Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eXUDPcXUVA8WrsEhKG7EFMp4fW8.cer
File: eXUDPcXUVA8WrsEhKG7EFMp4fW8.cer (raw, json)
Hash identifier: aqzm9/R9WYyeN2dcxK08Zi+q0UfGYyjWDmozvsBreOw=
Subject key identifier: 79:75:03:3D:C5:D4:54:0F:16:AE:C1:21:28:6E:C4:14:CA:78:7D:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02045D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BC5BC/13EAA47C862311EAA0059881C4F9AE02/eXUDPcXUVA8WrsEhKG7EFMp4fW8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BC5BC/13EAA47C862311EAA0059881C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Aug 2024 22:05:44 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 139305
IP: 103.141.14.0/23
IP: 2001:df0:e480::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132189 (0x2045d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 1 22:05:44 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91BC5BC/serialNumber=7975033DC5D4540F16AEC121286EC414CA787D6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:48:c1:7b:9f:d0:ac:c9:bc:8c:c5:6a:c1:72:
41:f9:9f:3b:39:bc:6d:d2:89:8e:2b:eb:72:8b:6d:
25:ed:3b:32:dd:62:cc:e0:1c:6d:1f:1f:bb:2e:67:
bb:58:d5:ec:96:1f:8a:b4:f0:bb:b5:8f:9c:d9:72:
f6:4d:f5:23:ed:da:78:e9:7e:e6:49:12:6d:39:1e:
61:65:84:14:a3:ad:2c:f7:e1:aa:1d:e4:ac:27:5b:
30:ba:69:f1:5d:28:40:60:ec:06:c7:21:cc:26:c6:
2a:c8:a2:c9:98:64:50:47:e4:23:c5:8c:52:d0:45:
a1:20:42:45:86:be:b9:dd:85:8d:97:e0:86:15:88:
a3:dc:76:47:e1:ef:31:84:50:ff:6f:bd:2b:36:78:
53:6e:ca:d3:dd:d2:b4:b7:ee:ad:ff:65:66:e9:f7:
bc:1c:66:67:82:9e:28:7e:a1:ca:60:2d:15:83:bd:
24:70:bc:45:37:96:98:eb:22:d3:0f:ff:10:06:75:
a5:c2:b7:f3:76:f4:0f:85:2b:e8:8b:6d:c9:6f:3c:
02:0d:d9:78:5d:d1:7f:7a:50:5c:df:2c:91:14:25:
10:d2:84:2d:3e:b3:37:63:07:40:69:e9:aa:83:23:
3b:71:1a:a5:40:f6:34:a2:73:79:d7:b6:61:de:0a:
0c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:75:03:3D:C5:D4:54:0F:16:AE:C1:21:28:6E:C4:14:CA:78:7D:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BC5BC/13EAA47C862311EAA0059881C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BC5BC/13EAA47C862311EAA0059881C4F9AE02/eXUDPcXUVA8WrsEhKG7EFMp4fW8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139305
sbgp-ipAddrBlock: critical
IPv4:
103.141.14.0/23
IPv6:
2001:df0:e480::/47
Signature Algorithm: sha256WithRSAEncryption
a3:11:62:ab:59:75:8e:20:a6:3d:b7:be:81:84:61:6b:a1:f2:
57:41:71:f7:9f:1c:47:b0:d2:91:9f:57:51:4e:b8:a9:ff:fe:
c4:80:6a:b2:dd:6f:65:3e:de:28:48:61:f4:98:8f:df:e0:f7:
9f:0a:a8:ee:d3:9b:37:a6:d7:d7:bf:f5:19:ed:4b:d0:22:11:
a9:32:c4:80:f6:c6:05:ed:aa:df:5e:e4:4c:f0:c8:cf:2d:fe:
90:77:40:cf:ec:c7:8c:04:bf:c1:85:6b:fa:2c:b6:50:1f:a4:
c4:83:25:db:94:76:44:b7:4f:44:87:03:ee:6a:c2:b0:d8:50:
ac:c9:ca:31:87:9e:c2:98:c5:f1:5e:cd:5c:d0:27:cb:1c:fd:
6a:fa:e6:a9:b4:18:3a:61:4e:07:ff:c0:b5:fd:30:90:73:ee:
9b:61:ed:9f:c7:ac:bb:81:93:ca:9d:19:1f:43:43:c1:ae:cd:
45:4f:94:2b:a1:dd:80:79:b7:e9:f5:9c:12:8b:0d:32:ea:df:
ea:3d:ae:3f:72:fe:5b:cf:3c:8e:8d:7c:1b:5c:f5:ae:cb:90:
86:8b:d0:ed:d2:54:f1:b2:2e:3b:59:02:b1:eb:26:65:7e:b3:
5a:6b:f7:d6:33:c1:eb:a5:a1:2f:13:e1:33:7f:38:da:40:0f:
ea:f4:49:68
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:53 2024 by rpki-client on console-fra.rpki-client.org