Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer
File: cOaM6FoDjZ4wcEODfKbmsaZglu4.cer (raw, json)
Hash identifier: Xv5jJfvaLHTb0N1sSR/HGirgbnw4jRXoHMjlRpKLTzw=
Subject key identifier: 70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0219DC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 13:55:40 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 139714
IP: 103.143.250.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137692 (0x219dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 13:55:40 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91F6ADE/serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3f:80:3e:de:1f:e1:32:5b:b5:0d:bc:24:41:
85:15:d3:05:c1:ce:38:cb:cb:f7:63:40:ee:d8:60:
14:eb:ec:92:a2:69:5d:31:79:19:67:14:e4:c5:21:
75:7b:a1:b5:83:03:6c:3c:af:8f:59:f0:59:ff:69:
02:f8:58:82:1f:c7:a5:9d:a4:78:8b:ee:20:6e:3e:
9a:b8:c6:5b:e1:71:10:b0:5f:c2:33:7e:a9:f1:09:
e5:09:a3:8c:aa:03:80:b1:6f:16:20:c8:5e:c8:3d:
0c:cc:4e:1c:ca:ab:41:46:70:4f:52:f2:5c:7b:c0:
18:3f:4b:82:b1:97:cb:3c:80:98:e4:4a:7c:f2:23:
53:77:d8:6b:d3:13:29:e5:b7:9a:3a:31:91:b2:e3:
25:27:b0:93:d5:4e:29:31:83:74:cd:52:c5:67:fc:
ed:7f:f0:96:74:55:62:07:2f:dd:17:9c:47:95:59:
83:0a:ac:cf:84:c6:28:76:b2:81:98:e5:9b:3a:82:
fa:46:54:cf:f8:59:cf:4d:99:ac:48:b7:1f:b8:7c:
3e:7f:31:0d:0f:82:6a:4a:9e:eb:32:2d:1d:bf:28:
2d:be:86:86:61:e0:8a:c9:c8:04:48:e7:88:cc:5e:
a3:ae:cd:34:ea:57:13:74:03:14:c7:91:a3:01:86:
8e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139714
sbgp-ipAddrBlock: critical
IPv4:
103.143.250.0/23
Signature Algorithm: sha256WithRSAEncryption
33:90:bd:8c:cb:68:f8:ed:ed:54:06:5c:c8:5a:d9:30:68:d5:
37:2a:96:b9:74:fa:bb:90:6f:0c:37:a0:52:6b:72:e2:ed:4f:
2b:6d:96:a8:8b:af:83:a3:3b:78:4f:cb:3e:90:45:dc:3b:19:
da:1d:f2:32:88:b7:d4:64:1d:39:1f:17:08:4d:a6:0b:40:eb:
13:ca:95:89:70:72:7c:cd:2f:08:aa:59:25:75:a0:01:ad:94:
3c:35:7a:aa:20:74:0e:58:b4:b9:3a:92:6f:94:1e:aa:a1:72:
a1:e6:69:e0:46:04:31:fe:5b:78:38:54:0f:27:af:c8:b3:fe:
42:5a:bb:18:09:60:9a:b9:9a:1d:fd:c8:9f:1d:f2:3b:68:d2:
f1:66:5e:6e:94:09:90:9c:19:9e:ad:83:60:7a:d5:b1:24:56:
cd:e9:54:19:b7:98:9a:14:6f:22:22:43:7d:79:6a:74:7f:3d:
8a:b6:ab:66:68:1d:29:b0:e4:d2:9d:e2:12:0e:1f:39:4f:8b:
88:da:b4:f4:7f:62:95:3f:39:fd:80:41:ed:26:24:b9:c5:84:
d2:76:1b:f2:c9:28:e4:51:2a:83:1b:fa:80:34:f0:c5:a0:68:
dc:0f:67:b2:d3:e8:b4:ba:3c:b9:f8:ae:a3:91:85:58:16:46:
7e:f4:73:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:38 2024 by rpki-client on console-ams.rpki-client.org