Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c8BwFxdufsG_l34xFvWB9RFNA2A.cer
File: c8BwFxdufsG_l34xFvWB9RFNA2A.cer (raw, json)
Hash identifier: qHF6csnFSGdcq4ao4sC5JHBE7Q2J4pM1paDPpO54zIM=
Subject key identifier: 73:C0:70:17:17:6E:7E:C1:BF:97:7E:31:16:F5:81:F5:11:4D:03:60
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F00E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B9101/77288822EDC911EDA7301F7FC4F9AE02/c8BwFxdufsG_l34xFvWB9RFNA2A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B9101/77288822EDC911EDA7301F7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 05 May 2024 18:14:11 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 151214
IP: 103.133.246.0/23
IP: 2001:df2:62c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126990 (0x1f00e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 5 18:14:11 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91B9101/serialNumber=73C07017176E7EC1BF977E3116F581F5114D0360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3b:12:ec:75:f9:17:5f:69:fd:4c:12:1b:a4:
6f:ad:96:6d:01:63:f9:87:b7:97:4c:51:d2:63:79:
b0:33:6c:fc:d9:51:cd:d6:24:04:5d:2f:0c:e1:59:
cb:a5:8b:67:bd:a5:fd:c0:9b:48:93:82:d0:e3:39:
f3:c1:e1:2b:4f:a8:00:7f:46:33:92:8a:cc:ad:9a:
36:3e:f7:62:92:05:a0:b0:7a:9a:d4:f0:15:98:ae:
0d:80:af:dd:6c:0f:fd:f4:6e:26:89:52:30:fc:84:
ac:05:50:ed:4c:63:e4:0c:c4:31:b4:3a:c0:7f:c6:
1c:81:05:7d:21:35:94:90:25:d0:96:68:14:f9:ff:
36:86:a9:70:23:71:11:4a:dc:4c:de:d1:25:6c:29:
fd:0d:67:c6:50:19:69:16:0c:7b:a1:92:07:d6:b9:
09:b8:e8:b3:5b:26:c6:3d:aa:88:76:46:5f:58:ae:
10:e5:07:02:4a:29:ce:01:db:05:62:56:bd:1e:08:
86:45:6c:96:ce:45:3c:11:a5:1c:f2:c1:60:7b:b4:
31:b9:f8:8f:3c:ee:52:65:30:45:1f:b4:da:e7:e0:
32:87:51:f8:15:1a:74:78:4a:50:25:04:cf:7d:58:
35:a7:7c:20:a7:ce:33:6c:87:62:c2:da:f6:86:6c:
24:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C0:70:17:17:6E:7E:C1:BF:97:7E:31:16:F5:81:F5:11:4D:03:60
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B9101/77288822EDC911EDA7301F7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B9101/77288822EDC911EDA7301F7FC4F9AE02/c8BwFxdufsG_l34xFvWB9RFNA2A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151214
sbgp-ipAddrBlock: critical
IPv4:
103.133.246.0/23
IPv6:
2001:df2:62c0::/48
Signature Algorithm: sha256WithRSAEncryption
2c:7d:eb:c9:ef:57:8f:dd:79:ab:d5:81:dc:5c:3b:af:ed:5d:
aa:6f:0d:c3:79:6f:80:af:23:7d:6d:b1:06:db:10:66:2f:f5:
d5:36:a9:29:74:14:8c:7f:67:83:98:e1:36:5f:65:39:75:37:
62:fe:b4:46:06:bf:e4:ea:af:fc:d0:d4:1c:b9:d9:4c:81:5e:
95:41:e9:84:a9:36:28:10:f8:2b:5d:31:99:70:60:15:27:01:
da:f2:0c:1c:4c:c7:32:2f:d0:7c:02:32:fb:88:f2:41:97:c9:
bf:0e:36:b3:32:2e:31:eb:9e:23:88:7b:09:c1:6d:f5:59:43:
b6:d2:0a:e2:32:e8:da:a4:40:0a:f3:7b:41:61:9b:3a:4b:b4:
b1:19:34:60:38:08:35:89:f3:83:07:2c:a3:6a:5a:09:bf:8b:
f7:cf:de:4d:b2:f2:3f:cd:aa:df:30:f5:91:5b:82:bc:30:ac:
4e:cb:35:ce:05:62:34:65:2c:d0:72:cb:15:63:53:f4:1c:c9:
f2:18:e4:c5:9f:ca:d4:19:af:0a:a2:25:2a:ec:db:fa:b3:e3:
60:96:fb:06:bd:e7:fc:96:c5:73:c1:e9:88:1b:dc:19:41:02:
17:44:40:11:12:e7:0d:4d:95:b8:b9:6e:a3:69:a8:a6:95:fb:
8f:4f:fe:70
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:38 2024 by rpki-client on console-fra.rpki-client.org