Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.cer
File: Xvcvm-Tjoo3jVp523i0iJdvz_Yo.cer (raw, json)
Hash identifier: qNsBjWULMXvn+Ep0/xC49Xkf7CFkKAIrhA9CBcIfQQo=
Subject key identifier: 5E:F7:2F:9B:E4:E3:A2:8D:E3:56:9E:76:DE:2D:22:25:DB:F3:FD:8A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020BF8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 04 Sep 2024 20:57:58 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 38084
AS: 55922
IP: 103.72.88.0/24
IP: 103.108.168.0/22
IP: 203.27.21.0/24
IP: 210.48.208.0/21
IP: 2406:7600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134136 (0x20bf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 4 20:57:58 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91DB63B/serialNumber=5EF72F9BE4E3A28DE3569E76DE2D2225DBF3FD8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:91:56:ec:b9:1e:dc:56:9f:20:c1:57:7b:b6:
ef:c0:e6:eb:89:e8:74:83:3a:5b:64:c3:24:89:8c:
aa:73:f9:e9:db:59:4e:02:5b:36:13:e0:6c:bf:d4:
08:e6:50:95:8f:67:aa:86:e6:e5:39:2f:09:99:10:
61:fc:81:67:11:ff:6d:bc:0b:88:d0:1d:4d:3f:24:
a0:72:1f:bd:31:62:21:f0:69:fa:92:b1:d1:08:db:
c4:7e:ed:d3:4d:26:83:4a:da:ed:ba:80:03:98:b5:
1b:0a:2f:25:56:02:e9:5a:83:c1:37:0d:84:5b:89:
44:68:18:63:22:28:d6:d2:07:9d:4d:ab:61:22:c3:
e0:54:9a:06:c1:d2:86:2f:ed:8f:95:86:12:97:1f:
74:97:b8:b9:5a:3e:37:29:45:68:88:cd:94:31:7c:
2c:32:ac:dd:90:b2:e5:e6:da:63:62:40:d1:ba:17:
94:2b:c8:44:7c:23:98:e8:87:fd:9e:79:d2:e6:47:
08:ea:be:14:98:24:69:f4:b8:c0:04:5d:67:65:b0:
c1:12:81:37:86:74:8c:63:b3:78:cd:34:50:e7:df:
80:42:eb:00:45:58:33:87:ae:56:9e:20:90:0f:ba:
5f:75:3b:b3:7d:a5:ca:ee:96:b8:0d:fe:86:fc:8c:
5d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F7:2F:9B:E4:E3:A2:8D:E3:56:9E:76:DE:2D:22:25:DB:F3:FD:8A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38084
55922
sbgp-ipAddrBlock: critical
IPv4:
103.72.88.0/24
103.108.168.0/22
203.27.21.0/24
210.48.208.0/21
IPv6:
2406:7600::/32
Signature Algorithm: sha256WithRSAEncryption
2f:96:8f:1a:b5:f3:b8:4c:f1:1c:5a:c6:e4:c3:b8:e9:90:1b:
8b:05:7f:19:f2:5a:ed:a8:f1:c5:d4:a7:88:a5:d2:53:69:b4:
58:e0:4a:ce:bb:d9:57:3a:f3:20:7d:ee:a7:8c:ff:4c:1a:4b:
92:36:10:ca:d0:af:30:66:26:2f:0b:de:b7:f9:f1:bb:1e:61:
ec:f6:bb:46:e7:02:31:0f:79:d1:f4:89:97:71:14:42:e9:5d:
bc:95:5a:39:59:8a:25:0e:ac:b3:65:83:bc:74:6f:2e:28:20:
e4:10:c4:28:ea:0b:60:7a:35:b8:cf:df:84:66:6a:b2:1f:01:
42:e6:29:aa:9a:51:f9:6b:29:ea:90:e3:85:4e:19:78:2b:0b:
e7:27:3c:db:d3:d4:a3:44:44:31:6c:1a:c6:65:56:50:92:79:
d4:72:dc:64:7a:9c:07:cb:86:8f:64:15:c9:ab:81:55:44:d9:
66:dc:6e:bf:8a:0f:34:93:53:77:7a:05:38:cb:c0:ec:a9:70:
3c:f7:bf:53:1c:2b:92:91:39:95:e0:7e:56:18:8b:11:9a:07:
26:e2:1c:32:52:15:e8:58:39:6c:28:7b:de:7c:05:b3:49:51:
03:50:f1:e9:95:f8:93:ef:69:fe:e2:0b:15:a4:db:f4:8f:80:
c7:d2:50:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:47 2024 by rpki-client on console-fra.rpki-client.org