Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
File: b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer (raw, json)
Hash identifier: YcbqbE09JdW+9UHKXBHOPo/j6+ljpx9Uw6ckfyl+2hM=
Subject key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EC6D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Apr 2024 06:42:35 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 131075
AS: 132623
AS: 133555
AS: 134413
AS: 134477
AS: 134488
AS: 134708
AS: 134993
AS: 135120
AS: 136535
AS: 136591
AS: 137835
AS: 139231
AS: 139317
AS: 139791
AS: 140731
AS: 140915
AS: 140961
AS: 141429
AS: 141445
AS: 141694
AS: 141776
AS: 142112
AS: 142164
AS: 142418
AS: 142438
AS: 142553 -- 142554
AS: 142586
AS: 142642
AS: 149163
AS: 149292
AS: 150141
AS: 150173
AS: 150184
AS: 150323
AS: 150373
AS: 151187
AS: 151193 -- 151194
AS: 151202
AS: 151331
AS: 151416
AS: 151418
AS: 151490
AS: 151494
AS: 151673 -- 151674
AS: 151782
AS: 151785
AS: 151814
AS: 151841
AS: 152118
AS: 152134
AS: 152186
AS: 152191
AS: 152320
AS: 152598
AS: 152631
AS: 152697
IP: 103.150.214.0/23
IP: 2406:840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 11:36:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126061 (0x1ec6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 19 06:42:35 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f8:91:d2:ce:e4:fc:55:88:67:f0:8f:e5:23:
45:e6:c9:51:01:0c:71:82:5b:d8:d4:12:3c:65:90:
19:bc:7e:7d:eb:7b:96:7c:bf:f6:6e:c7:d9:34:97:
b1:90:9e:27:3b:1b:1e:64:62:d9:35:23:92:74:38:
1c:8c:29:67:36:20:1b:2f:b1:5c:d7:0d:46:0f:a6:
3e:c5:a1:d2:da:d9:83:c0:84:02:73:d5:f1:d1:4d:
f4:76:ab:6c:ea:ff:08:87:a5:4f:20:71:df:de:30:
82:15:85:1d:a9:e1:63:b5:0a:86:82:55:93:33:76:
5f:d3:1a:6d:9c:11:a4:94:b5:97:65:9f:ea:55:90:
50:54:33:1b:f5:e1:ac:d5:0d:c8:20:01:12:a1:dd:
7d:4b:b2:93:76:4f:58:db:df:92:0f:5e:6d:fd:0d:
97:db:32:93:ed:1b:77:a7:d2:ef:5f:79:88:6e:b3:
7d:60:29:29:13:b0:66:4f:c7:37:f6:39:d1:68:6e:
23:45:bc:52:89:fc:6c:20:a5:04:0f:f7:08:5e:49:
ac:6f:58:70:db:2d:83:a7:80:a9:20:88:c2:cf:1f:
40:ee:f2:3d:f0:61:48:69:d4:e3:68:5e:d0:c5:52:
00:e3:10:09:97:5c:ef:ec:8f:74:30:76:74:20:2f:
52:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131075
132623
133555
134413
134477
134488
134708
134993
135120
136535
136591
137835
139231
139317
139791
140731
140915
140961
141429
141445
141694
141776
142112
142164
142418
142438
142553-142554
142586
142642
149163
149292
150141
150173
150184
150323
150373
151187
151193-151194
151202
151331
151416
151418
151490
151494
151673-151674
151782
151785
151814
151841
152118
152134
152186
152191
152320
152598
152631
152697
sbgp-ipAddrBlock: critical
IPv4:
103.150.214.0/23
IPv6:
2406:840::/32
Signature Algorithm: sha256WithRSAEncryption
c0:e9:9b:2e:2d:69:6c:2d:10:6c:c3:2b:6e:d7:85:58:39:e5:
8f:ba:6c:10:63:3d:a8:16:3a:92:46:0b:5e:2c:59:b1:e5:9b:
76:4a:59:ed:c8:14:33:0c:89:ac:7b:11:8d:63:87:ea:c9:e2:
f7:70:e8:4f:69:59:48:2c:1a:f3:b1:d6:01:00:39:3b:15:f7:
32:96:f7:37:e5:f5:2e:e1:6c:10:5b:b2:16:39:f5:00:46:56:
37:11:71:44:60:2b:56:af:d8:e1:49:cc:32:ba:38:f8:f1:26:
44:f4:6f:f2:b3:05:f8:58:fd:f0:d1:ce:b8:e5:b1:8e:f1:89:
95:79:0b:a7:c2:34:7b:58:92:0d:b2:dd:ad:b9:b4:84:3d:d1:
cd:5b:5e:ce:4e:0d:64:c8:bc:2c:a7:2a:5b:ed:46:d6:96:98:
98:65:c0:85:1a:6f:da:84:9e:32:e1:b1:6e:7e:81:1c:08:57:
47:ef:61:94:c4:8c:9c:f2:09:52:6d:8f:90:26:a1:84:64:74:
1c:94:f2:1a:65:90:c6:ef:4b:92:45:19:0d:6e:54:af:a7:0e:
14:f2:3d:90:55:b0:b7:e1:f7:63:c1:d0:fd:ac:4b:93:a0:70:
14:cf:28:eb:1d:4e:3a:e2:53:54:2c:40:68:05:6b:2b:05:49:
71:6e:81:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:31:33 2024 by rpki-client on console-fra.rpki-client.org