Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCfkvYcCd-3w6xBWOptBweS-fIE.cer
File: WCfkvYcCd-3w6xBWOptBweS-fIE.cer (raw, json)
Hash identifier: AzUrx8/x7ZLYJaK5yLVPxfN3NMSnz/1FK2Xd9DS94WA=
Subject key identifier: 58:27:E4:BD:87:02:77:ED:F0:EB:10:56:3A:9B:41:C1:E4:BE:7C:81
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0211B8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 02 Oct 2024 19:19:59 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 58980
AS: 136469
IP: 103.15.177.0/24
IP: 103.20.245.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135608 (0x211b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 2 19:19:59 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91A7D85/serialNumber=5827E4BD870277EDF0EB10563A9B41C1E4BE7C81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7d:d6:7b:0d:d2:24:ee:ad:87:c7:5d:1d:1a:
9f:68:46:15:e6:c1:2b:3e:ee:db:e4:76:a7:13:3f:
72:fb:77:32:12:1b:1d:60:01:25:91:0d:b6:4e:d1:
0e:19:30:6a:1b:e5:b7:e3:85:ca:48:3a:ff:0d:18:
42:a6:4f:63:97:4f:ce:75:4e:e0:5e:4a:81:b1:3f:
fe:ec:7d:a0:f1:d7:91:f8:59:b5:66:e8:c0:41:f1:
04:af:6a:85:ad:0f:94:63:82:5d:14:65:42:2c:38:
10:f3:33:d3:ab:be:ce:90:88:a2:79:8b:7e:b7:99:
17:4d:26:47:08:5e:c0:5b:fb:3e:6d:d4:09:d3:60:
ab:66:9c:2f:7c:b6:c1:58:71:65:7d:b9:95:94:e6:
87:74:13:94:4b:d8:30:19:85:c9:8d:d2:a5:16:7a:
84:22:f2:3f:37:eb:5f:3b:2e:a9:5c:71:59:3e:03:
51:8e:66:4e:8c:9f:cf:29:7b:5a:16:6d:a2:1e:57:
8c:ed:28:1c:ea:93:60:10:84:7a:52:52:e9:5a:b1:
09:8c:6c:88:4f:a8:a5:6e:98:9a:af:6d:ca:a4:89:
3f:4b:74:80:b0:a2:bc:18:34:6b:ba:93:b7:7a:c6:
1e:54:52:0e:d1:03:5d:a5:95:c7:70:c2:1b:70:ec:
ce:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:27:E4:BD:87:02:77:ED:F0:EB:10:56:3A:9B:41:C1:E4:BE:7C:81
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58980
136469
sbgp-ipAddrBlock: critical
IPv4:
103.15.177.0/24
103.20.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:94:8d:f5:53:5a:a9:a4:37:9c:6d:a8:d8:47:e2:a7:bf:ce:
e3:28:ac:ba:2a:5d:10:77:9d:79:a7:bd:aa:6e:61:d0:5f:f9:
1f:55:54:8c:43:d3:b5:a2:dd:ca:8c:c9:93:39:52:7f:54:20:
a8:1f:9d:0b:e7:f5:f9:01:b0:07:1c:f5:a6:23:1b:88:8a:cd:
b4:44:9a:60:0c:4d:ae:bf:74:94:3e:88:83:4d:18:35:76:23:
3a:a9:d9:8f:bf:22:76:f0:df:02:77:c5:e9:f5:53:ca:f3:59:
8b:f5:22:83:bd:81:3f:47:6e:c5:87:c8:08:66:50:39:b2:cf:
91:f7:1e:3e:9a:a7:20:32:ab:b8:15:45:fb:b1:62:18:59:a0:
fd:f2:66:e0:d5:a7:04:8d:2b:a9:ac:98:2a:0c:54:0f:3a:bc:
d9:e9:72:f6:10:e5:fd:73:5d:f8:a2:01:0a:cf:fc:14:1c:a4:
6d:18:8a:a0:3e:af:af:6f:89:87:f6:c3:d9:6a:47:3a:00:0c:
d9:ec:84:1f:13:bd:d7:28:d8:96:56:94:83:1e:fc:fa:59:e2:
13:2f:04:96:b0:f3:4f:4b:f1:16:a4:cc:7f:6c:9a:76:70:2b:
ee:1b:bf:af:59:13:a6:ff:fd:a8:23:ad:8f:2e:0d:f9:42:c0:
b1:b4:b9:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:21:51 2024 by rpki-client on console-fra.rpki-client.org