Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer
File: SBcgosjubOySR3dhkymcEP63ykQ.cer (raw, json)
Hash identifier: ocwzlZiS7TBX3BCUJ5ZSXljJSn0l0P/5SA17bdLk7yM=
Subject key identifier: 48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020FE2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 26 Sep 2024 23:11:05 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 151652
IP: 103.249.203.0/24
IP: 2001:df2:ca40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135138 (0x20fe2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Sep 26 23:11:05 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91FD2E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:41:97:7a:95:9e:23:80:12:6d:5f:09:0e:76:
62:6a:14:7b:a7:5d:53:ad:8e:ab:35:65:ab:0a:d3:
01:c1:13:69:f4:b6:0e:61:25:84:9f:66:d7:1a:c6:
a4:52:ad:08:2f:b8:fa:d4:c1:3b:11:2a:26:61:50:
a0:c0:a8:23:56:2c:cd:19:61:c4:1e:10:e6:ee:bb:
56:c7:6e:07:42:0f:47:70:c1:9a:a8:4f:1e:8a:31:
92:a8:5b:f9:bf:af:00:4a:f0:b1:c5:3e:80:18:af:
74:de:be:ad:b7:ba:e4:c5:98:ec:0d:e2:f7:73:fb:
60:eb:b3:f1:a5:a2:0f:7a:05:ef:a7:a5:4e:7a:1b:
af:87:dc:9f:ae:de:ba:4b:45:a8:72:cb:08:d4:98:
e0:11:cd:dd:b0:f8:27:b5:0e:98:fd:27:84:d1:b4:
3e:7c:bc:08:d4:46:3a:09:60:b7:d5:ee:7e:2b:d5:
39:64:ba:55:28:09:67:05:a9:24:fc:73:90:f1:fe:
c7:7e:e7:bc:c2:63:86:82:cd:ba:85:f3:6b:4e:56:
99:12:38:97:1b:41:cc:65:66:c8:da:30:7b:06:79:
f3:8e:14:be:dd:86:61:50:13:45:13:76:e4:79:7e:
42:15:76:64:38:60:3b:79:ec:2a:91:ff:36:5f:e7:
71:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151652
sbgp-ipAddrBlock: critical
IPv4:
103.249.203.0/24
IPv6:
2001:df2:ca40::/48
Signature Algorithm: sha256WithRSAEncryption
6f:22:dc:1c:0b:fe:e3:47:c6:a3:6b:46:fb:b7:9a:9e:3a:d1:
72:dc:5a:c9:52:25:73:9a:9c:d6:32:5f:0c:46:7a:a9:f6:a6:
47:31:1b:6e:f2:c0:3a:d4:3f:48:92:66:5e:fc:4d:de:b8:7e:
c9:91:51:2e:da:e4:69:49:71:44:31:b2:61:8b:ce:9b:a5:66:
58:a1:1a:71:fa:72:8e:64:0e:b7:61:82:9b:d3:c6:80:af:a9:
5e:72:06:c7:25:06:0f:f2:cd:aa:c4:3d:6c:80:78:dd:cb:9b:
1a:f8:4c:d5:5d:c3:3c:3c:b6:6a:23:76:50:cc:91:47:f3:9c:
39:c2:42:9f:15:3f:ae:70:19:12:5d:40:36:57:96:4a:92:bc:
e7:27:14:91:c8:3e:88:cb:80:9a:6b:e6:37:f5:ee:c9:16:1b:
da:ab:b9:37:84:28:7d:6c:ca:a7:30:15:10:c1:36:f7:53:fb:
09:c0:38:7f:9d:6d:f0:12:f2:ce:23:f4:ca:f4:8e:72:75:5c:
9f:91:9d:1d:d3:67:90:55:13:87:dc:04:57:a8:ea:ac:7a:ef:
2d:b3:80:3c:2f:03:f8:4a:5c:64:e6:37:5e:6d:f8:88:50:a3:
6d:f3:2a:0e:16:86:b2:4f:25:00:8e:28:15:8f:42:4e:5f:60:
a2:88:dd:f7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:01 2025 by rpki-client