Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer
File: byPyfwkL70UxgCBy4drPIQ2dQjw.cer (raw, json)
Hash identifier: xzgNZvz2A2ghEfbdnFiEoK77x+upRTh5XntodbbLHMQ=
Subject key identifier: 6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D436
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 Dec 2023 17:47:51 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 149475
IP: 103.180.108.0/23
IP: 2001:df0:59c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119862 (0x1d436)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 26 17:47:51 2023 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91AEB80/serialNumber=6F23F27F090BEF4531802072E1DACF210D9D423C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f6:0c:a6:5a:94:3d:35:0e:4a:2b:5f:34:53:
ac:a3:e3:e9:6c:93:21:d4:de:78:b5:57:19:6a:9c:
48:e1:95:36:e0:c5:ef:d9:6b:8d:8a:82:f5:5f:4d:
ad:73:a8:8f:87:13:83:e8:73:af:4d:79:b6:aa:f8:
35:6b:40:92:ac:27:e1:4b:49:bb:a8:cd:fd:82:bb:
4d:57:29:26:d5:bc:f7:73:f1:bb:bf:a9:58:25:7f:
57:38:47:f0:73:99:74:13:77:8f:e4:18:7c:a1:d9:
3e:ff:6e:9e:2f:ef:ae:c8:7f:15:86:ad:fc:c8:a0:
79:de:0a:fc:3c:05:27:1f:d2:d4:a7:87:12:76:4e:
3c:7f:19:3a:e2:0a:d3:4e:40:b7:f8:14:91:77:c5:
0b:e8:f0:96:48:8e:4d:02:28:a3:43:2b:fc:a6:15:
42:35:c6:34:49:c6:e2:15:75:9d:cc:e0:f5:23:36:
f5:e4:32:a3:ba:de:9f:ac:39:f6:a8:a9:18:16:1b:
a7:f1:4e:5b:9b:3c:cf:c7:7d:f3:04:0f:f0:25:e3:
c4:a7:f6:1f:78:f4:49:35:2f:8c:97:e5:10:01:c2:
25:17:cc:71:1a:c5:ff:75:33:7b:a8:1b:f8:7e:ea:
df:27:a9:db:2f:28:84:26:95:cb:c9:19:da:1e:2e:
2a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149475
sbgp-ipAddrBlock: critical
IPv4:
103.180.108.0/23
IPv6:
2001:df0:59c0::/48
Signature Algorithm: sha256WithRSAEncryption
79:c1:32:c8:8b:76:11:44:a3:af:b4:52:96:45:9e:c6:1d:18:
41:ce:64:06:0d:8e:9f:8a:8c:20:a0:38:da:c2:44:ef:7f:4f:
2c:7e:69:29:56:69:19:c2:83:47:26:11:f1:8b:25:4e:d0:12:
b0:fc:4b:5b:09:71:3a:15:1c:82:a2:14:db:35:ef:3a:cd:ef:
39:f4:a1:db:9a:d8:e9:87:4f:dc:d5:79:6a:25:e0:ec:3d:1e:
be:6c:4c:0a:6b:5c:e0:67:7c:a9:35:ac:9e:44:ce:f7:a8:da:
ec:b1:92:6e:50:55:e5:be:66:34:95:c9:ce:ad:35:59:2c:b0:
d7:61:45:f6:e1:15:65:ed:4d:b3:8b:45:1b:4a:52:59:45:8a:
f6:ee:55:6a:3f:1a:30:59:cc:b6:21:7f:bb:a6:d2:eb:0e:dd:
72:4b:2d:82:a4:14:6c:79:80:4e:ae:39:fc:c1:f9:9d:2e:ab:
81:f8:0a:05:b9:8b:38:0a:6b:fa:ea:f1:99:35:12:ce:4f:e1:
61:3a:a4:ea:dd:2c:94:f7:50:87:c6:9c:7a:66:97:36:40:99:
93:8c:87:18:6d:e8:d3:dc:50:44:d6:50:7b:8b:71:55:c9:f9:
ea:5f:0d:65:d5:6f:60:a2:c7:e5:57:1e:24:20:30:91:0a:25:
ef:12:89:82
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 06:58:55 2024 by rpki-client on console-fra.rpki-client.org