Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer
File: WKDd0CVVyDdIbVVDUYbcxXahKD4.cer (raw, json)
Hash identifier: dyLQr5s/MQKUq4P7xc3AN7b6Y9gQVaq8YaZzOHKATHI=
Subject key identifier: 58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D95B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jan 2024 05:09:21 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 140838
IP: 103.61.240.0/23
IP: 2001:df1:c340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121179 (0x1d95b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 19 05:09:21 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91E4C30/serialNumber=58A0DDD02555C837486D55435186DCC576A1283E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0a:d5:90:89:ab:be:94:ca:5e:97:27:a1:ca:
42:d1:b4:2a:86:4a:2d:84:63:7f:b6:f4:7e:83:52:
74:23:bf:4e:bf:66:f7:59:c5:90:33:29:62:a9:59:
e7:49:4c:e8:4f:d0:14:8f:bc:a2:49:d8:0b:28:73:
f1:c8:66:ea:68:25:f5:88:1f:41:1c:d1:b0:28:82:
db:3e:c2:ec:18:f6:ea:1b:13:a0:f4:7b:3e:2e:ae:
c0:a8:d7:04:7f:4c:51:a6:15:41:67:6c:df:c0:18:
b0:7c:75:75:1b:94:e3:ed:a9:f4:3f:85:12:93:44:
7a:fc:5d:f1:1d:b3:48:d5:44:de:d3:b2:53:ee:52:
33:bb:f3:72:59:7a:ee:72:3e:2d:2f:d5:8e:0c:26:
c0:26:51:0d:1c:c5:81:3b:09:41:fe:be:2b:10:bd:
9a:1c:72:b8:49:45:bf:22:02:3d:39:d2:b1:da:51:
c9:47:f9:84:30:7d:a2:f4:05:97:d5:b3:07:1f:d4:
22:83:63:11:3f:34:d2:8c:bc:a0:15:63:a3:66:2b:
49:ad:a2:b7:22:80:fa:40:8b:2c:38:06:d7:ba:f2:
4c:24:03:5b:9c:d5:84:df:9a:be:0e:54:e7:89:c6:
d6:0d:05:a1:48:99:62:c4:c7:bd:ef:e7:26:9f:07:
6d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140838
sbgp-ipAddrBlock: critical
IPv4:
103.61.240.0/23
IPv6:
2001:df1:c340::/48
Signature Algorithm: sha256WithRSAEncryption
65:d1:5b:49:46:55:fb:0a:d4:ec:eb:74:a0:3a:cf:8f:a3:50:
81:c0:66:26:62:4a:a9:22:2c:a2:8f:a9:85:13:a7:9f:55:4e:
2b:c4:63:5b:fd:a4:18:d0:c0:79:1d:0f:e9:9e:bd:4c:f1:1e:
f6:03:75:72:d7:1f:00:49:21:d3:64:66:50:1a:0d:f9:6f:b6:
cc:98:3f:b8:46:5a:58:b7:09:2d:51:b7:a5:48:52:84:a7:fc:
52:9d:40:16:b6:9d:2f:f5:ff:78:0e:a8:17:01:c7:11:6b:b8:
90:25:23:36:d0:f5:63:25:ce:90:85:ae:f0:a1:5f:89:c4:a9:
ac:d8:70:70:10:14:ea:b6:55:8e:03:1e:7b:ce:1b:14:99:45:
c5:bf:a0:1b:2c:d2:03:0a:eb:e0:1e:0a:5c:80:32:c2:a0:bc:
12:ca:c5:76:3d:f2:aa:6e:e7:32:d4:d2:00:dd:db:04:ff:c2:
38:1d:35:91:4d:6f:ab:44:ad:8a:a5:c3:0b:f2:ad:f0:c1:a2:
cf:dd:56:cf:5d:56:f2:c2:ff:56:75:31:a4:83:27:19:6d:72:
d7:3f:32:48:81:b3:cb:32:82:f1:ed:3b:16:e2:d4:ee:64:b6:
f2:23:ed:89:39:27:df:2e:8d:9c:8e:ce:be:74:41:2c:3f:6b:
18:19:23:80
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:44 2024 by rpki-client on console-ams.rpki-client.org