Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYkr5bC0q8YCVEX0A5_Hldi6WOI.cer
File: UYkr5bC0q8YCVEX0A5_Hldi6WOI.cer (raw, json)
Hash identifier: Yy0q90SLM+7hbMa83zpjh+lKZnC+Z3ZSayDj+IyGISk=
Subject key identifier: 51:89:2B:E5:B0:B4:AB:C6:02:54:45:F4:03:9F:C7:95:D8:BA:58:E2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FB39
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 26 Jun 2024 04:39:57 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 38716
AS: 135302
IP: 103.9.160.0/22
IP: 2402:1300::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 24 Oct 2024 20:54:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129849 (0x1fb39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 26 04:39:57 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9139A90/serialNumber=51892BE5B0B4ABC6025445F4039FC795D8BA58E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2f:14:02:84:e1:f3:10:cb:82:de:5a:e8:03:
3c:b5:7d:1e:59:07:26:9c:1f:56:f5:fb:b3:45:96:
46:91:f3:a2:4d:ee:b2:a3:d7:fa:81:14:f6:1e:bc:
17:54:35:08:97:5a:3f:a4:87:9c:91:00:3d:8d:6e:
a5:ca:1e:f1:ab:a6:8d:0a:8b:9a:18:c3:66:75:92:
4f:22:57:1c:6a:8d:05:54:24:89:7a:e9:75:a7:98:
97:fc:a2:ff:29:c8:a7:92:3b:a1:81:01:9b:8f:73:
38:d9:1e:1d:4f:e0:3b:90:25:9b:59:c1:f7:d4:d5:
27:58:27:7c:87:14:4d:17:e9:3d:50:58:dc:69:df:
eb:ae:41:35:38:70:27:2c:3c:38:33:7c:b0:4a:60:
b6:79:0e:a9:0d:1f:24:1e:09:33:5b:89:33:f9:66:
ae:fa:45:dc:99:4d:49:f6:e1:90:46:bf:42:e6:76:
42:60:b8:a6:b4:5c:60:0c:42:86:0d:ca:65:95:fa:
69:44:91:f3:6e:42:d0:c0:3f:f2:f1:6e:d0:c5:c6:
0f:e4:db:62:e2:c9:71:5d:56:00:31:f3:f2:24:8f:
89:0f:3a:52:c7:71:65:39:b3:27:ec:23:66:97:cd:
e9:41:5f:a2:95:51:7d:73:92:64:c5:21:5f:e4:fb:
6f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:89:2B:E5:B0:B4:AB:C6:02:54:45:F4:03:9F:C7:95:D8:BA:58:E2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38716
135302
sbgp-ipAddrBlock: critical
IPv4:
103.9.160.0/22
IPv6:
2402:1300::/32
Signature Algorithm: sha256WithRSAEncryption
76:f1:08:a3:51:71:ef:a2:c9:7d:5c:3b:05:33:f5:02:fd:25:
80:2c:cc:58:c8:5c:d6:fe:10:d7:69:4e:a6:5e:61:5c:d8:1b:
d0:a9:87:7b:fc:46:0d:0c:e5:14:a8:d2:8e:46:9c:d6:79:d1:
47:35:89:49:d8:0a:82:52:37:a6:ff:15:0c:15:9a:5c:d8:72:
1b:dd:39:21:b3:7e:c3:b8:99:a2:ec:94:23:b2:dc:b1:dc:80:
98:8f:0a:5e:30:a7:8a:17:eb:5b:da:a1:9d:24:37:ab:69:c8:
c3:f3:c9:e1:0a:3e:7a:03:92:62:c7:df:07:7c:4b:81:ad:3c:
c1:bf:d5:c3:cf:1d:e7:79:49:60:f3:59:f8:0f:92:26:f5:64:
50:77:b7:3b:18:bf:13:b1:e2:6c:82:3c:02:84:b2:f7:8e:9b:
e6:dd:a8:38:b5:7d:5b:14:62:d2:fc:4e:3a:b7:3a:0a:f4:a5:
4a:49:ff:1c:1e:3e:57:ba:aa:7e:59:93:76:0d:a0:74:6e:88:
ff:c5:ae:c2:8b:09:58:00:3e:7b:dd:6b:8b:41:00:bd:91:f8:
77:e0:88:c7:2c:99:e4:de:64:d2:e2:54:c6:26:c2:ef:90:64:
0d:bd:fc:cb:70:f2:27:ff:ff:ec:19:25:61:f5:a4:b5:0c:f8:
5a:7f:ac:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 23:50:57 2024 by rpki-client on console-ams.rpki-client.org