Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer
File: SBcgosjubOySR3dhkymcEP63ykQ.cer (raw, json)
Hash identifier: hsAJn7uADjRSNrD4pakaupbJptTjobE+uolRYpLD1/w=
Subject key identifier: 48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C61C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 26 Oct 2023 05:27:15 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 151652
IP: 103.249.203.0/24
IP: 2001:df2:ca40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:15:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116252 (0x1c61c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 26 05:27:15 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:41:97:7a:95:9e:23:80:12:6d:5f:09:0e:76:
62:6a:14:7b:a7:5d:53:ad:8e:ab:35:65:ab:0a:d3:
01:c1:13:69:f4:b6:0e:61:25:84:9f:66:d7:1a:c6:
a4:52:ad:08:2f:b8:fa:d4:c1:3b:11:2a:26:61:50:
a0:c0:a8:23:56:2c:cd:19:61:c4:1e:10:e6:ee:bb:
56:c7:6e:07:42:0f:47:70:c1:9a:a8:4f:1e:8a:31:
92:a8:5b:f9:bf:af:00:4a:f0:b1:c5:3e:80:18:af:
74:de:be:ad:b7:ba:e4:c5:98:ec:0d:e2:f7:73:fb:
60:eb:b3:f1:a5:a2:0f:7a:05:ef:a7:a5:4e:7a:1b:
af:87:dc:9f:ae:de:ba:4b:45:a8:72:cb:08:d4:98:
e0:11:cd:dd:b0:f8:27:b5:0e:98:fd:27:84:d1:b4:
3e:7c:bc:08:d4:46:3a:09:60:b7:d5:ee:7e:2b:d5:
39:64:ba:55:28:09:67:05:a9:24:fc:73:90:f1:fe:
c7:7e:e7:bc:c2:63:86:82:cd:ba:85:f3:6b:4e:56:
99:12:38:97:1b:41:cc:65:66:c8:da:30:7b:06:79:
f3:8e:14:be:dd:86:61:50:13:45:13:76:e4:79:7e:
42:15:76:64:38:60:3b:79:ec:2a:91:ff:36:5f:e7:
71:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151652
sbgp-ipAddrBlock: critical
IPv4:
103.249.203.0/24
IPv6:
2001:df2:ca40::/48
Signature Algorithm: sha256WithRSAEncryption
67:5b:86:16:af:5c:29:7a:96:aa:94:79:4a:2e:93:38:0d:cc:
98:7f:9d:90:47:0f:42:63:ec:9c:21:b6:a7:62:31:ac:83:c4:
7d:44:01:a7:c6:f4:6c:b3:76:84:1b:a7:a4:e6:18:4d:4e:ad:
18:f5:c6:99:48:37:fc:c5:4e:63:f6:9f:4c:03:d7:f2:96:72:
54:92:e9:32:21:fb:4c:47:77:d6:2d:6b:79:d9:71:21:4e:3b:
5c:2a:39:2f:2f:b3:c7:d0:46:50:b9:08:a6:7f:56:7f:c5:9a:
7f:5b:63:01:84:23:c2:1e:c5:86:7d:c6:76:6a:fd:a5:08:56:
b5:3c:bf:5a:05:56:fa:6d:7f:b0:ff:ff:21:d9:c9:68:af:79:
88:85:0f:c2:f6:f9:db:0e:ad:02:f7:76:66:c4:91:ce:b0:61:
cc:f5:da:60:07:cd:e5:5b:f4:65:94:2f:d7:ad:55:44:ca:d4:
f9:ed:43:99:b9:74:61:af:aa:2a:3c:9f:54:99:81:20:4f:e4:
9f:ba:71:ec:1b:cc:38:10:3c:a5:0f:b4:1c:c5:80:a7:d0:72:
6d:b6:c9:84:c0:f8:b2:f8:d7:33:f3:98:53:a4:45:2c:71:f3:
43:f2:d7:3a:11:cf:1a:58:d6:fd:68:cb:91:0a:59:40:06:a6:
a9:7f:c7:31
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 01:07:06 2024 by rpki-client on console-fra.rpki-client.org