Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer
File: OhbEBL_tNHJEowpa__ZuSZKqKCE.cer (raw, json)
Hash identifier: E4xEp9Pr02SlHaE1BVJ15qT+3/ePFxhSTVU/IOn9dY0=
Subject key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CFFA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 05 Dec 2023 18:48:49 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 149281
IP: 103.177.220.0/23
IP: 2001:df0:2bc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118778 (0x1cffa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 5 18:48:49 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d9:7d:0a:8d:d3:e8:93:96:d7:e8:42:e9:63:
3a:55:aa:32:9a:4a:1a:99:3d:b0:e4:9b:17:e8:66:
dc:e7:61:17:c8:d9:5d:8a:37:15:f5:9f:53:32:26:
17:9b:fe:1e:57:8b:a3:9f:5e:0e:1a:ec:ed:02:f5:
b9:ff:36:1d:6b:ae:80:68:ab:b7:7a:eb:61:4f:cc:
8e:fa:d3:6e:5b:be:fa:a6:62:53:37:5f:81:d5:c8:
e3:67:17:2f:b5:04:f4:76:56:11:5b:9d:8c:07:82:
2c:af:04:52:3e:d9:56:7b:6b:ad:3f:26:31:71:02:
72:81:7d:e5:4e:97:bf:49:d8:ee:90:21:a8:c5:e0:
15:21:29:fc:8c:81:62:fd:6d:d2:f7:06:04:df:7c:
83:35:90:b9:85:56:49:d9:26:45:e5:d8:ac:5a:87:
08:03:20:53:ae:c6:53:16:03:02:bb:28:ac:04:88:
38:d0:a9:30:92:31:ae:a0:ed:b8:18:2d:3a:35:79:
05:08:fd:4e:cc:3d:16:05:83:63:51:e9:d4:f2:b9:
05:d1:b0:f7:0e:18:cf:cc:6e:e5:9f:a9:99:22:89:
f2:49:cc:94:9f:79:67:71:56:c0:a1:5e:6e:ff:b6:
c1:11:18:21:b2:36:b6:75:c4:43:22:80:f6:09:a4:
e9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149281
sbgp-ipAddrBlock: critical
IPv4:
103.177.220.0/23
IPv6:
2001:df0:2bc0::/48
Signature Algorithm: sha256WithRSAEncryption
61:f1:49:09:80:f2:f7:b2:f4:e7:60:07:17:71:40:40:eb:e7:
a3:09:ca:b7:e8:11:fc:80:ac:81:8c:31:bf:c0:5c:f8:87:71:
5d:c3:10:1e:ba:b5:5e:f6:9c:b4:90:21:91:a8:95:a8:a1:7b:
1f:84:01:d0:17:c8:45:d9:38:d3:47:ed:df:09:6d:3e:f8:c3:
b5:06:c4:24:f2:d3:31:7e:bc:9d:49:4a:dd:d3:e3:99:0d:73:
5d:f9:f0:ce:98:45:f3:3a:ab:29:aa:f6:be:fc:1c:bf:85:9a:
3b:ec:71:11:78:a6:82:07:6d:0f:32:4f:69:ce:bd:5b:12:0b:
07:b7:0f:d0:2b:25:f2:59:7a:0a:36:ee:87:e3:0c:55:a0:f0:
36:e9:1e:73:90:f9:dc:c1:d2:ba:a5:00:02:c3:29:99:9b:be:
5e:bc:d6:11:06:e7:22:86:80:89:04:07:15:c3:6c:d6:21:bb:
9c:8f:78:db:c2:60:1e:bf:40:d4:bb:55:57:2f:28:ee:2d:56:
8f:fc:f7:94:81:6b:14:5e:f2:42:22:e6:93:d7:ea:88:8d:91:
18:c9:10:fd:e7:1c:7c:24:a0:13:ac:94:6f:3c:ee:9f:7b:85:
ee:5c:47:1b:9a:e6:66:14:f9:4d:7e:2a:e1:a6:8a:1b:89:da:
20:54:55:e8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:28 2024 by rpki-client on console-fra.rpki-client.org