Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer
File: OG9viqHmbFJU6h5HiIwQP0U2Iio.cer (raw, json)
Hash identifier: UIcC78SwvYgzcLQn0PkF8QWyjLL1Ycc0GIRR0KA6f2s=
Subject key identifier: 38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020558
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 Aug 2024 16:40:51 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 133530
IP: 103.233.242.0/24
IP: 2401:1d80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132440 (0x20558)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 6 16:40:51 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:50:ed:ce:13:c1:73:7f:e4:bb:31:42:bd:8f:
1a:5c:21:a0:70:e5:9c:09:53:93:62:28:a5:d3:18:
b1:da:5e:88:ac:cb:c8:c1:cf:dd:83:58:c6:fe:1a:
76:e8:db:fe:2a:8c:69:f3:f9:97:11:82:67:8c:9d:
26:fc:b2:9b:62:06:88:76:f4:be:05:01:f0:e8:27:
01:2e:08:68:85:b4:37:1f:9c:55:ce:58:28:46:92:
b7:39:4f:0e:c8:13:0e:4d:a2:72:0e:8a:30:f2:54:
e1:cb:e5:25:ef:90:f0:d2:23:42:63:f1:b9:45:1a:
5e:9b:2a:ea:24:da:12:19:0c:16:71:17:6b:2b:77:
15:55:c1:40:e9:04:6a:5b:63:9f:8d:f1:1d:d4:b0:
8d:3c:c4:98:bd:09:76:8d:b1:41:2a:16:57:1a:2e:
5f:c0:ca:50:49:67:fa:ed:17:ca:e9:cf:a5:c3:39:
1f:fb:fd:77:38:f8:ca:68:93:99:f5:17:14:1d:50:
0b:20:00:0a:80:ec:ef:32:db:51:8f:8a:a2:c6:0b:
8e:49:86:b5:1e:b4:51:e4:01:9d:4b:5f:23:9c:40:
5b:ee:d2:cd:b8:8c:b3:14:c6:ac:17:2b:e0:eb:83:
80:19:d7:54:99:4f:8f:18:c7:f5:12:20:be:1a:5a:
18:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133530
sbgp-ipAddrBlock: critical
IPv4:
103.233.242.0/24
IPv6:
2401:1d80::/32
Signature Algorithm: sha256WithRSAEncryption
3f:89:cd:44:7e:39:d7:70:15:65:4b:8e:dd:c8:a9:6c:80:8f:
8a:d7:ca:e7:d2:bb:32:a0:d0:9f:61:58:c7:ee:40:ee:68:95:
d0:0f:09:71:5b:0b:ae:04:5f:7c:5b:ed:7c:12:ab:a2:c2:ad:
bc:80:db:5f:82:fb:a2:7a:2a:4c:6c:1b:13:59:96:74:d6:ad:
b6:cb:5e:06:c9:25:0e:b1:52:a5:33:24:27:20:cb:0d:2e:24:
aa:ff:3e:f2:34:1e:d9:c1:96:b6:4d:6a:b3:ea:23:bc:1d:b5:
e0:ae:96:fb:86:26:99:c1:68:e3:33:a3:d1:97:15:5d:72:40:
aa:08:f3:3f:e9:e5:51:6f:40:e0:af:b5:12:64:cd:0f:15:0e:
be:cc:ab:60:54:82:83:a8:83:7a:a8:89:b8:bf:d6:d4:34:37:
53:e3:a2:73:9f:dd:a1:61:27:34:28:20:4a:44:6e:66:be:cd:
e8:b1:93:21:e6:2f:50:58:97:f0:ff:c4:2a:ec:10:33:79:88:
58:ea:17:09:18:12:0e:50:97:4e:c9:15:60:92:8b:07:f1:3b:
79:9b:ec:28:0d:4c:37:21:96:a0:e8:92:db:ee:51:27:6b:f9:
9b:54:f5:da:32:cd:63:79:c2:9a:dc:a9:52:08:52:98:18:86:
1e:c6:03:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:58:42 2024 by rpki-client on console-fra.rpki-client.org