Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer
File: bgopAGEwM5uDbSj3ABgC9xpaTkI.cer (raw, json)
Hash identifier: KUmHy1uMVyBY3NCm4zBDXBO81EFhMqM+vh6MimTBqxc=
Subject key identifier: 6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A1FE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 08 May 2023 12:32:33 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 149819
IP: 103.187.12.0/23
IP: 2001:df0:b440::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 21:46:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107006 (0x1a1fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 8 12:32:33 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91166D1/serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:95:d1:8a:a8:22:ed:85:fb:fa:c4:f1:31:14:
9a:48:88:d1:da:be:0b:a4:bb:1c:42:65:4b:63:99:
6d:3a:25:47:da:42:cb:2a:cb:13:34:3b:81:92:00:
fa:fb:5e:30:d6:73:43:3d:73:be:ea:a9:64:0a:9e:
b2:c9:57:3b:45:77:27:0f:9c:10:bb:c0:ab:6e:22:
75:c8:05:8e:18:27:8f:cd:41:ce:c6:d8:cf:b5:f2:
37:b1:46:da:2f:c4:e5:59:a9:74:4d:4f:bd:46:da:
85:bb:41:f9:fa:f0:df:9d:b0:7a:ba:c1:c6:02:be:
79:9b:fc:7c:13:68:c8:a7:32:32:38:4e:85:a4:3c:
f0:fd:8f:a6:5f:24:57:22:ab:7c:e3:68:4b:50:f7:
85:44:e0:0b:ec:68:90:48:bb:a3:1a:23:42:7b:a9:
ee:4d:a6:2a:9b:10:1e:73:ba:a9:11:13:b5:db:d9:
42:18:c3:9f:5e:62:a3:ab:63:3b:75:5f:18:ce:94:
d9:61:2a:f6:a1:3e:13:73:bb:96:9a:5e:83:ec:72:
67:1c:e5:86:ab:1f:a4:39:f0:67:2d:62:74:0b:d1:
22:78:43:b6:a9:db:b5:13:ea:54:6f:8b:1c:fb:ef:
38:1b:c8:79:57:60:23:e2:00:25:7e:b6:0a:f6:17:
27:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149819
sbgp-ipAddrBlock: critical
IPv4:
103.187.12.0/23
IPv6:
2001:df0:b440::/48
Signature Algorithm: sha256WithRSAEncryption
7c:97:d1:03:75:6d:e0:d8:58:c9:04:fd:9a:c2:21:1f:fd:d0:
70:57:78:df:99:53:7a:2c:e6:66:17:9b:17:e4:68:dc:cb:d8:
6e:af:af:5d:45:07:29:8d:ef:37:2e:f0:12:32:e4:54:bc:5d:
ca:a4:21:1f:17:e7:36:1d:70:a2:0e:87:9d:71:cf:a6:4c:9b:
83:1b:ef:76:72:a7:c9:a6:e7:eb:af:0d:da:59:7e:b1:89:77:
a0:8b:cd:8c:91:ff:71:c3:78:60:33:e2:3f:e4:92:fb:53:5c:
7f:ba:b9:07:a4:2a:c9:db:36:db:77:cf:6e:fc:be:9e:85:01:
a4:90:3a:3b:17:bd:8c:a7:b0:e1:be:25:ea:9f:5a:bb:2b:6a:
8d:0e:29:58:39:45:95:a8:a8:fc:31:dd:7e:fd:a4:45:05:d4:
3c:4d:71:59:4a:e8:a8:cb:f7:0e:b9:60:65:3e:e0:48:7c:61:
86:07:4d:8a:a4:fd:fe:0f:3b:04:b4:20:c8:f5:ee:12:41:a8:
3e:fc:8b:7c:07:99:ad:83:42:cd:00:fb:89:22:68:6d:4d:aa:
da:ba:43:f0:f7:66:8d:27:9b:17:cb:aa:30:15:10:ae:e7:33:
f8:9e:b6:45:0c:18:b1:73:64:9c:e1:82:ba:f3:2f:20:c4:70:
61:d5:6f:4a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 24 22:30:29 2024 by rpki-client on console-fra.rpki-client.org