Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer
File: cxFBrwp5OqMW733dLxsF-JHFZrI.cer (raw, json)
Hash identifier: 5pKcf1eLEo5nqWKVsZO5LOopqsunAghpGi9YaE+4g4c=
Subject key identifier: 73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EBE9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 17 Apr 2024 03:41:36 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 4647
IP: 103.246.28.0/22
IP: 203.30.140.0/24
IP: 2404:fc80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125929 (0x1ebe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 17 03:41:36 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91CDE0E/serialNumber=731141AF0A793AA316EF7DDD2F1B05F891C566B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9d:e9:a2:30:c6:2a:c6:b1:b4:15:74:1b:28:
9c:3d:d1:8d:8f:97:a5:32:4d:0c:a3:af:23:2e:a1:
8c:da:a0:54:d1:0f:fb:4d:b8:8e:4d:7b:d5:f9:d0:
84:7d:ea:83:79:dc:d4:41:1d:23:a9:6d:4b:f7:ed:
55:33:53:8d:e8:c1:a9:47:85:f7:e6:e4:cd:cf:81:
e9:87:3d:08:44:cf:ac:4b:f8:f6:31:57:6e:7e:c4:
e7:96:2e:d4:a7:5d:29:1b:f7:ce:41:24:70:67:b0:
ec:f0:eb:58:f2:07:fd:f0:b4:5c:4c:07:1e:d0:bd:
79:f2:df:ad:ae:46:d0:af:1c:5f:0f:34:a3:6e:3b:
69:39:a0:a0:9a:6d:ae:ea:c6:6b:39:3d:72:d5:a8:
3e:f9:70:d2:68:7c:eb:4b:ce:4d:07:ba:a6:b5:e7:
c6:4c:c2:b3:61:6d:ab:af:69:99:f3:2e:23:87:b6:
a7:96:20:6b:77:7c:46:51:99:c9:a8:94:8a:ce:ac:
d5:cd:de:61:96:b7:9c:2d:ac:85:24:2c:aa:73:a1:
8a:49:ac:6e:94:46:70:ce:c6:06:cb:97:68:e3:aa:
0b:16:7f:d0:b4:1e:45:3e:0d:85:f6:0b:84:0d:92:
81:8a:2c:67:21:a3:23:13:85:a5:9b:39:e4:21:49:
94:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4647
sbgp-ipAddrBlock: critical
IPv4:
103.246.28.0/22
203.30.140.0/24
IPv6:
2404:fc80::/32
Signature Algorithm: sha256WithRSAEncryption
87:88:c4:71:cc:68:19:39:1b:51:16:f9:4f:59:f6:78:4d:d3:
9f:ad:1e:f5:27:74:75:9b:2a:7a:e4:56:c8:89:b6:be:3e:76:
af:2b:4f:ce:b3:19:c7:c7:eb:8b:0d:2b:d6:0b:dd:d0:09:70:
37:30:6a:0c:8d:78:80:7f:20:2a:ff:f4:e5:19:66:69:b1:7f:
4b:68:44:e3:8b:f4:b7:bb:f5:77:70:c0:c8:66:bb:ae:35:48:
cb:e6:5e:f2:64:81:45:db:97:7e:6a:80:16:ae:c6:28:c9:0f:
c0:29:26:1a:d8:fd:22:48:c7:2c:99:f8:f2:64:5d:65:22:91:
8a:59:ce:1c:c4:d8:a8:be:b4:ec:c8:7a:78:14:e7:cb:8d:15:
a4:07:6d:ea:b1:e9:2d:a7:c2:cf:dd:d9:cd:9e:f9:d2:6c:1a:
38:8f:c1:53:76:d8:3a:02:c2:d3:f9:c2:10:1c:bb:d9:9e:df:
6e:9e:1c:52:50:7b:af:e7:df:a0:2e:6d:77:0e:b2:14:23:7b:
06:0d:6f:05:d3:af:dc:f5:da:a0:b9:06:29:bc:85:ec:79:9a:
12:dc:08:99:77:a1:ab:05:96:45:cf:c8:a2:f4:78:e0:ac:06:
c0:27:a1:51:35:e1:af:04:bf:ca:45:3e:54:09:63:d3:52:05:
00:39:d5:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 05:37:11 2024 by rpki-client on console-ams.rpki-client.org