Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S630I4efFU256siNFgtOEW9mzak.cer
File: S630I4efFU256siNFgtOEW9mzak.cer (raw, json)
Hash identifier: FpbSf5DTLKWVuFT28V1zMonUJXmttWLwlDudLeb9LN8=
Subject key identifier: 4B:AD:F4:23:87:9F:15:4D:B9:EA:C8:8D:16:0B:4E:11:6F:66:CD:A9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D9DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B30E5/7293C116868411EDB7BFA171C4F9AE02/S630I4efFU256siNFgtOEW9mzak.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B30E5/7293C116868411EDB7BFA171C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 22 Jan 2024 19:38:26 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 150699
IP: 103.60.188.0/23
IP: 2001:df1:bc40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121310 (0x1d9de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 22 19:38:26 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91B30E5/serialNumber=4BADF423879F154DB9EAC88D160B4E116F66CDA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bc:eb:c2:70:e7:58:70:c9:26:f7:bb:9d:08:
59:08:36:ee:e9:0c:50:a3:c4:fd:c3:b4:19:b2:c6:
9b:53:f6:98:01:cd:90:a6:90:1c:1b:79:8d:3c:f3:
af:88:77:ec:9c:e3:c6:56:ff:90:89:25:1f:1a:05:
6b:7c:84:61:b4:ad:6a:77:f9:18:cf:02:64:00:f0:
7f:48:ac:be:16:37:91:eb:61:d9:8d:63:61:3f:05:
5d:64:64:f3:b2:33:22:3e:b7:fd:a6:c1:5e:6f:0f:
e3:06:b3:c0:ff:2b:50:73:ea:02:30:11:b5:05:2f:
02:42:fb:e0:a8:52:0a:fa:d1:28:e6:1e:fa:1a:05:
da:8f:f4:c1:25:7a:98:d9:ad:be:10:78:4f:73:f9:
4f:67:0c:b1:0d:67:39:79:b1:c4:11:0f:12:79:a6:
85:6b:48:b7:55:cf:57:c3:ff:ad:ac:95:57:97:63:
e1:aa:d2:18:50:8a:98:02:b2:f0:b5:d0:a7:6e:c3:
ea:e7:30:81:db:f9:62:8d:83:c3:83:4e:e4:63:70:
d4:c0:6a:6c:ae:90:56:92:40:ef:50:5d:be:3f:e4:
1d:a5:f9:78:10:4e:34:98:cc:50:b9:bc:75:96:a1:
82:a8:0d:6a:fe:82:8d:81:2b:80:b8:80:64:81:93:
d3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AD:F4:23:87:9F:15:4D:B9:EA:C8:8D:16:0B:4E:11:6F:66:CD:A9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B30E5/7293C116868411EDB7BFA171C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B30E5/7293C116868411EDB7BFA171C4F9AE02/S630I4efFU256siNFgtOEW9mzak.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150699
sbgp-ipAddrBlock: critical
IPv4:
103.60.188.0/23
IPv6:
2001:df1:bc40::/48
Signature Algorithm: sha256WithRSAEncryption
7f:61:b9:1e:29:3a:0f:a0:d9:09:b5:e9:88:d5:c1:32:8b:0d:
5b:f1:d3:4b:f0:c7:c3:d0:f2:08:b2:26:ad:cf:d6:49:e5:a4:
19:51:5b:8b:fc:11:fb:b5:f8:e4:99:f1:d5:c7:4f:f0:d3:0a:
7b:34:67:40:be:8b:67:f0:bd:ca:f3:fa:25:a0:54:fe:ea:b6:
f2:38:bf:ff:3d:26:1a:39:1d:d8:33:4a:e2:5f:ff:ac:c9:aa:
c6:31:4e:68:43:71:24:91:01:bf:a8:18:bf:c2:5d:5f:b3:e4:
eb:df:e2:7c:aa:fe:ad:74:fb:22:96:52:e2:5b:39:d1:50:05:
3d:97:e8:09:b8:d7:fc:55:5d:86:4c:07:13:61:46:b6:74:65:
89:46:9b:f3:be:72:25:e1:52:e9:80:74:7c:96:27:7b:b2:0b:
24:a5:aa:48:1e:51:71:4e:d3:f4:61:72:ee:d4:b3:69:b5:e7:
bd:f2:2d:9f:e8:9c:1e:08:dd:76:95:83:81:f8:99:f4:26:ee:
2e:f3:bb:e8:69:bb:05:d7:d4:b3:8e:a6:18:94:0e:45:b0:89:
19:d6:f8:6d:bd:47:be:b5:45:c5:52:9d:58:1c:38:2e:b3:b2:
c0:cb:e4:f8:b0:88:06:56:b0:55:82:29:5c:9e:ca:36:d8:9f:
7c:20:32:77
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:23 2024 by rpki-client on console-fra.rpki-client.org