Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer
File: QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer (raw, json)
Hash identifier: RSkasBBTDmM3hS9eP1urHMzdEAtjfPGnEPLEEM7Ddlg=
Subject key identifier: 42:91:1B:10:9D:46:E8:86:61:FA:85:61:6C:81:28:03:C5:AB:3C:64
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D046
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Dec 2023 20:58:04 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 141456
IP: 103.160.8.0/24
IP: 103.160.20.0/24
IP: 2001:df1:3a40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118854 (0x1d046)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 6 20:58:04 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91E0435/serialNumber=42911B109D46E88661FA85616C812803C5AB3C64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:74:3b:85:df:b5:cf:8a:87:8f:f4:19:e0:fc:
6f:90:38:b2:70:db:84:ca:6b:83:fa:2f:08:fc:eb:
13:cb:2b:b4:d7:4b:f2:9d:6e:b8:e2:34:b4:ab:56:
19:2b:d7:60:86:65:3b:8c:07:ae:99:e3:9f:35:b3:
09:b2:91:7c:6d:49:ca:7f:13:50:df:25:a7:38:95:
46:7e:5a:b3:c2:b1:b0:fe:c3:7d:0f:b8:c7:67:1c:
ca:bf:98:44:ef:20:ba:52:bb:11:52:a2:10:f3:6f:
65:3f:83:24:81:e1:0f:0f:88:55:c4:d7:cf:22:94:
e8:c8:b6:c9:97:3f:a5:e3:23:9b:44:63:c5:b8:02:
13:18:ce:06:da:15:e8:ce:16:34:bf:e9:11:62:22:
dd:7e:db:65:90:33:d4:f0:7a:2e:f6:72:db:59:33:
d4:57:94:90:9c:74:72:f7:4e:20:ce:11:ce:20:4c:
bd:7d:ad:11:f1:7b:c6:9c:97:31:2d:79:2f:a4:0b:
97:c4:e2:7f:da:b4:43:3a:41:1c:c3:ba:88:ff:93:
49:f2:ac:e0:13:10:84:86:ac:78:33:92:29:41:0f:
bd:d1:62:bd:4d:a0:66:86:47:f5:44:e4:78:02:0a:
d7:4c:ce:70:2d:cf:d4:fa:c0:5e:0f:fd:76:db:70:
06:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:91:1B:10:9D:46:E8:86:61:FA:85:61:6C:81:28:03:C5:AB:3C:64
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141456
sbgp-ipAddrBlock: critical
IPv4:
103.160.8.0/24
103.160.20.0/24
IPv6:
2001:df1:3a40::/48
Signature Algorithm: sha256WithRSAEncryption
d0:fe:cc:6e:f5:b5:61:b5:42:d4:6e:20:82:0d:7f:50:a4:18:
a6:c4:3a:06:0e:13:af:b5:3c:49:cc:ea:f6:f3:1d:b7:ae:b4:
b0:a2:81:67:f5:b7:0e:93:d1:49:30:76:76:f7:28:bc:a2:19:
d6:99:d7:71:fa:a4:86:15:a9:83:a3:95:c9:86:62:69:5e:c2:
9e:90:77:c3:97:97:f7:31:6b:bf:71:6d:8c:4e:f1:44:33:86:
b4:c4:29:bf:b7:4d:23:03:50:8f:ce:11:a8:04:b1:03:8b:d3:
c2:6d:95:93:55:f0:1c:cd:d8:42:11:49:2b:1f:e5:5a:d9:2f:
92:89:85:ec:c0:fc:cb:af:3d:37:0c:39:97:47:e3:e1:d0:e3:
6f:f2:6b:f1:a8:84:14:87:cf:bf:72:63:42:f0:51:08:70:a7:
e7:62:5b:44:d5:dd:99:97:6f:b8:79:76:21:7d:98:46:32:06:
4e:3e:a1:0a:b0:de:69:d4:0b:ad:26:28:9b:39:77:a6:5b:89:
d1:ca:eb:e8:0b:27:54:0c:f2:b4:a8:87:d8:c3:4f:9d:c2:bd:
36:24:3f:54:da:f7:ce:32:49:19:2a:30:d4:1a:7c:60:d3:11:
96:5d:8f:31:e9:90:1a:2c:a7:f8:41:e6:70:2e:46:50:28:06:
25:b5:31:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:21:23 2024 by rpki-client on console-ams.rpki-client.org