Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a_ljfFgcU0tLpjjNyHnAp-p6TwI.cer
File: a_ljfFgcU0tLpjjNyHnAp-p6TwI.cer (raw, json)
Hash identifier: rMemqhotcSHYCVv6ke/G1DKWBu0A3+JrT8im8rlmOnI=
Subject key identifier: 6B:F9:63:7C:58:1C:53:4B:4B:A6:38:CD:C8:79:C0:A7:EA:7A:4F:02
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0207B9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91931EA/A2398F20C4B411EAA78B422AC4F9AE02/a_ljfFgcU0tLpjjNyHnAp-p6TwI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91931EA/A2398F20C4B411EAA78B422AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 19 Aug 2024 19:14:32 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 131475
IP: 103.4.232.0/24
IP: 103.30.215.0/24
IP: 103.31.24.0/23
IP: 2001:df0:425::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133049 (0x207b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 19 19:14:32 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91931EA/serialNumber=6BF9637C581C534B4BA638CDC879C0A7EA7A4F02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:33:2f:34:e4:cf:d4:15:a2:14:20:72:0f:fd:
6a:81:f4:58:4b:b2:d1:1e:1a:63:f2:4c:61:8b:7e:
a8:44:a1:73:58:54:22:89:26:9c:da:84:c6:d3:a4:
d2:11:3e:fa:94:a6:94:6e:45:33:6c:b4:61:8e:aa:
b0:40:cc:d2:73:3e:c6:2f:73:24:4c:d2:e9:97:5f:
f9:90:83:99:dc:56:59:76:88:22:46:a9:2e:87:a8:
1d:94:c1:91:a2:b4:51:b8:63:9d:50:cd:ef:c0:16:
dd:29:61:0e:a8:1b:30:82:ef:eb:32:02:09:86:1f:
0c:5b:f7:aa:e8:72:47:e9:ce:a1:cd:75:7b:ef:5b:
a6:d1:85:85:5b:e0:e3:9f:8a:bb:da:57:91:43:79:
f1:e5:c4:a2:47:68:8e:49:65:29:03:9e:f8:2d:f6:
72:00:74:fe:fc:bf:b4:08:fa:47:33:d7:27:87:87:
2c:a3:eb:e1:6d:bb:a2:36:c0:68:57:ec:e5:f4:74:
5f:b7:17:91:4c:b6:5d:7b:d1:7f:81:34:66:9d:bc:
2f:82:cc:0d:29:43:40:a2:2f:cf:5e:fe:1e:34:b9:
c2:1c:30:f6:64:5f:7b:f1:8e:91:2a:99:80:6e:54:
6e:44:84:3e:44:7d:76:ef:c4:43:4c:1e:3c:87:79:
de:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F9:63:7C:58:1C:53:4B:4B:A6:38:CD:C8:79:C0:A7:EA:7A:4F:02
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91931EA/A2398F20C4B411EAA78B422AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91931EA/A2398F20C4B411EAA78B422AC4F9AE02/a_ljfFgcU0tLpjjNyHnAp-p6TwI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131475
sbgp-ipAddrBlock: critical
IPv4:
103.4.232.0/24
103.30.215.0/24
103.31.24.0/23
IPv6:
2001:df0:425::/48
Signature Algorithm: sha256WithRSAEncryption
15:f8:a0:92:3f:34:dd:42:ec:52:9c:ab:1a:9b:29:79:97:3f:
e8:e0:c0:73:f3:05:34:6a:cc:a5:d0:72:df:79:4d:d7:67:84:
81:0f:90:43:71:8e:76:f4:8e:c5:f0:8e:e4:94:ca:6f:7a:e6:
18:c8:49:a0:97:65:1e:d4:27:7e:18:29:9e:79:1a:82:af:55:
4d:c8:3a:75:68:0e:f8:a5:a4:89:28:ba:1b:d2:60:04:54:67:
92:fb:0a:a9:e3:f8:ce:83:32:47:23:75:bc:e2:b7:40:da:d6:
91:fb:ea:8a:bb:a9:65:20:56:7c:ae:08:75:44:5e:d4:26:a0:
88:42:c3:94:a3:47:29:5b:3f:02:ab:ca:dd:4f:68:8d:b9:2e:
57:c6:2c:2c:39:fa:bf:84:dd:e1:89:40:dd:ee:5d:ac:b4:35:
62:30:b2:8d:e1:59:e9:fa:ab:e0:58:6c:51:48:49:e8:11:21:
09:87:8c:17:e3:d4:71:34:29:13:df:ce:7c:05:9c:a9:11:ec:
70:4f:72:28:35:b2:c0:91:64:eb:37:80:77:05:ab:a7:1d:96:
20:ee:f9:ea:34:f7:4e:49:63:05:a4:10:44:85:e8:6f:b6:be:
40:c5:fa:19:92:cc:23:10:11:42:c9:7a:52:84:60:6d:0c:73:
23:b3:61:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:45 2024 by rpki-client on console-fra.rpki-client.org