Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MO7z6BnpmwANZl9r1ZSvpMYiai4.cer
File: MO7z6BnpmwANZl9r1ZSvpMYiai4.cer (raw, json)
Hash identifier: lMZ7WyLQ2yJTYgnPfOfyjBqQsBuJBaJr7yXQmP49op4=
Subject key identifier: 30:EE:F3:E8:19:E9:9B:00:0D:66:5F:6B:D5:94:AF:A4:C6:22:6A:2E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CF56
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 03 Dec 2023 04:18:24 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 134988
IP: 103.204.226.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118614 (0x1cf56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 3 04:18:24 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91D5D9F/serialNumber=30EEF3E819E99B000D665F6BD594AFA4C6226A2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c7:64:f2:28:dc:22:6d:7d:88:e0:2c:19:da:
9e:06:2f:ae:28:5a:bf:72:38:08:8e:94:b7:eb:6e:
96:01:f0:a4:16:5c:b3:41:d9:2b:65:43:66:ce:0a:
5a:c5:3c:ae:99:7a:3c:90:17:0b:36:55:d6:6b:93:
63:11:a0:77:2a:c7:99:2d:44:86:46:77:be:4e:24:
81:56:c2:21:e2:19:c0:9b:ec:31:eb:47:f0:18:68:
b0:db:ba:d2:bb:3a:00:e2:f7:21:39:2d:8e:10:f6:
69:91:d7:e1:76:96:0a:51:98:8b:40:3d:27:bf:ab:
d1:48:62:25:1f:03:00:73:dc:08:31:83:52:ee:dc:
cd:66:ab:6f:50:a9:a0:ae:c6:63:ea:45:0e:89:15:
e6:55:ca:fa:01:24:a6:8d:7e:4a:38:5f:df:8c:a1:
c2:1a:fa:c8:8f:fd:76:37:4f:1f:9a:f8:fb:89:b9:
9c:82:18:73:a2:8f:20:79:1c:65:92:b7:c3:5c:04:
14:7c:02:b7:fb:06:66:61:84:78:4e:66:e9:40:23:
8a:dc:bf:9b:b7:39:95:c2:12:1a:f9:a7:35:68:e6:
ba:01:ec:e2:e8:f4:a5:9e:59:43:c8:71:ea:93:ec:
c1:be:e0:4f:21:21:86:79:b3:70:75:35:c3:d8:57:
0c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EE:F3:E8:19:E9:9B:00:0D:66:5F:6B:D5:94:AF:A4:C6:22:6A:2E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134988
sbgp-ipAddrBlock: critical
IPv4:
103.204.226.0/23
Signature Algorithm: sha256WithRSAEncryption
95:a7:60:71:4e:ee:86:06:71:da:a6:0b:7a:83:7c:2f:f6:50:
24:77:4a:aa:49:ed:d8:f2:aa:a2:ff:3a:50:5c:b5:e1:c5:3f:
6d:c3:48:fe:2d:82:17:84:39:bd:f4:ba:e6:00:7c:4c:0e:9f:
de:63:56:50:15:03:0b:f3:4b:6f:02:18:6a:b7:05:1a:f5:fb:
88:d6:ba:16:4a:f3:dc:c7:5e:f2:fd:40:1a:6d:de:bf:43:d4:
d2:20:fc:a2:57:17:0a:80:5e:35:37:c6:aa:a6:83:c4:9f:25:
1f:4e:84:56:32:66:9c:24:15:9e:89:8e:4a:88:6a:d8:99:32:
17:59:00:eb:36:df:1a:8d:eb:02:e6:ad:f8:11:40:b6:05:1d:
9b:28:71:1b:a3:da:86:69:eb:dc:fb:73:41:17:24:43:f1:f0:
89:c2:15:a7:28:8f:de:61:9b:08:ed:a4:d0:45:9c:0b:7a:b8:
65:98:45:43:33:e6:1f:1b:99:2c:62:b9:0c:d6:ac:dd:a8:49:
f5:fd:34:0a:bf:ee:12:aa:f6:dc:c9:e8:8a:7c:42:10:96:1f:
47:8c:4b:44:3e:16:f6:0c:b3:ab:37:97:a4:da:8c:fc:45:6d:
98:17:eb:5f:60:56:9e:2e:99:b9:28:bd:03:94:0a:1c:81:a9:
fd:c6:af:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 05:36:56 2024 by rpki-client on console-ams.rpki-client.org