Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRzJhRGOMuB6FVTV6boLTNKKSu8.cer
File: QRzJhRGOMuB6FVTV6boLTNKKSu8.cer (raw, json)
Hash identifier: yCVTCPCPl7+ngaHKlMovJ/iYWcac7IeghNGYOs+oQ9s=
Subject key identifier: 41:1C:C9:85:11:8E:32:E0:7A:15:54:D5:E9:BA:0B:4C:D2:8A:4A:EF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D806
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 11 Jan 2024 20:18:32 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 139893
IP: 103.146.176.0/23
IP: 2001:df5:4380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120838 (0x1d806)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 11 20:18:32 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91BEE0F/serialNumber=411CC985118E32E07A1554D5E9BA0B4CD28A4AEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:24:2f:b3:9c:b0:1b:84:67:c0:19:e4:2f:8a:
79:b9:be:9f:f6:10:9c:0d:80:5e:02:90:fb:42:61:
fc:67:c7:43:42:37:b7:71:be:e8:38:eb:24:8a:53:
d2:59:c7:20:99:5b:25:4e:e8:c1:b8:4a:51:f8:96:
28:a8:74:38:1d:a9:ff:74:5b:20:ae:fe:69:2d:55:
c8:1e:f3:9d:5a:33:25:51:43:2e:8b:59:5b:11:ef:
b9:85:48:5b:78:0f:1f:c2:18:1a:b0:3a:3c:ef:b5:
5f:a7:b7:ab:f3:55:9f:03:7c:6c:0d:ab:26:c8:77:
c7:00:95:f7:45:45:39:cb:1f:79:2b:42:b2:58:45:
25:f6:eb:46:04:d3:49:41:f9:d1:ec:d0:0f:a2:86:
f6:e6:e4:4d:8d:88:f4:ed:bd:18:9e:8b:67:7b:0c:
71:9d:bf:28:e7:01:fe:75:6b:49:83:c2:43:70:ef:
9f:bc:68:ec:14:14:9a:ba:2d:bc:30:4b:9f:bc:d1:
42:90:c8:73:55:f6:a0:b5:6a:f1:cf:fc:15:17:2d:
86:5f:17:c8:4e:9b:a3:a3:1a:a0:6b:b6:65:a5:a0:
7f:ac:6b:26:a3:69:e3:1b:c5:44:bf:38:73:b7:28:
22:86:8b:db:44:60:e1:9c:2f:42:c1:4a:ec:7f:0a:
aa:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:1C:C9:85:11:8E:32:E0:7A:15:54:D5:E9:BA:0B:4C:D2:8A:4A:EF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139893
sbgp-ipAddrBlock: critical
IPv4:
103.146.176.0/23
IPv6:
2001:df5:4380::/48
Signature Algorithm: sha256WithRSAEncryption
38:a5:50:de:a5:08:7b:06:14:72:63:e3:e3:d1:59:db:d6:8b:
98:16:d1:f9:7d:be:39:c8:23:16:75:1a:e7:fc:ed:38:98:8f:
ce:c4:1d:05:0d:02:fa:9e:c6:ca:e6:16:c2:6b:c2:a7:2e:67:
db:0f:e4:68:13:52:06:f0:9c:87:98:3d:d2:34:ee:d6:fa:24:
4f:86:75:54:b8:b0:f9:2e:ab:49:ed:11:7f:8c:7f:a5:75:6c:
76:3c:96:33:ce:b2:37:79:48:9e:3d:cb:06:cc:b4:31:b9:56:
b4:09:c2:89:48:ea:64:f0:06:e3:1e:a7:8e:50:94:15:ea:5b:
b5:15:65:a1:d7:7c:fd:95:06:b1:30:f8:52:33:07:f5:d2:dc:
22:3b:cb:3f:93:41:d4:d7:5a:01:a2:53:7b:a8:21:c1:98:8f:
f9:02:7c:8e:2a:02:bb:6a:18:30:3d:97:68:52:e3:d3:f2:d7:
bf:4a:78:05:38:aa:1d:fb:24:b0:69:8c:59:38:ee:98:1c:01:
c0:9c:93:72:52:d6:41:d7:ff:1e:2f:65:14:d2:c6:72:27:72:
bd:db:e6:2d:fd:08:5a:85:a2:18:0c:38:ef:9d:93:be:6a:b7:
df:bc:90:5d:47:be:65:27:de:c1:b2:ff:b0:2f:0b:d2:a4:4d:
f2:36:db:b2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 20 05:36:59 2024 by rpki-client on console-ams.rpki-client.org