Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer
File: KtUm39nH6QyjDDH8pOGCUBtwB1M.cer (raw, json)
Hash identifier: FdW6frZxBmf/pnDygf2FDO3qAcxkrDIGXc3jEaPxSPk=
Subject key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D269
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 16 Dec 2023 18:30:05 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 139787
IP: 103.145.60.0/23
IP: 2001:df1:fd80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119401 (0x1d269)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 16 18:30:05 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:77:be:01:d3:36:7b:80:6d:ac:fe:85:d5:d0:
57:12:51:35:3b:da:10:9f:25:1b:db:04:37:99:12:
d6:10:e7:59:12:93:08:3b:8c:db:7d:3d:8b:17:8c:
a9:38:c6:4e:98:33:71:4e:73:97:ee:87:a1:75:59:
73:18:9a:48:cf:30:84:1e:41:07:95:fa:b8:8f:64:
d7:d3:a9:83:d9:50:bb:04:f6:2f:05:47:b1:c1:96:
89:f4:00:4a:4f:25:36:4b:46:d3:53:f9:df:28:1c:
af:5b:e5:0c:2d:f1:0b:7f:f1:6b:38:43:5f:ea:d8:
c9:ae:22:78:f1:37:61:76:0f:16:9e:d3:12:d8:85:
2d:09:a6:34:2d:bd:3d:56:ca:38:1c:b6:6b:5a:73:
ab:52:35:2f:c7:db:62:46:69:0d:8f:c1:a9:e3:9c:
e9:c5:a0:f8:98:59:63:00:69:46:18:5b:e0:76:ac:
46:fa:f7:08:f2:a9:82:17:00:af:57:d5:d5:49:82:
ba:49:af:7c:5b:b8:82:d1:cd:62:8b:c7:de:c9:80:
e6:19:fb:44:5e:70:99:1e:29:87:3a:fa:18:92:38:
e4:df:a2:7c:0d:65:90:67:ed:8b:17:a6:9f:8e:2d:
7b:f5:d9:e8:a0:ec:50:6f:60:09:75:02:67:7b:79:
6b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139787
sbgp-ipAddrBlock: critical
IPv4:
103.145.60.0/23
IPv6:
2001:df1:fd80::/48
Signature Algorithm: sha256WithRSAEncryption
9f:5b:07:b6:f5:be:f8:2e:d5:de:7d:da:97:04:6a:ba:0d:31:
5b:bb:2f:12:43:bb:ad:45:3c:51:4f:f7:93:8b:83:ef:11:91:
0f:26:df:63:05:94:cd:99:e3:dc:4e:55:b4:41:77:55:69:ca:
ff:31:23:58:96:74:71:59:45:5f:91:26:76:75:07:f2:63:da:
db:02:4d:89:5e:6b:24:72:e1:74:ad:70:fa:40:1f:b7:35:c3:
1f:9c:6e:87:c2:f4:87:a0:a6:07:da:41:07:53:18:f2:3b:d1:
d6:d4:08:d3:24:62:4c:9e:37:c1:17:81:46:7e:62:1f:e2:04:
06:bb:29:99:79:ed:88:20:7d:11:bc:11:b4:4c:7e:1b:7a:fe:
19:e8:3f:ce:a0:49:43:3a:1a:9a:44:13:8a:04:a1:e0:93:3b:
1e:33:54:5d:40:79:70:97:94:d8:c8:81:c7:22:de:f3:66:ef:
8a:3e:e6:20:1a:09:f6:fb:96:03:4c:aa:b2:d8:64:be:f1:c0:
26:94:17:6b:b8:5a:de:6b:c8:07:95:9a:ae:57:eb:54:c1:93:
42:70:3a:49:31:1d:d6:45:74:e6:7c:b5:d3:80:92:a1:b7:0a:
56:64:2f:1f:7b:85:e7:19:b7:8d:d8:81:23:c5:54:ec:17:d0:
fc:58:43:44
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:20 2024 by rpki-client on console-fra.rpki-client.org