Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer
File: UMP9EvajMVgZtSurzBmPsNv9QTo.cer (raw, json)
Hash identifier: 0ykOYuggDodyRlk5yLRHVunJNRTpHLXW/DwE4JDRRUI=
Subject key identifier: 50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E270
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 03 Mar 2024 02:46:57 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 138041
IP: 103.161.136.0/23
IP: 2001:df5:c580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123504 (0x1e270)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 3 02:46:57 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91CE616/serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c9:dc:e8:57:5e:b8:f0:d5:00:cf:70:b3:c3:
18:46:04:82:0f:09:98:d4:c7:50:4f:7a:cd:24:e4:
cc:16:41:ce:99:3a:5a:72:9c:0b:b8:4a:3b:2e:ba:
6b:83:29:11:bc:d0:bd:c7:7e:9e:ec:f2:f5:e2:bf:
da:a6:bd:86:bf:40:46:8f:e8:56:eb:2f:de:ea:fb:
6e:68:f0:b7:a7:28:a0:38:82:83:4d:8f:b1:9d:d0:
e7:01:0a:33:2a:94:98:59:5f:7e:e2:5d:9f:06:d8:
66:d6:9d:c8:04:2a:85:0e:3f:50:39:c2:bd:46:12:
4b:45:ac:c0:3c:bd:ed:4b:a2:d0:a8:78:c3:42:83:
53:3a:2d:33:bb:5a:97:56:28:db:bd:87:c3:84:b7:
11:cf:8a:57:34:78:1d:f9:42:b9:ea:9a:52:b3:19:
bf:17:e2:ca:7c:9b:0c:07:b4:50:3a:da:fe:46:36:
57:c1:b0:fc:0e:21:90:61:45:6f:1e:f5:25:eb:e7:
c0:6e:8d:59:87:aa:8f:be:ba:6e:d7:b7:cf:bc:68:
16:ad:ac:86:e0:f4:98:38:20:b2:72:93:a1:c9:88:
b9:36:39:66:6e:a5:2a:93:13:74:ff:7b:6c:eb:03:
6c:8b:e6:b9:f4:ea:e8:97:a6:92:4f:cc:c4:ab:39:
91:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138041
sbgp-ipAddrBlock: critical
IPv4:
103.161.136.0/23
IPv6:
2001:df5:c580::/48
Signature Algorithm: sha256WithRSAEncryption
78:8a:c6:e2:dd:e3:f2:e2:e9:8a:a0:f7:0f:72:a6:e4:42:a1:
a1:e8:9f:8e:b6:5c:89:90:e4:fc:f8:1e:5e:01:bc:5c:d6:b5:
e3:cb:36:f3:01:32:69:49:32:8b:15:f9:00:d4:e8:81:ef:03:
d6:32:88:f9:51:bf:d1:ce:f6:a8:32:55:8b:f3:f5:cb:96:d5:
9a:0a:43:f1:51:3e:0a:9e:81:72:92:26:12:11:7d:17:e2:40:
84:bd:83:65:20:27:da:1f:3a:e8:55:03:b4:07:b0:22:9e:38:
71:31:54:8f:cc:b3:d0:64:12:9e:d8:b5:11:bc:ec:16:b8:85:
df:a2:30:8f:2e:11:47:e3:f4:66:24:98:ed:5b:5f:02:30:b4:
46:a6:91:a8:9e:e7:22:d7:ac:c9:b5:b0:fc:23:a9:4a:d8:ba:
24:62:35:ac:db:60:6a:cc:e1:be:ec:2c:e2:63:b9:c0:55:f7:
7f:79:da:62:b0:43:ff:b0:5a:69:ae:e6:2d:e0:1c:5a:f7:b0:
2a:4e:7e:dd:f5:a6:78:b6:ab:93:8d:13:a3:7f:92:5a:2a:82:
4c:4a:70:40:36:ff:63:b1:ef:d8:a1:3e:c4:b8:ee:66:86:60:
e3:9d:4e:8e:4c:76:d2:d8:da:e4:74:48:c9:98:e2:04:1a:9e:
a5:06:7f:e3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:32 2024 by rpki-client on console-ams.rpki-client.org