Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer
File: XpnXCH3VTqLn519cgIcHE4Posp4.cer (raw, json)
Hash identifier: nBpJOfoXQxPxWRP2Ye445OVtHTTgCWzxE3bubYgk5Jc=
Subject key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EBA4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 15 Apr 2024 23:58:51 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 140208
IP: 103.148.162.0/23
IP: 2001:df2:de80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125860 (0x1eba4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 15 23:58:51 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:99:46:a8:8e:ed:be:3a:ae:7b:0e:a1:6c:e1:
02:65:88:e6:b2:b3:c4:70:ef:7a:4a:77:99:7a:b9:
64:48:d1:01:94:b8:a0:8a:c0:ce:2e:02:94:76:a4:
3f:44:37:4b:c5:48:89:2f:c2:fe:6b:f1:0d:d1:0c:
cf:75:44:ce:de:f9:bf:f7:f5:b0:00:c3:93:0f:74:
08:3e:1b:b6:bb:ff:f5:10:3d:56:8b:93:ce:73:a5:
d7:c7:b7:14:42:84:d1:23:74:e5:6a:45:05:20:f0:
fd:6d:83:5f:9b:cc:52:c0:01:f0:f6:f4:13:75:b0:
a5:f2:68:5a:4e:fe:51:d5:1f:91:1e:e0:fd:8e:d6:
32:ba:80:6a:93:d8:07:eb:ed:40:6f:ef:9c:64:fc:
0c:65:97:8b:57:71:bf:8b:ab:46:66:6f:47:71:a9:
f2:b7:85:21:0e:b8:ee:35:70:af:9c:07:9f:5f:c5:
6a:ba:9e:47:9e:b5:c4:92:1f:a7:70:ee:8f:18:45:
c8:87:ad:87:75:ed:62:1d:5f:c6:da:da:f1:ae:e4:
72:e7:47:a4:3a:94:3f:4f:46:29:5b:15:05:2f:d6:
e4:64:c3:7d:f7:3d:d0:98:41:69:fd:73:18:59:16:
89:44:6d:5f:fa:d5:7c:44:4d:79:ed:ae:a3:31:3d:
40:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140208
sbgp-ipAddrBlock: critical
IPv4:
103.148.162.0/23
IPv6:
2001:df2:de80::/48
Signature Algorithm: sha256WithRSAEncryption
3e:5e:ee:06:8d:47:10:30:94:4e:cc:72:10:00:a1:5e:03:f9:
9b:15:7d:ea:e6:4b:92:de:1e:15:e9:de:44:39:81:a6:59:f2:
9c:c9:bb:2f:e4:af:9d:65:da:71:52:9c:87:21:12:16:ca:a5:
81:7d:b1:b8:0f:4f:17:21:8d:a9:bf:75:87:88:f6:18:75:ba:
75:d2:00:3c:3b:e3:60:d0:b8:82:3a:a8:53:80:6f:40:c7:a9:
aa:82:79:9a:ee:9b:92:71:b9:0d:11:aa:c1:f1:be:31:60:a7:
1c:b8:fd:bf:cb:1d:52:fb:3d:cd:ad:a1:9b:4d:6d:c6:50:4c:
9a:82:45:f0:84:0d:cd:65:8d:b6:fe:1e:b7:c2:57:91:3f:76:
c6:c0:88:6e:d8:55:40:e2:8e:0c:3c:1f:5e:8d:b5:b1:8c:16:
b8:4f:b4:04:bd:8e:3c:a8:81:73:86:a2:ed:de:6e:9d:0b:32:
f4:9b:9d:bf:52:c1:f5:ab:86:db:e0:98:02:91:db:00:13:59:
03:4b:d5:48:9b:2d:fd:0c:09:f2:a4:36:af:ea:a7:80:a5:08:
3f:40:bc:6e:63:37:70:d2:ea:96:bd:1f:f5:b0:1b:fa:78:28:
fa:07:80:3d:50:f8:2e:9e:e6:36:4f:8c:61:78:39:0e:d7:15:
e0:87:e0:4f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 06:58:50 2024 by rpki-client on console-fra.rpki-client.org