Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ech9xZWwwn0jMpvJkoSiPIv9oOc.cer
File: ech9xZWwwn0jMpvJkoSiPIv9oOc.cer (raw, json)
Hash identifier: aBH1nu25z5Eagb9OurpceCSlwI+ss9DljD21HjTLB7Y=
Subject key identifier: 79:C8:7D:C5:95:B0:C2:7D:23:32:9B:C9:92:84:A2:3C:8B:FD:A0:E7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C421
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B2D4F/EF8755182F6011EEBF7F7733C4F9AE02/ech9xZWwwn0jMpvJkoSiPIv9oOc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B2D4F/EF8755182F6011EEBF7F7733C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 15 Oct 2023 17:10:58 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 142617
IP: 103.170.238.0/23
IP: 2407:ba40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115745 (0x1c421)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 15 17:10:58 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91B2D4F/serialNumber=79C87DC595B0C27D23329BC99284A23C8BFDA0E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:14:0d:f9:1c:37:7f:0a:87:28:22:30:2b:8a:
3b:c5:73:f1:54:a2:7c:da:a1:74:7d:7a:52:bc:b7:
32:8e:2f:b3:72:a5:2b:17:24:02:2c:34:b8:7e:95:
6e:71:78:ce:e2:87:64:6b:4c:e6:0e:48:bb:1a:a1:
47:b2:33:51:86:5e:c0:02:99:91:8d:be:ac:21:bf:
fb:1f:12:a0:a3:92:fd:0e:55:26:c7:59:73:16:67:
f5:55:07:9a:b2:cd:ef:6c:e5:e0:74:61:27:55:59:
ae:99:ae:c3:b7:79:a2:5d:60:01:c8:62:d4:43:35:
11:92:0b:6b:a6:f5:ee:76:a9:51:14:24:c0:fc:99:
5f:9e:4f:f1:89:99:79:80:d3:b7:8d:d0:df:63:68:
f8:b8:da:6a:f0:ae:93:ae:70:a0:81:d7:d2:27:e6:
07:a2:9d:31:3a:aa:34:7c:9f:00:76:11:bc:c3:50:
1a:fe:63:a8:96:53:ec:c6:cb:f2:85:fd:0f:f1:3f:
8b:c3:6e:08:3f:c4:a8:37:ed:0c:be:9b:e4:92:85:
23:1f:7b:be:95:f6:3c:84:c4:ad:75:25:12:8d:2d:
4b:23:a2:61:7a:bd:83:03:a9:e3:29:15:9c:ed:48:
e1:fd:8c:99:40:49:87:08:30:9a:f4:e2:c4:4c:74:
80:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:C8:7D:C5:95:B0:C2:7D:23:32:9B:C9:92:84:A2:3C:8B:FD:A0:E7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B2D4F/EF8755182F6011EEBF7F7733C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B2D4F/EF8755182F6011EEBF7F7733C4F9AE02/ech9xZWwwn0jMpvJkoSiPIv9oOc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142617
sbgp-ipAddrBlock: critical
IPv4:
103.170.238.0/23
IPv6:
2407:ba40::/32
Signature Algorithm: sha256WithRSAEncryption
87:05:08:a0:81:9d:7c:8b:53:4c:15:67:18:48:0e:5d:c8:dc:
2f:de:7e:63:bf:c2:d3:f8:41:0e:1e:90:11:4c:20:96:c1:ae:
dd:f3:5d:f8:64:8a:a1:8f:12:b9:65:6b:f4:f9:c5:74:a9:7e:
b8:71:89:cc:f4:c8:0c:2c:97:2b:95:58:dc:fe:84:2b:ac:94:
c4:e4:f2:6b:28:8e:8f:cd:8e:38:d2:6d:18:0d:b2:49:ee:7c:
25:2c:ac:d8:d0:53:fd:3f:7c:85:75:9a:62:c1:32:83:65:f6:
b4:d9:86:96:2c:8b:af:1c:b4:33:86:94:7f:4d:44:ec:a5:de:
97:99:22:99:6e:05:6d:b9:e7:2a:c1:72:a2:13:68:b4:69:64:
f4:34:00:02:81:d2:8d:b3:ec:54:f4:67:70:75:63:57:db:6e:
72:33:f1:65:5e:8e:04:3a:dc:0c:43:0e:76:2b:40:37:30:64:
99:ed:f3:36:20:b4:84:90:55:54:11:79:9f:a4:6d:ac:94:ff:
66:90:96:7f:c3:12:3a:f7:c5:16:15:f6:93:3a:85:d8:0a:cb:
b0:07:05:9a:76:88:d8:46:38:92:e0:50:64:49:de:03:88:61:
32:b5:7c:f9:f6:03:14:8c:9c:d0:10:f9:b1:bc:b6:7b:5e:cb:
cd:42:b8:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 06:14:25 2024 by rpki-client on console-fra.rpki-client.org