Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer
File: bgopAGEwM5uDbSj3ABgC9xpaTkI.cer (raw, json)
Hash identifier: oyPgn2IiuQuBcqyNROZCYvs6G7WqdUFsz+VfAx9EkzM=
Subject key identifier: 6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F209
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 15 May 2024 12:31:56 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 149819
IP: 103.187.12.0/23
IP: 2001:df0:b440::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127497 (0x1f209)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 15 12:31:56 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91166D1/serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:95:d1:8a:a8:22:ed:85:fb:fa:c4:f1:31:14:
9a:48:88:d1:da:be:0b:a4:bb:1c:42:65:4b:63:99:
6d:3a:25:47:da:42:cb:2a:cb:13:34:3b:81:92:00:
fa:fb:5e:30:d6:73:43:3d:73:be:ea:a9:64:0a:9e:
b2:c9:57:3b:45:77:27:0f:9c:10:bb:c0:ab:6e:22:
75:c8:05:8e:18:27:8f:cd:41:ce:c6:d8:cf:b5:f2:
37:b1:46:da:2f:c4:e5:59:a9:74:4d:4f:bd:46:da:
85:bb:41:f9:fa:f0:df:9d:b0:7a:ba:c1:c6:02:be:
79:9b:fc:7c:13:68:c8:a7:32:32:38:4e:85:a4:3c:
f0:fd:8f:a6:5f:24:57:22:ab:7c:e3:68:4b:50:f7:
85:44:e0:0b:ec:68:90:48:bb:a3:1a:23:42:7b:a9:
ee:4d:a6:2a:9b:10:1e:73:ba:a9:11:13:b5:db:d9:
42:18:c3:9f:5e:62:a3:ab:63:3b:75:5f:18:ce:94:
d9:61:2a:f6:a1:3e:13:73:bb:96:9a:5e:83:ec:72:
67:1c:e5:86:ab:1f:a4:39:f0:67:2d:62:74:0b:d1:
22:78:43:b6:a9:db:b5:13:ea:54:6f:8b:1c:fb:ef:
38:1b:c8:79:57:60:23:e2:00:25:7e:b6:0a:f6:17:
27:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149819
sbgp-ipAddrBlock: critical
IPv4:
103.187.12.0/23
IPv6:
2001:df0:b440::/48
Signature Algorithm: sha256WithRSAEncryption
aa:4b:51:dd:89:d5:4d:1f:01:ac:d3:b9:a0:21:1e:b7:59:e7:
81:d9:70:66:18:d0:59:54:0a:5b:1b:56:e0:a5:59:97:90:02:
36:89:58:50:08:df:31:56:22:3c:09:f6:36:fb:08:4e:bf:04:
58:d2:86:3f:fb:2f:12:a4:62:a2:39:7a:f5:25:cd:48:d9:02:
55:b1:46:52:5b:2a:ab:ac:c2:a5:65:e3:4d:3c:60:4b:de:0e:
0a:99:d8:d0:74:42:90:f3:5d:0c:91:34:d4:8c:6e:28:7f:ef:
8b:d0:94:67:8c:ce:44:41:8d:27:6d:90:c8:94:ef:1c:28:72:
4b:d3:35:41:e9:3f:7e:78:17:34:02:78:ba:7c:c2:db:94:a2:
09:b6:6c:7d:d3:7e:1f:ca:35:ca:de:1e:eb:87:65:3e:51:90:
d5:d4:93:e0:c0:ad:5a:59:72:52:f5:44:ac:dd:d5:b3:4d:be:
12:67:51:c1:37:70:00:70:e3:17:d1:50:ac:25:aa:7d:b6:ae:
be:cf:b2:dc:b5:41:d7:92:5f:e4:aa:2e:0b:2b:8a:1c:c4:09:
46:06:2e:5c:d8:27:62:86:bc:9e:5f:87:1a:2f:d7:2a:de:d1:
43:6a:10:84:9b:6f:4a:82:8d:48:00:99:49:a8:d3:8e:89:17:
8c:64:85:eb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:38 2024 by rpki-client on console-fra.rpki-client.org