Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SXppmDQJrXDCF1ZAccz1vjTFG8c.cer
File: SXppmDQJrXDCF1ZAccz1vjTFG8c.cer (raw, json)
Hash identifier: lT8D6ZQmhYggxfosy1NSp+HM94UNXdy82j4zvJ8nuKU=
Subject key identifier: 49:7A:69:98:34:09:AD:70:C2:17:56:40:71:CC:F5:BE:34:C5:1B:C7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D9E5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/SXppmDQJrXDCF1ZAccz1vjTFG8c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 22 Jan 2024 20:41:00 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 149042
AS: 149044 -- 149046
IP: 103.177.80.0/23
IP: 2400:38e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121317 (0x1d9e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 22 20:41:00 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91C751F/serialNumber=497A69983409AD70C217564071CCF5BE34C51BC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ab:b7:1d:56:52:28:16:a0:1e:90:72:16:09:
d2:92:8b:ed:49:c5:1c:fb:c0:2c:71:dd:06:d2:38:
93:08:b8:f4:d2:9f:26:f2:b4:25:e2:43:d8:8b:a1:
f2:9a:5a:b4:52:58:0c:42:8b:25:fe:cc:0c:86:a7:
db:8d:c8:1c:fc:af:36:fd:cf:17:5b:e3:13:a7:4f:
a6:4d:98:ed:17:0d:a2:ad:6c:59:48:5b:43:98:73:
a4:58:27:cd:72:96:7d:e7:1e:97:1b:90:05:57:31:
d7:3a:ec:8d:a2:d5:8a:14:48:05:57:1d:16:2b:1e:
f9:bb:71:51:c9:24:a9:50:f9:70:f7:79:f7:38:ba:
46:7d:89:2d:46:0a:45:b1:7a:ad:91:61:e3:96:86:
86:4e:c9:47:2d:04:e1:1e:b8:61:bd:3a:9c:6f:18:
88:07:04:38:a6:e0:65:4a:84:f5:00:44:9d:ce:c6:
7e:54:09:4b:d2:e9:f6:7a:94:66:4c:9f:72:a7:9a:
f3:d4:5f:d2:38:b9:e8:d9:d2:4e:37:60:39:84:33:
5f:71:03:85:71:60:ce:20:3c:d6:93:f1:e9:72:9d:
2b:c9:33:68:5b:3a:68:14:52:b8:dd:bc:09:f6:c4:
46:3f:74:eb:a6:6b:11:be:ab:c9:9f:34:a5:a0:79:
5f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:7A:69:98:34:09:AD:70:C2:17:56:40:71:CC:F5:BE:34:C5:1B:C7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/SXppmDQJrXDCF1ZAccz1vjTFG8c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149042
149044-149046
sbgp-ipAddrBlock: critical
IPv4:
103.177.80.0/23
IPv6:
2400:38e0::/32
Signature Algorithm: sha256WithRSAEncryption
5e:c2:0a:6f:9e:82:09:dc:70:bb:bf:4a:d2:7a:d6:05:e1:06:
90:70:18:9f:7f:d1:55:eb:42:d1:28:87:93:4a:4e:f2:82:9e:
48:48:45:7b:b0:9e:90:ad:bf:68:49:a2:cd:0e:92:7f:89:d9:
ad:f5:fb:6c:05:89:b5:d7:6f:77:06:54:f2:0a:36:63:db:49:
d8:ef:35:01:83:19:64:05:be:22:9e:a7:99:9b:89:a0:7e:54:
2b:a8:21:c6:ab:f6:e0:95:ce:93:09:d0:62:ea:78:9f:81:f7:
2c:4d:59:5c:c9:48:39:cd:6d:ae:0f:66:23:19:f1:26:4d:58:
a2:69:2f:88:b1:05:7c:2c:16:e5:e8:c5:64:fc:f4:0c:6a:5c:
3d:94:2e:74:6a:ed:50:e7:94:f4:b6:5d:0b:c9:07:c9:d7:59:
27:53:0c:64:2c:ba:da:c2:65:f6:1a:b4:62:40:9e:aa:cd:c6:
01:de:22:3c:6d:b2:bd:06:ec:88:4f:67:40:97:19:f6:db:4b:
76:3a:b6:42:6f:f2:92:bc:6f:7a:6b:87:47:d1:45:b7:19:00:
3e:52:b6:f4:46:1b:1a:e9:f2:f3:06:08:96:f2:73:64:e7:89:
69:d7:05:de:e2:7e:8c:93:7b:77:b0:f3:2f:c6:35:99:95:a1:
6f:c7:9a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:41 2024 by rpki-client on console-ams.rpki-client.org