Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer
File: LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer (raw, json)
Hash identifier: Z6zc28xDeaEhI4E/rMD7rIKD45KjM4vCdLS77zyUA1Y=
Subject key identifier: 2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E4F3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 18 Mar 2024 13:30:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 139910
IP: 203.20.192.0/21
IP: 2400:5e60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124147 (0x1e4f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 18 13:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:bf:45:a0:fc:e1:86:6d:52:34:fa:97:24:f6:
c9:a8:e1:de:5b:b2:0e:f1:d1:c8:f9:8a:d7:f3:88:
30:10:ac:cd:04:b7:25:15:7e:a7:e6:61:f8:1b:e1:
17:69:4a:f3:b8:a9:3b:dd:7b:ac:18:c7:62:91:44:
44:d9:22:a6:b2:9a:88:ee:75:d1:1b:43:10:50:e1:
f6:7a:b1:00:67:9d:2a:0b:b1:ee:2d:3d:53:e8:e8:
2d:9c:fd:c1:11:17:d0:64:a5:ce:ac:38:a8:31:96:
f4:e9:33:20:f2:59:95:37:d4:96:b2:ed:3c:64:cc:
01:e1:25:c4:a9:d6:d0:22:94:7c:5e:1d:87:e6:84:
73:6b:f2:82:95:cf:85:9e:fe:8b:8a:6e:a5:f2:05:
8e:4a:e7:36:44:51:7d:f6:df:15:ba:03:a5:3a:be:
da:a3:1e:39:72:62:a4:9f:80:61:2c:ce:46:ae:4b:
c3:46:08:69:65:1c:86:73:71:bf:b6:74:43:7a:4f:
93:02:30:dc:7a:e3:a1:24:e5:ed:ee:3d:6a:ca:f1:
a9:23:38:66:67:ad:c6:53:8f:fb:ca:09:d7:89:e8:
ff:38:96:9e:d0:06:18:a4:c6:a2:a6:d7:ab:b5:b5:
c1:b3:87:56:b9:10:1c:bf:e5:21:cc:2f:7d:f8:02:
07:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139910
sbgp-ipAddrBlock: critical
IPv4:
203.20.192.0/21
IPv6:
2400:5e60::/32
Signature Algorithm: sha256WithRSAEncryption
5d:7f:78:b2:5a:70:a1:06:76:69:78:04:8d:41:5b:5d:54:3e:
ae:7f:51:2b:27:0b:15:20:87:60:4c:ce:d2:e0:03:c0:e4:33:
12:02:54:e5:ba:2f:37:cb:2d:0f:ba:47:8a:79:af:78:5e:db:
e7:d3:cd:2b:4c:75:4b:2d:7b:3a:da:63:3f:73:30:09:32:d7:
91:90:50:53:2f:92:07:1b:c8:04:30:d5:71:02:23:5c:fc:88:
da:9d:c5:1e:7a:75:81:fa:fd:a2:6b:37:f5:69:06:d2:00:4f:
dd:ca:4e:57:20:20:95:9e:12:9f:05:0d:55:61:4a:0d:a6:2a:
a4:a4:19:75:dc:0c:33:02:8c:d6:e1:d7:55:56:59:77:21:fb:
b8:54:79:f5:6c:f7:05:7b:ad:22:34:93:7e:fc:5a:b8:0f:14:
cc:b9:c2:02:c2:a6:50:8c:19:09:84:bf:50:75:6d:e0:1e:75:
9e:03:83:60:26:d1:a0:52:d9:6d:b9:a8:df:b0:9c:17:2d:0c:
e1:25:b0:c3:97:a6:c0:6b:ee:e5:72:46:21:7e:de:c3:a8:52:
92:d4:9f:26:b1:c3:31:43:61:1c:5d:8a:76:dc:f0:b9:5b:c7:
6c:86:ee:17:37:c5:e7:dc:c2:d5:77:ad:ed:98:15:7d:ad:f6:
34:29:87:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:25 2024 by rpki-client on console-fra.rpki-client.org