Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer
File: XTwWiWSSv8hwyKALZou_6VlF-No.cer (raw, json)
Hash identifier: GOanDbwrV6rj/tq5OkKQ0nvpWAquyeF8b9UeeK2QITE=
Subject key identifier: 5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EA6E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 08 Apr 2024 13:30:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 142032
IP: 103.110.80.0/23
IP: 103.149.200.0/23
IP: 2001:df3:4080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 02:22:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125550 (0x1ea6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 8 13:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:32:10:ce:0a:02:df:d3:e0:c9:83:79:af:31:
0a:01:0b:6b:7c:60:89:f6:3c:2c:59:23:dc:11:df:
2a:eb:d8:4f:69:f8:07:1c:61:4e:d9:e3:59:26:ac:
3b:1f:38:a8:4a:f1:af:40:da:1e:ad:58:be:fe:f6:
3a:d9:8d:33:c0:56:c1:cc:92:c3:ba:d8:15:16:c2:
3a:c9:88:38:2b:3e:43:d8:84:af:e0:bd:63:eb:4e:
67:9e:3a:6c:f2:29:4b:72:15:8d:9c:0d:34:22:88:
ad:42:43:3e:15:01:79:20:74:17:ed:da:53:c8:e8:
76:59:44:95:9c:3f:9e:91:c3:ef:59:1a:96:71:a6:
d7:97:51:88:ef:14:4e:13:59:58:e7:5e:9a:ef:fe:
48:96:54:42:cf:90:58:c0:88:cb:3d:64:b3:28:99:
80:73:e2:de:3c:f2:ee:63:6c:15:06:4e:b4:83:1a:
4c:16:bf:6e:ac:e1:a1:d6:6f:10:de:34:36:6e:30:
21:fd:29:27:d3:e0:b6:b4:da:ce:6f:66:a2:d7:20:
0f:c0:04:1c:47:2d:6b:9c:f7:8c:88:4f:89:f6:8f:
b1:a2:a7:c2:ff:07:3d:98:61:96:73:93:50:bc:4d:
e3:64:3d:bb:1e:f3:01:1e:6d:42:ab:d5:8e:4c:e7:
9b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142032
sbgp-ipAddrBlock: critical
IPv4:
103.110.80.0/23
103.149.200.0/23
IPv6:
2001:df3:4080::/48
Signature Algorithm: sha256WithRSAEncryption
24:6d:6e:45:02:56:3b:bf:58:22:ce:99:31:66:3e:36:6c:a3:
6d:72:7a:70:3a:ee:59:2d:6c:04:7d:d1:2d:95:b7:87:93:b8:
32:08:85:c0:c3:32:b2:79:fe:8e:5a:00:53:e2:83:ba:00:e1:
b2:67:27:f3:e7:46:92:6f:cc:84:6e:45:d0:8d:56:73:16:1e:
2b:73:49:14:7f:b5:4a:c5:d8:8e:93:cc:0f:3f:1d:f6:d6:43:
9f:97:7a:00:54:94:88:10:c6:a8:cf:7f:9e:69:fb:45:07:ca:
89:1d:6b:98:92:5a:5e:ff:62:ca:c0:02:07:a5:5d:a5:ba:bd:
af:3d:76:a4:cb:57:2a:2a:42:97:cd:9c:07:aa:44:aa:a0:32:
61:6c:26:b7:0d:75:79:d0:d6:d7:5f:a2:fb:e6:b1:00:b2:70:
59:01:69:4c:a3:e3:b2:e8:2e:c4:fa:e8:43:83:90:c3:13:6c:
0b:7c:03:f0:df:51:31:a9:c9:1f:17:86:48:37:86:31:d3:17:
be:21:c9:cc:14:da:42:05:7a:cb:fc:15:e6:08:53:9f:88:84:
9c:92:5d:4b:0b:35:c8:60:28:f9:61:d0:51:8f:12:7a:b4:c2:
8d:63:da:6b:93:32:b8:40:c1:c3:40:34:cf:09:b5:ed:46:23:
4e:fc:98:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:13:12 2024 by rpki-client on console-ams.rpki-client.org