Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZDuV9TnWaVtQZ5y_tXNE1EgenAw.cer
File: ZDuV9TnWaVtQZ5y_tXNE1EgenAw.cer (raw, json)
Hash identifier: hr+WoTJLpeT3c9KFslbClpzQFHvblHn8aRo+6tw35ZE=
Subject key identifier: 64:3B:95:F5:39:D6:69:5B:50:67:9C:BF:B5:73:44:D4:48:1E:9C:0C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B97A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91263DF/399EF60C829811EAB152002DC4F9AE02/ZDuV9TnWaVtQZ5y_tXNE1EgenAw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91263DF/399EF60C829811EAB152002DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 29 Aug 2023 12:53:39 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 133625
IP: 103.76.157.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 11:36:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113018 (0x1b97a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 29 12:53:39 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91263DF/serialNumber=643B95F539D6695B50679CBFB57344D4481E9C0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2b:e8:0d:a4:30:bf:67:fc:5e:14:fb:6f:89:
b3:ca:fc:6f:fc:ca:30:06:79:76:6a:ca:c2:19:1f:
c5:49:e1:f6:4e:dc:f5:68:80:16:e3:6d:68:ad:ed:
98:5b:72:2b:6a:66:5f:32:c6:48:22:38:0c:cc:fe:
78:5f:3f:e2:12:3b:2b:6f:d5:24:dd:37:fd:75:c4:
62:66:5d:45:f9:e3:8e:a4:f3:5d:dd:22:88:4f:b0:
09:ef:36:6d:42:55:fd:d3:5b:ab:38:8b:62:e9:9a:
42:b4:b2:8d:b2:97:f0:ac:04:02:f9:60:ce:a9:05:
8d:b0:04:70:d3:33:63:07:96:6b:51:26:0e:35:97:
b2:ce:d7:8c:c9:ed:07:18:a1:78:34:30:17:ea:fc:
72:ff:da:08:97:38:26:08:fe:94:b0:9b:0b:e1:ce:
8d:da:77:0e:c2:2f:61:8d:ca:19:3c:da:1f:87:7f:
51:3f:11:99:d1:8b:4b:72:b3:24:78:6f:52:c4:2f:
d3:56:2f:ab:f3:b6:d3:f7:c5:28:14:aa:a1:96:24:
55:84:f9:22:0c:25:af:82:e1:5c:e5:42:21:eb:70:
c6:fb:4b:80:a9:04:32:05:c8:8a:15:d8:c8:79:b5:
e3:e1:6e:46:55:29:17:03:74:9e:a1:88:23:17:74:
5a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:3B:95:F5:39:D6:69:5B:50:67:9C:BF:B5:73:44:D4:48:1E:9C:0C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91263DF/399EF60C829811EAB152002DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91263DF/399EF60C829811EAB152002DC4F9AE02/ZDuV9TnWaVtQZ5y_tXNE1EgenAw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133625
sbgp-ipAddrBlock: critical
IPv4:
103.76.157.0/24
Signature Algorithm: sha256WithRSAEncryption
98:36:92:f6:90:10:d0:e9:89:20:b5:ab:9e:29:82:89:96:e7:
95:6b:ea:39:43:8e:c7:d7:64:f9:88:45:58:e7:81:60:3b:f1:
2b:bd:d5:1a:b4:e7:95:16:d2:9f:22:60:ce:cf:4b:76:89:a9:
9b:a7:ca:df:8b:f3:ea:fd:44:e5:1e:d0:71:20:3f:62:c4:f7:
e2:59:ed:c3:af:8d:a2:bf:42:e6:82:ec:a9:64:35:70:81:a1:
7c:b1:3c:1f:f2:47:9a:ec:0b:ed:cf:4f:7b:19:46:d3:31:e9:
b5:1a:44:ff:03:48:ce:c6:6d:ef:31:76:c8:85:e9:0a:1e:5a:
7d:8c:b0:e7:2c:95:48:1f:be:68:0f:e8:d7:a4:a3:85:74:0b:
c5:cb:b8:89:84:ab:8c:49:5f:5b:07:7c:af:a6:d5:a6:9a:6e:
2c:bb:3a:a7:20:20:4f:7b:5b:30:85:f0:44:ba:5c:90:5c:cb:
b3:fd:4e:db:2d:83:2c:bf:22:74:1d:65:eb:33:74:79:d5:48:
ec:cc:10:be:8d:03:a8:98:7c:13:8e:a1:ce:1b:b8:49:3d:16:
cc:ab:c3:12:43:11:d3:45:5d:15:bf:db:0c:8d:94:cf:4a:4d:
12:4b:db:e5:0d:95:3e:2d:23:e6:58:6c:e1:f1:77:c4:dc:92:
4b:ec:86:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:31:31 2024 by rpki-client on console-fra.rpki-client.org