Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer
File: Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer (raw, json)
Hash identifier: 6Mt2ft8ydfVi9UEGlVwhKpdmXHG8zkg0KMNeX5JzGG8=
Subject key identifier: 43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C9B0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Nov 2023 13:46:01 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 133958
IP: 103.76.90.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 04:13:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117168 (0x1c9b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 8 13:46:01 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A9132C09/serialNumber=43929D916DC9C9CE3463FF9158CCBEFE9F182C3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d7:10:a7:1a:26:f6:eb:b1:ca:0f:b5:18:7c:
85:63:ef:3d:d7:9b:09:80:b4:fb:04:da:4c:b6:0b:
3a:bf:45:96:e0:19:78:09:0f:09:58:c2:55:8b:39:
c8:6c:c3:7d:17:0a:05:6a:a9:da:42:ba:a7:ec:f2:
aa:00:88:7f:11:a5:63:ad:5f:a5:61:93:e4:69:20:
d0:62:15:c8:0e:50:e1:96:29:b7:3e:a1:c7:49:55:
c4:58:ea:c0:fa:a1:1b:ac:41:53:09:c2:1a:52:89:
34:7c:de:93:e5:79:e4:af:2e:90:c3:df:81:b9:39:
9f:3b:b2:59:83:83:74:3e:e6:3a:58:22:cf:7a:a0:
b6:60:b7:ca:57:17:27:aa:70:52:8b:d3:be:58:bc:
10:a2:c0:95:c2:84:cc:e7:13:77:45:36:f5:91:ba:
53:1d:71:ac:bc:52:60:ee:bd:83:e6:03:83:7b:8f:
b2:e4:68:0c:dd:27:3c:20:bc:d2:28:b2:a7:b5:c2:
46:4a:68:86:17:37:b6:43:bd:34:62:4e:01:b8:ea:
af:d1:42:4f:04:5d:c6:67:00:d2:52:9b:61:eb:a4:
6b:02:cc:57:18:89:5b:63:fa:58:2e:c3:2f:fb:89:
55:64:12:39:a2:24:1f:ce:71:b4:67:25:8f:f1:68:
7d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133958
sbgp-ipAddrBlock: critical
IPv4:
103.76.90.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:16:d1:a9:6b:00:f9:cb:ca:03:c7:f9:1e:c1:b4:ea:99:18:
3d:69:14:49:75:28:a0:83:b3:d6:3f:1e:cf:26:1e:0a:59:71:
96:a9:03:e1:e0:3f:f5:37:e6:c7:9b:0b:b0:ce:0a:f6:ad:94:
3e:87:e3:df:fb:fc:39:ac:88:aa:75:75:73:98:e5:a5:d9:ad:
c8:60:a7:38:92:85:45:2a:0e:59:a8:0c:d3:29:38:62:a8:c0:
c5:37:06:e5:88:f2:72:6b:63:1e:35:d5:f6:6c:55:af:84:40:
73:1b:6b:9b:f6:53:77:86:5c:4f:d8:91:7b:00:fc:5c:67:4a:
66:bb:e7:d7:d6:b1:00:7e:ce:a9:92:25:d2:1d:3a:e2:fd:17:
7f:05:e1:46:49:c2:10:5c:a8:0c:4d:0d:5f:dc:78:8d:1b:24:
0d:c7:de:ca:2b:b4:b6:21:19:6b:56:1f:7c:93:b8:72:03:ec:
a6:ca:94:d8:54:ce:86:b7:eb:86:3d:83:3b:4e:12:33:c8:38:
ed:c9:b8:21:06:ab:e4:45:51:05:67:61:15:e1:7b:bf:9b:55:
cc:47:8d:f5:a9:77:31:e5:ca:fd:1b:ab:8c:47:a4:7e:9f:c2:
5d:a4:15:67:33:bd:33:54:43:f0:73:36:91:35:aa:56:0d:27:
9d:f7:9d:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 05:10:50 2024 by rpki-client on console-ams.rpki-client.org