Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VELdytiYUdlLqsCrc5LOQZohisw.cer
File: VELdytiYUdlLqsCrc5LOQZohisw.cer (raw, json)
Hash identifier: vR2AlzAA1DHOAKxYjlaIt94gYVkk4gvbS2F4HeAvVAk=
Subject key identifier: 54:42:DD:CA:D8:98:51:D9:4B:AA:C0:AB:73:92:CE:41:9A:21:8A:CC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02120E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/VELdytiYUdlLqsCrc5LOQZohisw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Oct 2024 23:35:21 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 58374
IP: 103.29.216.0/22
IP: 202.0.153.0/24
IP: 2402:9100::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135694 (0x2120e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 3 23:35:21 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91BA0F9/serialNumber=5442DDCAD89851D94BAAC0AB7392CE419A218ACC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c0:bd:4a:d7:18:78:fe:17:8b:26:97:00:06:
a4:79:c2:6f:11:53:d5:65:4b:14:44:97:28:ed:e1:
b9:9a:c2:be:b7:94:c2:ad:f2:53:b3:09:5d:dd:df:
7f:84:25:26:40:01:20:57:4b:1e:f8:4f:af:9c:f4:
22:83:4d:a7:ce:7f:13:65:6d:d2:0e:c6:76:ed:16:
18:cd:06:7b:dc:34:fe:5b:f7:b8:57:b6:0d:64:1c:
3b:ab:d4:3e:4b:f0:d0:5f:3b:83:34:1f:09:11:a9:
b9:73:8a:e8:d3:5b:66:f7:fc:54:d9:b2:88:23:99:
c1:42:d6:29:c7:6b:73:4d:79:9e:e3:47:38:48:f2:
fc:b2:02:3a:ff:98:31:ed:6c:75:70:89:4d:b0:a4:
91:d8:34:d4:1c:84:0c:03:4a:b9:9b:e3:a7:94:0c:
8c:c3:47:90:a1:ea:12:b5:35:b0:59:8c:87:04:13:
42:dd:fb:33:db:7f:46:6d:19:2e:e3:8c:9f:72:3d:
44:65:ca:f0:a9:8d:81:87:90:46:43:a9:24:1e:07:
00:84:f6:56:8b:52:da:97:d6:68:a9:bc:aa:b3:4a:
41:8f:9b:0f:49:0e:7c:cc:eb:de:51:ed:91:d9:5c:
7b:e2:7c:b6:43:76:41:7c:90:24:7c:13:0a:58:52:
86:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:42:DD:CA:D8:98:51:D9:4B:AA:C0:AB:73:92:CE:41:9A:21:8A:CC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/VELdytiYUdlLqsCrc5LOQZohisw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58374
sbgp-ipAddrBlock: critical
IPv4:
103.29.216.0/22
202.0.153.0/24
IPv6:
2402:9100::/32
Signature Algorithm: sha256WithRSAEncryption
82:99:d7:c5:ff:a4:85:01:1c:05:5b:d0:22:bd:33:5d:40:b0:
30:64:45:46:92:44:ef:8e:3e:46:bf:35:8a:ba:b5:5e:24:24:
c3:5f:a3:72:39:4d:d1:c8:97:e3:1f:05:00:d1:18:b0:e2:4c:
fa:c4:f9:68:83:b0:16:e7:de:b7:c3:81:71:e3:83:34:f8:d7:
ee:f1:f4:ea:02:3d:99:38:34:53:20:0a:b4:9e:48:7a:b5:b4:
cc:67:31:6b:f9:bb:68:3f:93:58:48:d9:db:a6:37:29:3e:aa:
13:81:4e:4f:b7:fd:90:bc:d7:24:43:f8:cf:f0:bb:e1:cc:09:
de:47:1d:55:e3:f4:76:cf:fa:80:1a:7b:4e:91:e0:d5:7d:c0:
0b:de:16:48:5e:1d:f0:aa:5c:43:d3:12:55:02:8e:54:2e:45:
4e:31:fd:6d:99:25:84:70:bd:09:ac:b4:40:8f:19:81:b3:a9:
79:d7:7c:74:1f:64:54:3f:7a:3b:24:d1:79:6a:ed:36:9e:f0:
7a:cc:db:27:e3:b4:5c:91:24:23:98:ab:17:8f:f4:da:2e:71:
d9:e6:73:8f:6d:0d:de:aa:ac:e2:93:9e:9e:fe:7f:8f:27:4a:
61:ab:0b:aa:66:31:76:49:75:be:97:ce:ef:24:c3:80:70:97:
83:04:ca:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:38 2024 by rpki-client on console-fra.rpki-client.org