Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.cer
File: Ru8EvxGYvg4qMTqnrQqw_H4IHEU.cer (raw, json)
Hash identifier: 9u196WqVibHKV5C9QQSve2GEjgRAfoyZ4Nm/VN24O1Y=
Subject key identifier: 46:EF:04:BF:11:98:BE:0E:2A:31:3A:A7:AD:0A:B0:FC:7E:08:1C:45
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02108D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Sep 2024 18:48:54 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 23735
IP: 103.233.60.0/22
IP: 116.206.172.0/22
IP: 202.49.164.0/23
IP: 202.49.168.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135309 (0x2108d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 30 18:48:54 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9188F45/serialNumber=46EF04BF1198BE0E2A313AA7AD0AB0FC7E081C45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:51:f8:01:c3:8a:39:dc:42:ac:1a:ea:58:08:
59:8e:67:8f:26:f2:92:1d:a6:20:38:70:77:8a:af:
89:be:b0:42:62:3d:da:a9:4f:4a:dc:4b:28:dc:17:
9a:5f:65:86:17:ed:e6:10:c9:53:b7:8e:39:12:72:
cd:39:d4:4b:27:c7:9b:9c:9c:20:4a:d3:1d:54:89:
29:6e:be:c4:74:09:5c:a8:fa:1b:88:33:1e:b4:c8:
1f:bb:36:68:86:24:26:60:2d:a7:2d:f6:8d:fd:85:
30:04:87:e4:1b:2c:28:c0:c7:62:b3:c1:1c:1f:b3:
34:46:9e:8c:a4:cc:43:88:d4:aa:2e:a7:d6:a8:11:
0e:5d:16:6f:75:10:b8:5c:4d:7b:df:cb:4e:5a:fc:
ab:ae:2c:1c:ea:12:80:e2:1c:f4:a2:ea:27:71:9a:
db:09:e1:ad:1c:2a:e4:55:bf:08:d9:cd:4c:90:ab:
85:88:65:fb:da:32:5b:c4:11:15:99:66:b7:e9:d6:
24:3a:bc:c1:ba:22:53:82:99:49:b3:e7:1a:ab:4e:
93:8e:e7:1d:a8:97:05:ce:8b:6f:85:b2:58:fa:f6:
f8:ae:e0:82:8d:64:a7:31:b9:4f:f1:69:26:05:1e:
67:bb:e2:2f:16:99:5d:8d:31:ae:a5:88:5f:b7:a8:
f8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:EF:04:BF:11:98:BE:0E:2A:31:3A:A7:AD:0A:B0:FC:7E:08:1C:45
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23735
sbgp-ipAddrBlock: critical
IPv4:
103.233.60.0/22
116.206.172.0/22
202.49.164.0/23
202.49.168.0/24
Signature Algorithm: sha256WithRSAEncryption
67:55:3b:13:ce:f6:b1:83:68:28:b0:d5:91:f0:4a:72:8a:e4:
d9:b9:4f:db:dc:e7:90:b5:96:b4:29:65:42:be:a3:a6:94:59:
60:52:9b:5b:96:14:35:2b:1a:f3:a4:88:63:25:1b:e7:3d:0d:
bd:fd:c7:74:53:e0:43:bd:74:78:51:95:a1:4f:18:56:a1:0d:
8c:b8:d0:7a:50:e2:87:4c:0d:ef:92:ff:64:30:e8:d8:8f:a7:
8b:15:b8:8e:aa:d6:58:41:76:ac:f6:e8:a7:96:8d:dd:ec:65:
fb:71:41:98:bb:49:91:0e:ef:e7:db:73:70:4f:4c:c2:b1:38:
4f:3d:ce:20:c4:fe:38:2b:b1:cf:d7:77:03:40:54:25:2e:08:
f2:53:1f:15:b3:3f:ed:bf:17:e1:bb:f4:66:66:e6:a1:41:d2:
bb:00:e0:b8:c1:32:37:bd:90:89:78:9e:35:2f:f4:5a:c0:be:
6c:7a:72:3e:28:23:1c:8c:7c:f2:b5:33:3a:5b:cb:c2:79:da:
6b:f5:d6:63:73:df:0b:6f:eb:f2:e7:3b:24:0c:6a:1e:a4:42:
36:9c:01:59:ff:12:ad:77:65:93:84:3c:cd:9f:43:23:52:c2:
7c:da:e4:42:9e:ef:2c:f9:8d:35:ff:1f:19:bf:7f:18:1f:4b:
22:47:4c:08
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:40 2024 by rpki-client on console-ams.rpki-client.org