Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer
File: VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer (raw, json)
Hash identifier: Gg3QHfmJ3TSi4N3bN5jtm261GCOEA1f39jUKjxX7GZ8=
Subject key identifier: 56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DA4D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 Jan 2024 03:05:19 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 136240
IP: 103.84.135.0/24
IP: 103.158.7.0/24
IP: 2001:df0:2100::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121421 (0x1da4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 25 03:05:19 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91D6F2B/serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e6:93:ae:60:05:8f:41:d5:f4:26:bc:20:3b:
53:41:ac:ce:13:2b:5d:d8:83:f1:c8:c4:16:65:25:
75:a0:47:54:5d:90:c7:f6:8e:94:cf:6c:6a:90:42:
f6:4a:f0:50:2d:5e:28:63:57:ae:48:86:d5:4e:ef:
c2:4c:bf:8a:f0:6e:93:75:35:fe:39:4a:77:5e:bb:
a6:21:a0:0c:1a:e7:61:ed:7e:1e:3a:2c:61:4b:58:
d0:f1:0e:ab:5d:0e:47:b8:15:3c:c7:8e:8f:d3:87:
f6:80:bb:85:83:a3:e8:ac:98:c0:c0:14:5f:09:41:
02:b0:9d:1c:ef:b1:20:49:10:33:fa:c1:60:79:0f:
fd:87:6a:53:70:18:b9:af:ae:13:33:19:12:d4:10:
64:6f:c3:5d:89:82:4a:90:51:50:61:19:97:86:32:
62:ea:01:72:24:b9:4c:a2:0a:c3:2e:85:db:71:45:
36:ca:4a:1f:90:75:43:17:42:8b:6a:5b:57:97:70:
09:07:38:0c:b2:5d:fb:7e:03:62:32:1b:99:ba:85:
c3:7f:ec:0e:7c:1d:fa:2e:30:6b:76:01:50:43:56:
b0:07:50:a4:78:85:4c:40:a6:9c:1b:32:d3:be:57:
e4:7f:13:ef:e9:1d:35:27:6f:35:fe:ec:89:75:d2:
e9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136240
sbgp-ipAddrBlock: critical
IPv4:
103.84.135.0/24
103.158.7.0/24
IPv6:
2001:df0:2100::/48
Signature Algorithm: sha256WithRSAEncryption
55:bf:24:55:0b:27:42:d3:ea:2c:7c:53:2b:85:c6:f8:1e:74:
60:bb:32:37:65:ec:53:ac:95:fe:11:5c:5d:6d:0e:59:f3:dd:
b6:66:10:1d:df:11:e6:68:26:9e:a4:58:2c:cd:33:3a:99:a1:
db:86:bb:05:b0:e0:f6:2f:1a:04:d7:1a:9a:1d:3d:76:c2:f6:
5a:80:57:88:8f:31:90:af:c5:8a:ae:df:c2:83:df:88:58:e6:
8c:8d:ef:cd:13:0a:4e:08:fa:83:9d:91:c6:ee:f8:24:c0:48:
29:92:8c:1f:98:96:13:71:5a:54:35:6d:4f:b7:b6:2b:6f:09:
cc:39:64:43:fb:b0:8d:ed:3b:0f:4f:7f:72:88:e2:e7:3c:c6:
fa:88:d9:c4:2b:56:51:94:c2:c7:e6:8b:ae:fa:30:82:ef:15:
73:11:60:8d:23:e9:8b:df:d4:e0:d5:7f:c2:95:f8:5d:4d:ad:
61:a3:8e:7f:50:03:bb:fa:f0:3a:c4:0b:48:2d:c5:6d:16:62:
55:7d:32:68:c3:2b:94:64:74:59:9b:47:1c:94:5f:e0:1c:8c:
9e:e2:fe:f0:82:e4:cc:fd:72:c9:93:6e:98:a3:79:60:73:b7:
c0:50:89:71:d5:cb:44:47:7b:99:29:b4:5d:f9:53:a3:39:26:
3c:51:79:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:05:09 2024 by rpki-client on console-ams.rpki-client.org