Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SU13HlEeEgBTuwmx8nS9j1nXOqg.cer
File: SU13HlEeEgBTuwmx8nS9j1nXOqg.cer (raw, json)
Hash identifier: C6VAnTAdJPPG9lHavEjhMvBEp1cq2j0LPYl6CTB4jlQ=
Subject key identifier: 49:4D:77:1E:51:1E:12:00:53:BB:09:B1:F2:74:BD:8F:59:D7:3A:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F36C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 23 May 2024 19:07:50 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 137842
IP: 103.115.156.0/22
IP: 2402:ea40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127852 (0x1f36c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 23 19:07:50 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91C4614/serialNumber=494D771E511E120053BB09B1F274BD8F59D73AA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bc:0f:fc:49:17:95:fd:eb:d0:a7:37:51:10:
15:95:f5:4a:db:13:b6:f2:ec:57:66:f6:27:93:d0:
3c:cf:12:39:06:d4:ae:53:dc:ac:33:07:9c:a7:ae:
3f:e0:c5:9c:3c:52:57:2d:4e:08:28:eb:75:31:aa:
da:5b:3d:e6:d4:50:57:4d:09:e9:63:83:66:c2:90:
cd:9c:df:bb:03:ee:b9:7b:53:8b:2f:4b:5b:72:8c:
91:7f:dc:0b:c9:59:b5:e0:40:6b:ef:7a:e4:d8:2d:
49:1a:ee:df:ad:0f:f5:ee:13:d4:7e:76:16:0d:26:
30:e7:6c:87:9d:fd:03:4a:38:cb:9f:18:b7:5a:d9:
0e:64:00:f8:f2:c0:b2:9f:8d:e0:03:46:11:d7:df:
9e:5c:8e:80:67:ac:a8:fa:f7:f1:cc:2e:b2:71:3c:
3c:96:9d:a5:e5:c0:1c:b4:9a:c8:29:68:66:1e:c3:
1e:5b:80:bc:a4:64:75:55:ef:d0:f1:62:3c:2d:d0:
ba:87:4b:eb:7a:a2:79:a3:df:4e:01:3e:b6:20:ac:
d2:50:7b:03:2e:2e:ea:19:d8:19:e6:70:a8:c0:b8:
f9:a3:7c:ee:dd:4b:47:72:7e:14:79:13:5e:98:b4:
ee:5d:69:a0:e8:ef:cd:2a:46:97:69:95:08:a1:c1:
ff:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:4D:77:1E:51:1E:12:00:53:BB:09:B1:F2:74:BD:8F:59:D7:3A:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137842
sbgp-ipAddrBlock: critical
IPv4:
103.115.156.0/22
IPv6:
2402:ea40::/32
Signature Algorithm: sha256WithRSAEncryption
85:e1:47:f7:2d:38:78:b2:0b:78:14:17:05:f8:c8:f7:56:7a:
4e:42:fa:4c:ec:21:2c:34:cd:f8:51:a9:7f:52:e2:a1:4c:25:
1b:7c:74:a4:44:db:e7:cf:a6:a0:6e:0a:f4:05:1f:8b:96:45:
e5:7b:cb:7a:8d:f8:a5:8d:58:12:55:5c:49:8c:02:ff:cb:cb:
f2:11:3b:aa:87:d9:35:4b:14:eb:fc:6e:61:51:93:b1:c3:b3:
d4:0c:8a:54:43:d7:6b:18:55:87:f0:a4:7d:80:43:83:64:72:
62:3f:2f:5b:be:73:0e:86:6a:1b:47:ae:21:eb:d6:11:55:07:
93:b9:21:c4:87:15:02:e1:7f:21:05:fc:02:b6:2f:40:f7:e8:
9b:da:0e:c1:6f:22:f9:dc:e4:97:ab:e7:0a:69:07:5e:cd:19:
16:79:40:02:1c:22:8a:2f:a2:27:3f:65:9d:6f:8a:5b:0a:8c:
2f:11:cc:f6:f4:72:21:d2:32:d7:aa:8f:4f:72:90:56:24:12:
1f:42:93:b4:44:b2:f0:66:d0:4e:43:43:d3:45:b3:e7:0b:7b:
f8:8a:aa:1b:7b:ee:55:f8:f5:34:bb:78:dc:27:2b:49:7d:1d:
43:17:48:45:1e:05:c3:e0:02:3b:96:05:ef:94:d7:9e:f8:ea:
4b:f5:9e:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:30 2024 by rpki-client on console-fra.rpki-client.org