Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer
File: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer (raw, json)
Hash identifier: A1KipifGoNEZWXF520H8/6NPVV1O772wEwPQXK3ByfQ=
Subject key identifier: 45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EF28
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 May 2024 19:03:34 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 135393
IP: 103.100.102.0/24
IP: 103.100.104.0/23
IP: 103.216.132.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126760 (0x1ef28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 1 19:03:34 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9178580/serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d7:a4:b8:78:03:c2:28:89:64:ae:e6:76:6a:
61:65:05:fd:f1:67:20:c5:2a:9b:53:49:2d:ce:02:
25:cf:3d:0a:e6:94:63:1d:f4:96:ba:14:a0:7b:e2:
33:8f:8d:69:c4:8b:5a:8c:f4:aa:ce:a8:40:ff:b6:
9b:6c:66:8c:ec:2a:d5:96:a3:9a:af:9d:2e:cb:4a:
85:a9:83:62:7b:2a:61:af:b1:f1:6b:cc:b6:cb:aa:
9e:16:1f:31:6f:49:70:d2:48:84:26:5d:63:71:ea:
55:7c:d3:b6:cd:9a:4c:ea:e4:d8:15:98:39:bc:05:
d0:f9:86:03:04:b8:53:d4:07:a0:e0:24:b4:d9:39:
d9:35:b1:d0:e7:2d:85:a0:5f:eb:5a:26:07:00:a3:
dc:c2:d3:2a:60:62:ce:73:38:52:1e:e9:82:d2:e1:
26:b2:c8:1a:9d:21:5c:b7:dc:0b:63:82:18:f4:48:
b0:da:78:84:7d:bb:a2:db:27:f2:94:83:6c:f9:55:
1f:a3:ff:69:69:83:9a:ee:ed:5d:62:ee:37:21:23:
a2:42:48:a4:85:7c:a4:c2:35:50:b4:ae:86:57:b4:
0e:ba:2f:f6:46:da:40:94:38:58:d3:f4:22:15:8d:
3b:25:10:dc:82:d6:5c:4c:0f:8c:7d:3a:54:c0:f6:
f8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135393
sbgp-ipAddrBlock: critical
IPv4:
103.100.102.0/24
103.100.104.0/23
103.216.132.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:5f:1f:39:5c:87:da:3d:04:54:99:28:32:c8:08:c6:52:53:
cc:0a:c3:41:63:5c:53:ff:95:7b:21:ee:e7:c8:1f:fd:ac:70:
1f:61:5d:9f:5c:9b:4d:28:fd:44:cf:b4:ae:b4:fa:c8:aa:3f:
4f:78:fd:1f:54:f0:df:00:9d:d4:43:b7:c4:08:ac:cc:c3:02:
46:f9:8f:59:59:e2:25:1b:eb:0f:3e:62:f9:a0:eb:78:7a:5e:
f2:ac:72:21:42:46:10:f4:cd:c4:74:72:62:ea:85:12:84:cd:
a8:28:3d:31:27:5a:af:7a:3f:80:5a:ca:a3:ed:55:03:fa:76:
c7:18:10:e6:65:fa:c6:b2:90:75:34:3d:59:9c:c6:f5:e2:73:
65:cf:02:1d:41:b7:63:1e:1f:5b:34:fd:c1:82:90:e4:df:b7:
aa:33:70:e6:53:af:38:ed:c7:a8:78:2d:04:78:bd:51:db:05:
62:3c:4c:60:bf:81:e9:61:18:1f:a6:0c:f2:42:41:59:f6:72:
08:d1:69:0a:1f:36:d7:b3:5a:ac:87:63:93:aa:59:f1:7d:07:
80:35:04:c5:ac:1d:26:44:1f:fb:4b:24:6f:4b:36:d5:f8:68:
8a:8f:5c:9e:63:8f:ec:b6:66:2e:75:35:74:4f:ff:72:84:9e:
ef:76:31:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:34 2024 by rpki-client on console-fra.rpki-client.org