Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlPucJEwgzdpE57Dop6cZqXdA8.cer
File: QOlPucJEwgzdpE57Dop6cZqXdA8.cer (raw, json)
Hash identifier: FgAtuzA2hckIVh/EpG2imt68M+t/x1uxYX727bAlzJU=
Subject key identifier: 40:E9:4F:B9:C2:44:C2:0C:DD:A4:4E:7B:0E:8A:7A:71:9A:97:74:0F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EA80
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BA2AB/111E55E0097E11EEAE7F351FC4F9AE02/QOlPucJEwgzdpE57Dop6cZqXdA8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BA2AB/111E55E0097E11EEAE7F351FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 08 Apr 2024 19:00:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 151061
IP: 103.126.40.0/23
IP: 2001:df2:37c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125568 (0x1ea80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 8 19:00:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91BA2AB/serialNumber=40E94FB9C244C20CDDA44E7B0E8A7A719A97740F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:89:7c:5a:4f:4d:8a:2e:cb:c2:c1:d5:29:1c:
4f:c3:64:fc:e3:1e:41:4f:76:5b:44:66:93:c0:bc:
16:9c:ff:47:58:f9:c0:9f:6e:1c:9a:e9:d6:ae:ce:
e5:78:5a:d8:c4:65:2a:9f:23:55:bc:e1:19:08:38:
ea:96:ef:74:d2:7a:e0:78:80:24:97:41:2b:cc:2d:
60:24:ff:c4:d1:0d:78:9c:36:b4:99:ff:5e:67:a8:
ca:8a:e5:dc:83:66:ef:a4:db:33:2b:26:6c:a2:65:
95:3f:0a:c7:9a:7d:38:e4:fa:04:06:10:d2:a7:1c:
e9:82:9b:34:8d:0d:1b:cf:54:92:11:7c:45:7b:0e:
9d:cd:94:ff:ac:8a:d7:4e:34:cc:22:ed:96:8a:e8:
d2:9f:a9:d9:b4:50:64:62:79:5f:bb:fe:71:b4:5b:
49:b1:90:b1:74:55:31:d5:16:8c:03:ee:16:33:7a:
3c:2a:5a:ec:f4:96:21:02:5b:a2:95:32:4a:82:d9:
1c:91:84:d4:ba:35:09:09:3d:e2:d6:7f:98:3a:61:
bb:5f:8f:93:76:0c:97:64:c1:25:14:16:d0:b6:de:
36:84:0c:a0:5f:94:f4:71:d4:70:e7:e3:83:d6:2f:
b0:a2:68:27:2f:74:4e:fc:2d:f5:a6:30:6d:44:6e:
16:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E9:4F:B9:C2:44:C2:0C:DD:A4:4E:7B:0E:8A:7A:71:9A:97:74:0F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BA2AB/111E55E0097E11EEAE7F351FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BA2AB/111E55E0097E11EEAE7F351FC4F9AE02/QOlPucJEwgzdpE57Dop6cZqXdA8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151061
sbgp-ipAddrBlock: critical
IPv4:
103.126.40.0/23
IPv6:
2001:df2:37c0::/48
Signature Algorithm: sha256WithRSAEncryption
ad:1d:97:42:5a:83:d0:a3:3e:17:a3:e1:55:2a:67:f1:80:04:
e2:61:db:09:d7:a2:c1:73:8b:ee:ff:34:b9:1d:a2:8b:86:d9:
57:21:81:d0:24:30:29:b7:7d:b7:d7:83:c4:72:ba:07:f5:bc:
df:85:af:c2:38:85:9e:d4:61:f4:a0:b4:48:a5:7c:c3:3a:d2:
12:4f:a7:e9:16:1a:2d:2c:ff:98:bb:96:0f:2f:02:5d:d6:e7:
9f:dc:39:ff:89:0e:79:1f:24:4f:61:c0:64:86:95:08:30:3f:
35:67:7c:1e:29:9c:0f:7f:11:0a:8b:1e:49:16:69:33:42:57:
71:f5:4a:cd:4a:51:64:ae:79:7b:d4:80:73:ac:d7:a7:87:39:
c0:b1:8a:e2:4b:66:e4:2d:22:f1:8a:e9:5e:68:cc:2d:ab:f2:
42:de:49:eb:d9:1f:14:9f:e1:cd:3d:32:53:d4:f8:d1:77:58:
ae:16:67:b9:43:9b:50:b7:5f:59:47:b0:9c:24:95:2e:85:4e:
b1:9e:bc:1e:51:b9:a3:07:e1:f0:de:48:85:aa:cf:16:f3:d3:
d7:54:d9:4e:88:38:43:df:ea:af:99:97:c7:79:9a:c9:0f:54:
a7:61:ff:09:67:e1:9f:54:bc:cc:b4:15:2f:cf:e4:47:81:f3:
4c:ef:d8:7c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:40 2024 by rpki-client on console-ams.rpki-client.org