Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ktvh4OzGD0qoLCUlwy8dnt1rt0.cer
File: _Ktvh4OzGD0qoLCUlwy8dnt1rt0.cer (raw, json)
Hash identifier: OusC2EvDAXJrdFp4eRaZm+lavmzU3cVUYq1+y7u8dsM=
Subject key identifier: FC:AB:6F:87:83:B3:18:3D:2A:A0:B0:94:97:0C:BC:76:7B:75:AE:DD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E20D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.sub.apnic.net/repository/A91E54810000/2/FCAB6F8783B3183D2AA0B094970CBC767B75AEDD.mft
caRepository: rsync://rpki.sub.apnic.net/repository/A91E54810000/2/
Notify URL: https://rrdp.sub.apnic.net/notification.xml
Certificate not before: Fri 01 Mar 2024 19:32:18 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 133153
IP: 103.148.116.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123405 (0x1e20d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 1 19:32:18 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91897390000/serialNumber=FCAB6F8783B3183D2AA0B094970CBC767B75AEDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:9d:ab:26:1b:3e:b0:a7:84:fb:1d:e3:71:87:
0c:4c:15:fd:01:a1:a7:79:e0:27:ff:26:46:f9:df:
62:49:70:5c:78:d8:9e:1c:c9:72:82:6a:c0:79:26:
9b:48:f7:21:c8:0b:ed:03:3a:d1:8e:45:55:04:30:
76:b2:ac:d7:4c:10:63:61:0b:f1:f1:ff:12:89:fb:
b6:ac:11:c8:fc:8b:a7:90:8a:a4:4d:ac:7b:94:3e:
f3:e1:43:b3:4d:2d:9f:c1:9c:81:7d:ea:a8:2e:f0:
29:12:23:ba:87:5c:3e:c1:2e:e5:e3:5f:b7:a4:3f:
13:34:19:15:2e:34:0f:20:47:ec:eb:ed:66:97:2b:
86:df:3a:31:f5:e6:6c:37:bb:ac:51:22:6a:09:e7:
57:43:83:53:64:b5:7d:b9:99:80:87:ed:a1:2a:77:
43:8a:f5:d7:be:12:83:93:0b:1e:15:57:9c:24:30:
e9:0b:0e:43:93:0b:26:76:8d:3d:da:3c:e0:2a:a9:
c5:0f:f0:bf:cf:82:19:69:59:1f:91:32:cb:4b:50:
eb:05:97:cf:9e:3a:37:7a:a7:37:cc:48:60:e6:9e:
2e:ad:a2:61:23:f1:e7:13:48:da:6d:c3:74:0b:67:
35:ba:cf:1b:f0:af:e7:c6:65:71:0e:0f:a9:9a:9c:
8d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:AB:6F:87:83:B3:18:3D:2A:A0:B0:94:97:0C:BC:76:7B:75:AE:DD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.sub.apnic.net/repository/A91E54810000/2/
RPKI Manifest - URI:rsync://rpki.sub.apnic.net/repository/A91E54810000/2/FCAB6F8783B3183D2AA0B094970CBC767B75AEDD.mft
RPKI Notify - URI:https://rrdp.sub.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133153
sbgp-ipAddrBlock: critical
IPv4:
103.148.116.0/23
Signature Algorithm: sha256WithRSAEncryption
88:eb:17:e6:2a:1d:90:59:84:c0:e3:94:31:51:9e:37:be:51:
50:9e:52:e2:b8:c8:02:40:b2:be:e2:5d:97:6d:e1:ed:30:78:
9d:89:c7:9f:2b:fc:0e:28:ab:5e:6b:d4:2b:07:73:8d:fe:fe:
4f:66:5e:95:fd:5f:69:ff:59:60:a2:0b:fd:4c:34:53:39:bb:
56:51:3c:f7:e9:dd:e8:67:1c:26:4d:0a:55:24:97:9f:0e:0e:
37:ca:67:6d:95:be:77:44:60:04:71:44:27:56:09:80:0f:76:
fc:bc:b7:b2:c2:66:d8:ab:1c:5b:10:fa:41:e9:3a:8b:95:12:
61:27:3b:85:8a:43:42:dd:e5:5e:aa:f3:79:d5:fb:88:a2:a4:
85:e7:95:8e:e2:3e:a2:9a:be:a0:26:84:2f:f9:c7:42:fb:b1:
c6:67:c5:5f:b3:d0:99:a0:9c:c5:9c:2d:48:db:c3:d7:2d:22:
ac:87:9a:b0:10:2d:73:b4:c2:16:cf:aa:c3:60:da:61:80:11:
8b:ee:87:d5:66:c0:f8:0a:ac:38:88:72:f5:aa:ab:55:5e:83:
d7:23:02:69:9d:ce:db:91:0a:db:6e:0c:27:7a:e9:85:97:88:
fc:b5:8b:50:0e:08:6b:7f:ad:dc:38:9e:15:31:64:1c:0c:cf:
9b:ab:bb:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:36 2024 by rpki-client on console-fra.rpki-client.org