Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer
File: SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer (raw, json)
Hash identifier: I3G2RC58XuFNpZSJ2WRNUivMv/bsLrO2875kgFC2k2Q=
Subject key identifier: 4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F4A5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 May 2024 01:22:42 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 149832
IP: 103.187.136.0/24
IP: 2001:df0:c140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128165 (0x1f4a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 30 01:22:42 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91FB0D0/serialNumber=4B3C6956B044900100858C0DE50EB9A462B08CC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:05:ae:5f:db:9f:c9:f7:64:e5:bd:07:50:af:
40:71:57:67:8a:52:c4:b0:07:15:ed:ec:f6:96:d2:
7d:90:73:bf:3f:59:5d:46:87:12:2b:ec:3f:38:bf:
3c:3d:37:1b:bd:62:e4:6f:21:93:7c:05:59:ac:19:
53:f4:19:24:4b:4f:7b:37:e0:fd:79:71:e3:a3:8d:
14:b8:d8:ef:ce:56:7c:0c:46:da:28:90:e1:80:09:
35:8c:50:b9:2a:84:cf:f8:4b:96:a1:64:4b:b1:fa:
9a:27:4d:b5:d3:47:ca:90:00:cf:a7:70:b2:8d:5f:
4a:21:c6:1d:1c:a9:dc:35:07:65:82:3e:7a:6c:95:
64:a6:2d:cf:9d:e9:d6:dc:e6:7f:d3:c3:0f:ae:1d:
40:6b:d0:8e:8d:01:91:77:88:3c:6b:d4:ed:e7:93:
55:5d:c4:eb:74:87:55:88:2c:9b:d7:b5:7f:8e:5b:
50:51:01:b0:d7:94:20:e1:7e:24:f1:7e:34:4a:0a:
ad:08:b2:0a:93:25:af:d3:7d:91:86:bc:4d:81:01:
90:7c:bc:b9:36:43:aa:72:c5:37:eb:67:f2:08:75:
d5:29:8d:6a:66:7e:18:39:a7:62:39:07:fa:40:d6:
1c:91:d7:4d:1c:2c:36:35:79:f9:41:2a:dc:15:89:
80:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149832
sbgp-ipAddrBlock: critical
IPv4:
103.187.136.0/24
IPv6:
2001:df0:c140::/48
Signature Algorithm: sha256WithRSAEncryption
3b:3d:78:83:a6:86:36:ee:2f:24:e0:f8:33:c9:dd:54:16:1a:
24:df:8a:87:7b:80:1a:86:6f:d6:95:2d:d5:01:04:5f:e6:b3:
54:dd:41:56:49:12:d4:b6:ed:ef:6e:a1:40:11:65:d6:ad:ae:
6d:57:84:41:99:6d:b3:da:47:e5:24:51:fa:0a:c0:3e:27:1e:
5c:df:45:f9:d0:a4:23:3e:9a:0e:91:7b:35:4b:2a:1f:48:d5:
93:cc:40:75:10:30:bd:0a:d8:34:4e:ec:85:c4:9b:ca:cf:8f:
7a:ba:3e:91:af:09:25:23:4b:57:08:e0:db:80:55:cd:84:b8:
0e:cc:46:02:c8:f8:05:36:2e:d5:5a:da:ed:02:67:bf:dc:7b:
0d:f0:34:cc:69:96:ce:68:e5:c8:a9:41:4d:3d:0b:b1:43:68:
b9:d8:06:3e:85:df:f9:01:88:ce:a3:44:6f:1a:08:9f:c1:2a:
22:c5:09:59:e1:95:e9:a3:ef:22:75:24:5d:db:78:34:e1:2d:
85:d0:05:66:fb:26:0b:ac:0e:29:d6:e1:ed:a9:32:dd:90:52:
61:b8:76:73:c2:88:d4:3e:7c:56:7a:d5:28:29:1c:ac:6c:aa:
10:1e:70:1a:46:be:6e:1a:e8:fd:7f:ed:32:26:59:cb:e1:d7:
32:3a:8e:f8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:31 2024 by rpki-client on console-fra.rpki-client.org