Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer
File: UgGonTDEgplFBBjJVrh3JJcG6Vc.cer (raw, json)
Hash identifier: VG19pOAl13caDdtfn3hpYlMNE3O8SvHXOjdvJwldr1o=
Subject key identifier: 52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B83C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 22 Aug 2023 19:39:14 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 142633
IP: 103.171.138.0/23
IP: 2001:df7:4880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Apr 2024 21:54:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112700 (0x1b83c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 22 19:39:14 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91E7E94/serialNumber=5201A89D30C48299450418C956B877249706E957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0d:54:b5:bd:d8:a5:03:6c:6e:dc:34:bb:13:
c7:4f:f2:37:78:d2:c6:8d:36:71:cb:8d:a3:21:14:
83:ce:cf:f2:9f:4a:b3:8e:ef:fd:7a:7e:89:1e:9a:
37:e8:57:cc:3d:a9:01:0a:23:b9:a3:2e:f6:6e:a8:
34:6f:ba:c0:05:3e:05:85:a5:8e:4d:ae:cc:4d:fd:
35:58:ca:67:8e:17:2a:ba:8b:a0:45:30:33:a8:a8:
ba:0b:a0:8e:69:f4:89:80:30:49:2c:b7:19:23:3b:
3b:a0:7f:87:f0:2f:d9:2f:cb:2c:49:54:76:7d:b6:
2c:ac:4c:47:96:81:dc:c3:9c:e7:41:33:f8:dc:c1:
e5:86:83:b8:dc:76:cf:9e:23:3b:c0:36:29:f5:15:
93:6c:be:e2:d1:64:76:8c:ec:ee:a2:59:b1:6c:2d:
f1:75:16:24:bf:01:5b:de:c7:64:25:69:fd:f2:e6:
6d:51:a0:ac:1a:33:ce:38:cf:a9:ec:68:79:6a:aa:
96:01:5b:0e:bc:c6:9b:02:76:1c:5a:5f:87:ec:1d:
b4:47:63:7b:ad:d4:dd:98:d8:e2:0d:0d:5e:11:1f:
1a:47:e7:5f:75:73:1d:9e:6c:68:fa:43:44:de:bf:
f8:54:85:b5:99:85:1d:dc:dc:0a:4b:ac:26:c1:99:
0b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142633
sbgp-ipAddrBlock: critical
IPv4:
103.171.138.0/23
IPv6:
2001:df7:4880::/48
Signature Algorithm: sha256WithRSAEncryption
77:96:1e:0a:60:8b:91:af:cb:8a:dd:4f:08:b9:59:9d:00:41:
3d:4d:ae:fe:06:cd:8d:5a:e5:a5:f6:af:be:03:72:a0:1d:8a:
c1:fa:16:84:9c:fe:d2:a8:e7:35:cb:82:ee:db:82:da:15:24:
58:71:84:f4:e2:db:30:83:2b:10:62:98:33:6a:16:ab:95:96:
c5:b8:ce:a4:b4:3e:2a:52:66:e9:f5:43:c2:a6:09:04:82:16:
6e:8c:94:b2:fa:44:79:25:5c:bc:6e:ae:7d:6a:96:99:cb:fd:
ca:23:3a:7a:42:43:33:e1:48:4c:26:a8:b2:5b:4f:09:78:70:
d8:99:1d:2b:a0:75:36:30:c0:69:b7:7d:1c:7a:69:44:64:03:
eb:e6:13:27:87:78:64:0c:63:72:40:19:ae:86:45:a9:2c:a9:
56:ad:d2:84:17:79:fc:c9:42:73:ba:fc:92:ec:04:e8:a1:e4:
5c:b7:af:b7:e0:7f:e0:44:e2:65:f8:93:f8:7f:bc:0c:4c:6f:
d2:71:b0:08:a3:c2:b6:bb:fa:38:94:74:95:59:12:83:c5:a5:
8e:8a:34:ee:eb:66:b9:2f:e7:dd:d7:02:ca:e0:56:f7:4d:37:
f6:49:a2:db:23:48:c4:b8:e0:84:ef:4f:6d:a7:3f:44:01:2a:
f4:90:0d:f2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Apr 23 22:44:49 2024 by rpki-client on console-fra.rpki-client.org