Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer
File: Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer (raw, json)
Hash identifier: H+dhQbzoE/bFGee00eb2y6OkFLsuxva7khHRb8a2OAE=
Subject key identifier: 29:CD:8D:F8:80:6E:11:67:4C:BC:5F:9D:F4:DB:F8:D2:3E:0C:22:83
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0210D8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Oct 2024 06:15:25 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136953
AS: 153306
IP: 103.100.26.0/24
IP: 103.111.216.0/24
IP: 2001:df2:6d00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135384 (0x210d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 1 06:15:25 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A917F241/serialNumber=29CD8DF8806E11674CBC5F9DF4DBF8D23E0C2283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ba:8e:b0:f5:89:53:05:91:02:8e:35:99:e1:
f0:2c:57:b7:6f:b1:75:1f:ca:c7:cf:f9:26:f7:c7:
06:ea:c0:f7:53:a9:83:d0:ad:a1:ae:96:bb:0d:f5:
65:20:dd:16:3d:ff:9d:91:d8:7d:16:f8:56:62:02:
f2:32:62:80:cb:10:bc:aa:0f:53:91:e8:28:5e:37:
d2:bd:8d:ee:da:9a:06:2c:33:c2:a9:dc:5d:dd:44:
4b:1d:e2:b7:bd:a9:5e:90:93:3f:ed:ac:df:65:0f:
03:27:9b:d5:02:ca:34:d6:dc:1d:39:0d:5a:e0:4d:
ae:29:fe:2a:d6:12:b6:c7:55:75:f5:45:e3:87:58:
5b:2c:4e:22:79:dc:af:92:8f:ef:8c:73:d0:0d:db:
d3:8c:33:bc:2c:3b:c3:70:74:7e:61:99:87:5a:fe:
a5:3f:f6:c4:e7:01:47:81:b4:21:34:fa:67:8e:d3:
e2:5a:85:e0:a9:a0:df:d5:9d:56:be:2e:c8:67:a0:
c8:5a:81:bb:34:be:3d:e1:02:f2:70:59:04:1a:16:
e1:d6:70:81:ea:1e:2c:61:0b:54:55:8d:e6:46:a2:
30:c4:85:22:71:47:b7:52:61:61:9e:a7:42:5a:98:
fa:29:15:02:76:6f:e2:47:b8:06:8f:03:b2:5c:74:
e4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:CD:8D:F8:80:6E:11:67:4C:BC:5F:9D:F4:DB:F8:D2:3E:0C:22:83
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136953
153306
sbgp-ipAddrBlock: critical
IPv4:
103.100.26.0/24
103.111.216.0/24
IPv6:
2001:df2:6d00::/48
Signature Algorithm: sha256WithRSAEncryption
d0:b4:9b:96:30:af:24:77:e1:54:52:2c:2a:98:dd:7b:04:a8:
d0:82:ad:1a:cd:25:81:e6:24:10:2d:6a:ef:76:d6:76:3e:39:
91:98:d5:49:23:3f:46:12:7d:1a:66:19:81:17:64:14:99:9f:
12:e5:a7:ef:f9:28:ee:cb:a2:7c:eb:37:a7:13:ed:9f:a7:a8:
7b:9d:d1:f5:2f:b4:5c:40:e3:34:37:9d:32:03:38:dc:12:24:
38:84:1e:e1:4a:1b:39:63:30:7a:19:aa:c3:53:42:42:d6:6a:
c7:61:6e:cc:30:68:d1:cc:04:a5:ca:01:f9:64:ec:4d:fc:8e:
8d:bb:20:88:52:5a:3f:db:a3:12:75:e7:61:a5:72:e3:7e:d1:
ae:e5:38:61:65:27:71:52:fc:5e:14:77:ea:b7:c2:c3:fe:ef:
e8:3c:b9:64:bf:7d:cb:83:c0:d4:72:42:e6:c1:97:a9:ad:09:
73:63:b3:80:f2:21:d8:b3:4b:47:7c:9a:8b:c2:61:dc:0b:79:
0d:c2:8e:12:03:0f:d6:97:21:2e:01:46:bd:30:10:8f:72:57:
3e:7b:4f:bd:e6:9e:4e:98:a2:d9:71:22:53:ec:63:51:90:3a:
f7:5b:c2:45:49:1e:d7:b9:18:52:d1:23:2c:bd:a2:7e:a3:67:
74:88:12:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:24 2024 by rpki-client on console-fra.rpki-client.org