Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer
File: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer (raw, json)
Hash identifier: c849Gor0tFqGBh5Z0QE/r2tHoe9xXsWBLLfkSqdl5YQ=
Subject key identifier: 45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A068
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 May 2023 19:51:36 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 135393
IP: 103.100.102.0/24
IP: 103.100.104.0/23
IP: 103.216.132.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 18:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106600 (0x1a068)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 1 19:51:36 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A9178580/serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d7:a4:b8:78:03:c2:28:89:64:ae:e6:76:6a:
61:65:05:fd:f1:67:20:c5:2a:9b:53:49:2d:ce:02:
25:cf:3d:0a:e6:94:63:1d:f4:96:ba:14:a0:7b:e2:
33:8f:8d:69:c4:8b:5a:8c:f4:aa:ce:a8:40:ff:b6:
9b:6c:66:8c:ec:2a:d5:96:a3:9a:af:9d:2e:cb:4a:
85:a9:83:62:7b:2a:61:af:b1:f1:6b:cc:b6:cb:aa:
9e:16:1f:31:6f:49:70:d2:48:84:26:5d:63:71:ea:
55:7c:d3:b6:cd:9a:4c:ea:e4:d8:15:98:39:bc:05:
d0:f9:86:03:04:b8:53:d4:07:a0:e0:24:b4:d9:39:
d9:35:b1:d0:e7:2d:85:a0:5f:eb:5a:26:07:00:a3:
dc:c2:d3:2a:60:62:ce:73:38:52:1e:e9:82:d2:e1:
26:b2:c8:1a:9d:21:5c:b7:dc:0b:63:82:18:f4:48:
b0:da:78:84:7d:bb:a2:db:27:f2:94:83:6c:f9:55:
1f:a3:ff:69:69:83:9a:ee:ed:5d:62:ee:37:21:23:
a2:42:48:a4:85:7c:a4:c2:35:50:b4:ae:86:57:b4:
0e:ba:2f:f6:46:da:40:94:38:58:d3:f4:22:15:8d:
3b:25:10:dc:82:d6:5c:4c:0f:8c:7d:3a:54:c0:f6:
f8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135393
sbgp-ipAddrBlock: critical
IPv4:
103.100.102.0/24
103.100.104.0/23
103.216.132.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:05:c6:0e:96:35:13:66:c7:73:62:43:bc:cc:19:3c:1e:66:
50:04:e6:5e:54:d9:25:69:7f:3e:1f:72:22:51:2b:df:d5:a6:
b4:e5:21:b7:43:ed:27:4f:13:89:43:22:7a:c2:8d:0e:e3:5b:
d4:16:11:ba:a8:18:4b:e2:43:aa:68:75:cb:6d:16:ac:38:4b:
00:0a:b6:08:a4:dd:86:47:a4:84:d9:e4:cb:91:43:f8:61:4a:
cc:ca:7b:a7:a8:80:96:68:0f:4b:bf:1f:27:49:e6:a6:11:5a:
8c:e7:ab:5d:95:50:8a:2f:64:cd:22:da:2d:17:2d:4f:dd:5b:
1d:d5:fd:61:1d:35:9d:e9:f6:39:74:7e:54:63:10:23:3a:f0:
30:f3:bb:1e:3a:5d:06:a8:d0:d6:99:d5:a3:0d:4e:b4:54:4e:
00:60:2d:7e:3f:06:6b:da:8d:65:d2:98:6e:d7:75:5f:01:2a:
6e:c5:8b:d2:54:02:f4:23:82:2b:9a:47:5c:db:af:5f:6b:4e:
a0:57:47:b0:f7:75:d1:e8:5e:93:90:13:7f:94:91:4c:c2:e4:
8e:6f:96:72:3a:2f:57:bd:8e:67:d0:e9:3c:ef:d1:cb:fe:fa:
b2:2c:08:a9:27:76:fb:b1:64:2c:ac:e6:18:ef:57:19:d0:c4:
60:17:33:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 20:30:15 2024 by rpki-client on console-fra.rpki-client.org