Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer
File: cHDFVlzC_kVsMWBAi25_toDAjBk.cer (raw, json)
Hash identifier: kRfZ6FsUzk7lMVrkm43mQyE+ew5rlrGClhayGwTpeB8=
Subject key identifier: 70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02074E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 Aug 2024 15:13:01 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 134447
IP: 103.104.87.0/24
IP: 103.104.96.0/23
IP: 103.193.18.0/24
IP: 203.109.40.0/22
IP: 2401:f8c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132942 (0x2074e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 16 15:13:01 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A915B77C/serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:08:6b:2a:8a:89:62:35:81:d1:ab:0b:ad:49:
0a:9a:ab:0f:0b:41:c9:94:45:6d:3d:11:14:8d:d5:
21:4d:f8:54:68:a9:51:11:83:05:13:fb:08:bb:58:
21:06:51:72:35:b8:44:89:00:83:10:2b:94:4c:20:
31:1d:f5:f4:59:4e:bd:e1:a4:bb:00:4c:31:79:22:
b2:7a:c0:04:b0:fe:64:33:8c:e9:ce:47:93:d5:46:
5a:97:5c:cd:0b:37:82:04:48:a4:1a:69:86:cb:85:
f4:48:01:ed:a2:c1:2f:59:80:73:d3:48:f8:8a:6a:
82:af:8d:61:fe:97:37:53:c1:75:ac:c4:e1:36:29:
cc:04:46:a0:15:54:8a:eb:8f:a7:ad:a2:40:76:7a:
9e:c9:62:9d:1b:a2:f0:80:da:9c:08:4a:1e:89:75:
49:2b:aa:51:ab:69:60:82:d8:0e:7b:b7:a3:19:b9:
c1:8d:07:51:8c:e5:74:97:e8:8b:32:17:c8:f9:d2:
4f:93:2c:e1:93:c5:95:c3:0b:af:4a:36:6b:7f:9a:
b9:64:6b:81:8a:21:01:78:89:22:49:77:e5:f8:53:
c2:be:b1:2c:2d:0a:5c:cd:ba:8e:11:bd:34:ce:ed:
69:9a:00:28:f2:62:b5:b5:16:f3:d4:64:2e:02:ec:
07:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134447
sbgp-ipAddrBlock: critical
IPv4:
103.104.87.0/24
103.104.96.0/23
103.193.18.0/24
203.109.40.0/22
IPv6:
2401:f8c0::/32
Signature Algorithm: sha256WithRSAEncryption
a1:dd:60:a4:5a:16:e0:c3:c0:a5:87:92:0d:f4:15:23:01:1f:
6b:40:14:d6:c6:ac:7e:60:98:dd:cd:e6:3d:37:66:c1:3f:ea:
f2:1b:a2:3c:63:4d:84:99:62:c5:6c:f9:03:8e:45:9a:07:bb:
de:aa:5b:ed:68:95:66:1f:64:d6:c7:02:aa:67:04:69:d7:e7:
b1:51:ca:d5:0c:bf:14:8e:c6:ca:cc:25:b5:b4:fb:e5:38:fc:
69:7d:75:16:bd:c1:a3:5e:79:55:be:ba:16:10:5d:77:07:8b:
a1:ff:a4:aa:a8:e7:fb:dc:82:ba:c8:97:f4:bf:d2:be:9c:c9:
73:5d:b1:a4:d4:a9:0b:4c:2e:09:ed:be:50:02:a3:67:84:95:
6d:19:ee:c4:13:0d:32:9b:97:68:0c:75:78:d4:b2:e3:ac:82:
f7:a9:7a:5c:24:4a:3a:96:92:0c:a8:00:5b:ff:ab:d0:6b:1b:
f5:72:ff:5d:c1:0f:2f:be:95:f2:50:ae:42:9b:91:19:65:2b:
cd:14:0f:a1:ad:45:73:d8:1c:f8:2f:15:01:57:bd:aa:e6:8d:
ae:d1:8b:24:f3:fb:95:5e:5e:cc:d8:54:ae:f2:e4:d4:07:56:
30:fa:4f:bf:ca:4d:3c:08:da:f1:75:42:85:0a:bb:84:d4:f6:
cb:a9:e8:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:39 2024 by rpki-client on console-fra.rpki-client.org