Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aSE1YIaDdV6U2OylfYsLNY7OFxg.cer
File: aSE1YIaDdV6U2OylfYsLNY7OFxg.cer (raw, json)
Hash identifier: PxyZ3e+WvxYt5tA9HDGvBPSjiFJYiib9ExkAETbLSVI=
Subject key identifier: 69:21:35:60:86:83:75:5E:94:D8:EC:A5:7D:8B:0B:35:8E:CE:17:18
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F811
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 08 Jun 2024 16:59:28 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 132088
AS: 138986
IP: 103.115.140.0/22
IP: 2402:e940::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129041 (0x1f811)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 8 16:59:28 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9198996/serialNumber=692135608683755E94D8ECA57D8B0B358ECE1718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:de:ad:dc:c6:98:5c:a5:3b:87:d4:ac:cb:13:
df:c6:d3:66:f0:d8:53:5b:78:c6:49:c6:18:e2:54:
d5:35:72:73:d6:f5:2a:30:2b:72:98:02:79:4d:52:
8e:20:81:04:d6:34:8e:ec:fa:e9:59:04:44:5e:c6:
74:58:11:01:6b:4c:26:59:88:bd:76:45:c6:a7:d3:
83:cf:39:64:4b:d0:cb:da:45:dc:46:53:c9:2a:df:
11:f8:2e:af:31:09:41:10:03:7b:32:95:75:2f:25:
ab:e6:ba:38:70:dd:04:1e:17:5e:c7:c3:19:62:cd:
22:eb:aa:c5:64:12:9b:a0:8f:0e:57:77:de:ad:ae:
9f:3f:13:51:a5:f7:6d:39:b9:f5:8d:dc:a9:ce:14:
98:88:6d:d7:22:4e:1d:86:5e:77:e7:44:ae:b9:bf:
c5:2b:0c:c9:4e:bc:ca:eb:b5:fb:53:2f:3b:7f:b1:
7f:03:96:c8:d1:dd:3f:1d:3c:d9:32:5d:3e:75:e9:
bb:ee:33:5f:fe:58:ac:57:8f:7f:eb:50:27:70:86:
57:bd:de:86:9a:d6:06:ec:63:c4:84:2a:64:c8:d3:
76:42:ad:33:e5:3b:27:30:82:80:cd:fe:ba:cf:31:
8a:47:ba:0f:a3:f0:11:7a:7a:d3:62:43:01:e6:c1:
1e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:21:35:60:86:83:75:5E:94:D8:EC:A5:7D:8B:0B:35:8E:CE:17:18
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132088
138986
sbgp-ipAddrBlock: critical
IPv4:
103.115.140.0/22
IPv6:
2402:e940::/32
Signature Algorithm: sha256WithRSAEncryption
84:27:45:6c:70:ea:45:82:7d:65:5b:91:ac:2b:d4:b0:8f:11:
ca:0d:1c:af:bc:22:8b:a5:75:3c:6f:8b:f3:15:8b:4d:30:80:
d7:78:17:f8:7f:31:ac:49:e7:b4:a5:8f:59:8d:06:ad:bc:00:
d4:08:3e:7d:2f:6c:06:89:be:a9:5f:54:42:74:e7:e5:e8:bb:
69:ed:fc:97:4c:61:89:40:f9:61:31:23:6e:70:47:08:b8:11:
cc:99:eb:66:8e:a1:3b:e9:6e:09:69:18:89:68:e6:49:c1:bd:
75:b8:77:1e:90:a4:f2:04:7c:7c:c7:70:45:8a:8d:bf:04:50:
90:77:41:70:48:62:c5:04:38:74:c8:e8:68:a2:bb:f2:dd:a6:
44:d8:59:53:77:39:b2:fc:a3:e7:7e:ed:c8:5c:95:c2:00:84:
67:2d:7d:54:a7:72:fc:43:70:33:a3:0e:dd:c5:24:ce:72:cb:
91:7a:1e:bd:b6:0a:43:be:b7:53:10:51:96:6b:de:1d:19:fd:
14:e4:d6:3d:c6:1a:d3:cd:21:16:09:75:9a:d7:39:48:5d:a5:
5f:4c:8c:73:16:96:3d:7b:42:07:a8:82:3b:d8:1c:47:c9:5e:
cb:48:a8:68:eb:8d:21:c3:1a:85:28:d1:00:cf:bf:57:4d:87:
7f:bd:3c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:37 2024 by rpki-client on console-fra.rpki-client.org