Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer
File: W2pwDO4aU9VRnlolxk0a0ro3zac.cer (raw, json)
Hash identifier: zqPNidgRiCTAmdAJ0tlsEAq4EKWc975ZWH27J5IhOf0=
Subject key identifier: 5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02197C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 01:17:39 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 141352
IP: 103.157.106.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137596 (0x2197c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 01:17:39 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91AAB94/serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1a:f0:b2:2f:a5:23:9f:8c:71:ac:df:48:dd:
92:86:49:c0:85:71:c9:73:31:f3:f0:78:55:13:6a:
e1:b8:ca:a1:35:9b:b6:c6:e0:40:de:3d:b6:86:de:
19:74:4b:1a:0b:0f:17:df:3c:d9:1b:c4:77:0d:64:
22:be:39:d9:20:28:7e:dc:de:52:09:4e:b4:f3:02:
7a:8f:43:c1:e9:2b:b5:ba:77:b8:b4:6b:a0:b6:d9:
61:05:23:8c:db:87:1b:22:c6:54:0a:e6:0e:80:67:
76:28:00:9a:6a:2a:ca:bd:45:f7:0a:e2:68:05:3e:
74:5c:f8:43:07:ef:96:ee:d9:f1:a5:79:34:15:75:
e5:ad:27:ab:cb:0a:9a:7c:65:39:26:3d:2d:80:31:
c0:b7:c5:71:f4:17:e9:74:2c:52:49:7e:f3:4d:28:
60:fa:f4:6d:55:cf:ca:21:27:29:12:67:29:91:28:
a3:7a:03:ad:c5:f7:ca:99:a5:71:d1:b9:6c:25:cd:
db:bc:56:f2:4b:04:9f:4c:bf:94:9c:8f:63:9b:9d:
e0:8a:e2:19:50:35:8e:40:f2:15:e9:fe:56:79:1c:
97:bf:68:da:2f:0c:53:a4:26:0e:6d:76:d9:8f:2b:
d9:78:8b:56:8a:68:b1:b6:5d:05:2f:e6:45:5d:6f:
6a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141352
sbgp-ipAddrBlock: critical
IPv4:
103.157.106.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:ff:6b:36:71:0b:fe:d2:ca:49:6d:94:2e:2f:65:9c:41:6e:
b7:29:ac:e8:9b:0f:1c:2a:c5:43:92:90:84:19:07:ad:38:78:
2b:7a:c2:f0:ae:dc:c4:cd:f7:d5:36:83:c1:63:9e:8d:42:db:
3a:93:4a:2c:53:5c:4e:b1:e5:33:0f:b1:18:dc:7b:d7:5e:b0:
bb:88:74:ee:64:65:09:0f:7c:94:c8:74:80:a3:a7:89:1f:7a:
09:84:00:61:2a:cf:4d:5f:fc:3d:be:97:e5:0c:1c:eb:18:b0:
06:eb:63:af:4d:28:1a:e7:82:35:7a:96:46:24:ea:50:8f:68:
11:e6:24:b3:56:ff:d1:b2:96:eb:6f:90:ad:ec:a6:04:ad:4f:
7d:f2:a1:d7:d4:2b:b0:d8:75:e3:1b:d1:a0:64:fd:35:c6:fa:
2c:14:43:18:e7:ca:73:1e:e9:db:74:72:e4:85:e4:06:d3:0d:
c2:de:56:db:ea:49:a0:a7:ee:a1:11:98:ff:88:a0:b7:a0:4e:
c4:dc:73:f0:a9:8d:6b:e7:b0:60:ff:6a:3e:71:7b:b9:c7:d5:
cb:b3:26:2a:4f:20:97:9e:ae:0b:23:01:ad:a3:9f:3d:2d:90:
66:ab:c1:75:37:b8:6a:4e:7b:7d:ad:a9:9f:01:0b:ce:69:f2:
a2:93:db:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:33 2024 by rpki-client on console-fra.rpki-client.org