Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer
File: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer (raw, json)
Hash identifier: 6L9LqTZUrjIVI82nuDVlBjtH5qdHmCPVMGLOKbuUv7Y=
Subject key identifier: 6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D508
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Dec 2023 16:17:10 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 141462
IP: 103.159.186.0/23
IP: 2001:df5:8b80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 05:04:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120072 (0x1d508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 29 16:17:10 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f1:b6:2c:20:2b:0f:77:ed:69:5a:b1:be:c1:
91:5f:18:ba:89:b5:22:b1:3e:c7:86:40:82:e4:10:
7c:ea:02:0f:13:5b:8e:e5:08:45:2d:52:bd:e5:9f:
fc:05:f1:fb:e3:ac:41:6a:22:96:1b:10:4c:19:c7:
f7:30:d1:df:89:6b:bc:3d:2f:45:c7:53:81:f4:c3:
6b:9e:35:23:d2:5f:f1:44:3c:d3:24:ed:cf:d7:e3:
4a:12:60:ad:ea:3b:13:27:8a:46:86:ef:38:d0:27:
ce:86:88:37:be:49:a3:7b:49:6d:2a:f9:d7:05:f7:
32:21:3b:26:50:96:f3:31:d0:29:72:17:6c:4d:05:
92:5e:70:62:e6:03:18:4f:47:fd:12:5b:c3:ab:9e:
e5:1a:19:ee:1d:08:06:e1:f1:a5:29:6b:8f:a6:5f:
67:78:75:4b:80:04:60:f3:92:e0:91:86:e2:c9:07:
ea:72:9c:bb:77:44:ea:68:f7:be:12:0b:ca:c0:41:
9b:73:15:7f:08:be:c3:ec:1f:8b:55:9f:7d:32:af:
7b:3e:f9:35:d7:05:64:44:21:f9:9f:db:11:7b:51:
4d:ec:07:47:6c:45:32:0d:54:ca:e2:9f:0f:7b:3d:
9a:5b:8f:08:1d:66:70:8e:b6:46:bb:cf:e2:cc:ca:
18:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141462
sbgp-ipAddrBlock: critical
IPv4:
103.159.186.0/23
IPv6:
2001:df5:8b80::/48
Signature Algorithm: sha256WithRSAEncryption
9f:ff:8d:ae:71:cb:2e:11:08:77:45:8c:84:fb:55:4e:48:1a:
aa:2b:7c:cf:8f:dd:43:f9:6a:39:d1:73:1e:a9:a9:5e:10:a0:
18:8b:5f:22:2f:97:d0:e0:22:29:42:43:62:df:0f:98:88:56:
b8:cf:41:17:c4:48:b9:36:ab:77:90:a9:44:35:d8:92:e2:30:
a5:01:99:e3:9a:14:0c:fc:8c:f9:d7:6a:19:d4:78:46:c7:db:
47:9d:fb:91:3d:9c:a2:3c:15:4e:72:52:f6:ca:8f:20:c5:3e:
fe:66:11:0e:1d:73:c3:23:f7:c0:e0:cb:66:2c:39:43:82:68:
aa:36:96:3b:15:28:d9:7a:95:52:51:9d:aa:f7:24:b5:1e:13:
c5:a4:70:7f:94:2b:85:f9:ed:79:fd:82:6c:24:78:00:7c:cd:
3d:7f:72:4d:9e:94:f4:79:ff:e8:20:9d:2c:ad:68:02:d3:48:
e1:06:43:68:d3:49:56:67:10:e1:4c:a0:9f:71:34:ac:aa:9e:
fb:a8:2e:c5:1b:b3:07:c4:62:3b:a1:e9:e8:cd:31:a8:8c:0b:
b5:8d:6a:32:b7:dc:7c:5f:ad:7c:a8:31:7f:42:bc:ec:50:eb:
9e:3a:3b:03:7c:e1:06:e3:37:d0:59:b2:49:78:d7:bf:cf:0c:
93:de:e1:b4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 19 05:37:35 2024 by rpki-client on console-fra.rpki-client.org