Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eeVjKvKbrmTl-fGcV1vFqZXiBVA.cer
File: eeVjKvKbrmTl-fGcV1vFqZXiBVA.cer (raw, json)
Hash identifier: UelaxTHQFVZtDBgxDNDvpPn8x8Uf9zX9QJ+zo6k4pY4=
Subject key identifier: 79:E5:63:2A:F2:9B:AE:64:E5:F9:F1:9C:57:5B:C5:A9:95:E2:05:50
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E2A8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/eeVjKvKbrmTl-fGcV1vFqZXiBVA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Mar 2024 15:44:51 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 56304
IP: 103.15.152.0/22
IP: 175.111.100.0/22
IP: 2400:6900::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 19:43:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123560 (0x1e2a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 4 15:44:51 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91FEB27/serialNumber=79E5632AF29BAE64E5F9F19C575BC5A995E20550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:86:43:72:5a:cc:71:ad:bc:02:cb:e5:27:6d:
77:34:84:3a:8f:f3:85:9b:6b:bf:30:3c:fe:cd:04:
87:d9:c3:04:75:b2:61:e0:f4:38:cd:9a:43:db:7d:
37:22:a0:42:74:68:b6:e5:c7:8a:70:5d:9c:ee:0c:
9d:75:e6:77:12:6a:5f:ba:6a:5d:97:72:cf:08:6f:
01:cd:43:90:cb:1c:ec:6d:db:a7:ad:60:75:f5:72:
87:e3:b8:56:17:3f:b4:a7:0c:66:a0:43:f0:13:66:
ef:1b:db:00:61:cf:df:03:97:1d:43:88:30:5a:04:
1d:ef:ff:9d:91:56:ab:10:2f:fb:5d:3b:f2:74:e8:
c2:ca:04:f8:0b:c6:5f:8d:1f:db:38:f7:aa:fc:64:
88:df:14:3f:eb:64:d2:07:84:c3:87:9c:ed:4e:97:
eb:26:35:79:1a:40:99:ed:a4:cd:ab:16:6a:4b:64:
95:07:3c:eb:c3:8c:75:55:ff:a8:2f:ed:9b:d6:d5:
db:8d:9e:11:ea:bc:13:e1:e3:4b:0b:bb:c4:5b:8e:
04:4b:7e:b8:bc:a9:d1:6c:0a:de:39:34:e3:3e:47:
b2:42:94:3d:a9:bf:e4:4c:00:5e:ec:61:ce:29:cb:
ac:d4:ad:4c:d1:a4:91:86:fa:ed:6c:8f:85:26:97:
80:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:E5:63:2A:F2:9B:AE:64:E5:F9:F1:9C:57:5B:C5:A9:95:E2:05:50
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/eeVjKvKbrmTl-fGcV1vFqZXiBVA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56304
sbgp-ipAddrBlock: critical
IPv4:
103.15.152.0/22
175.111.100.0/22
IPv6:
2400:6900::/32
Signature Algorithm: sha256WithRSAEncryption
a2:a9:11:3a:89:93:7d:c6:9f:34:4f:5b:be:13:15:5e:b4:6a:
27:af:2a:11:fc:a2:2c:5e:42:c0:e2:cc:fd:e0:97:21:20:2e:
72:23:1c:66:63:33:cc:65:df:a5:90:63:86:ec:ec:59:98:0a:
d0:78:29:14:ad:35:f3:b5:e1:ef:ba:51:ed:ae:e7:31:56:4c:
f7:39:6a:6b:4b:60:b6:0e:c1:d4:29:1b:bd:be:cb:8c:e0:aa:
75:c7:c9:86:e3:44:17:40:73:bb:b8:bf:72:0e:e0:3f:5e:b9:
34:c5:ed:f6:83:9e:8f:e4:3e:7c:07:9f:62:63:3e:e3:61:c6:
56:7d:80:03:b2:c4:c4:a4:2d:0b:09:8b:30:8a:23:7c:fc:2c:
90:4a:c3:26:44:86:44:ab:e4:c6:34:83:a7:1c:92:6a:87:5a:
b7:db:d8:59:88:db:c0:50:d6:f5:5a:f8:e7:57:7b:6b:1c:84:
ad:fe:17:d8:d1:b8:1a:5c:42:bf:9b:a6:04:6f:34:30:0d:af:
ce:e2:0c:3a:f8:e6:07:94:07:d5:83:31:cf:ef:ff:3a:e2:72:
24:d3:60:4d:8c:95:3d:86:73:1f:ba:23:95:97:1a:6b:23:0e:
89:e0:24:0b:e5:71:f5:3d:c4:3b:cd:a3:ec:a9:14:7e:32:06:
fc:05:ef:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 20:27:28 2024 by rpki-client on console-fra.rpki-client.org