dc:af:92:8f:ef:8c:73:d0:0d:db:
d3:8c:33:bc:2c:3b:c3:70:74:7e:61:99:87:5a:fe:
a5:3f:f6:c4:e7:01:47:81:b4:21:34:fa:67:8e:d3:
e2:5a:85:e0:a9:a0:df:d5:9d:56:be:2e:c8:67:a0:
c8:5a:81:bb:34:be:3d:e1:02:f2:70:59:04:1a:16:
e1:d6:70:81:ea:1e:2c:61:0b:54:55:8d:e6:46:a2:
30:c4:85:22:71:47:b7:52:61:61:9e:a7:42:5a:98:
fa:29:15:02:76:6f:e2:47:b8:06:8f:03:b2:5c:74:
e4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:CD:8D:F8:80:6E:11:67:4C:BC:5F:9D:F4:DB:F8:D2:3E:0C:22:83
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136953
153306
sbgp-ipAddrBlock: critical
IPv4:
103.100.26.0/24
103.111.216.0/24
IPv6:
2001:df2:6d00::/48
Signature Algorithm: sha256WithRSAEncryption
c8:60:c3:ca:d4:6a:3a:01:77:5e:b6:e8:21:d4:83:c9:c6:61:
1d:82:28:ee:af:8a:c2:06:e3:a6:f5:35:6a:9d:9e:58:19:e0:
23:bc:5f:35:13:b7:2d:54:52:a2:3d:3a:56:69:67:f3:55:f8:
26:17:b6:b4:c2:2d:a0:3c:2e:7e:0c:5d:bb:6f:00:b8:ae:a6:
f2:87:6a:f8:17:7b:f7:1f:54:ae:7f:26:bd:63:17:76:c3:29:
ec:56:8c:83:e4:b4:30:3a:d5:83:0a:18:bc:b7:7f:e1:e4:5a:
cd:0e:81:ff:8b:4e:75:95:da:3e:f8:2f:72:f0:73:1e:48:1e:
07:ea:4a:1e:43:3f:5e:fd:96:ad:a6:7e:8f:5d:d8:5a:b7:41:
b3:2a:5c:1b:8f:c3:d0:0c:a4:1b:2e:a0:9f:4f:64:88:6c:68:
cc:1a:22:8a:d8:ec:f8:cd:fb:14:d5:91:31:e3:b9:df:98:57:
8f:ad:e7:16:9a:8a:84:d0:a1:84:43:9a:47:c7:e1:f6:44:fd:
cf:93:72:83:ad:c6:e9:a6:89:5b:f2:1a:ab:72:a7:44:2d:fb:
0b:5c:fa:08:bd:d8:bc:30:1a:53:ce:25:8b:71:4b:14:ce:d9:
e3:99:08:ab:7e:27:4b:2b:da:38:ec:f0:67:92:06:da:85:31:
ee:49:74:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 22:12:34 2024 by rpki-client on console-fra.rpki-client.org