Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fX8vgARwzrGTx-t4mDlZW3YnR08.cer
File: fX8vgARwzrGTx-t4mDlZW3YnR08.cer (raw, json)
Hash identifier: d+QgATGk9fTHyIIPFgygCUhJVBBA/DEbFII86XGHbzY=
Subject key identifier: 7D:7F:2F:80:04:70:CE:B1:93:C7:EB:78:98:39:59:5B:76:27:47:4F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020FE7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914F700/D4C5DB12797E11EC8CD78257C4F9AE02/fX8vgARwzrGTx-t4mDlZW3YnR08.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914F700/D4C5DB12797E11EC8CD78257C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Sep 2024 00:48:15 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133627
IP: 103.36.69.0/24
IP: 103.134.182.0/23
IP: 2001:df0:1c00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135143 (0x20fe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Sep 27 00:48:15 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A914F700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8f:80:4d:77:db:09:da:66:d7:61:a8:10:3e:
84:82:c7:e9:90:fa:51:c7:7b:31:d4:16:eb:e0:d3:
49:c7:ee:8f:4d:e9:f5:0b:0f:3c:93:14:0e:b1:8e:
ba:22:b0:27:db:7c:f1:35:34:e8:a3:bd:7a:72:4d:
ed:63:0a:5f:6a:82:03:d8:8f:0e:47:fd:7a:90:76:
5e:57:98:54:7c:c7:74:88:a6:19:f8:2e:89:2b:15:
f2:98:7f:90:0a:ad:16:6e:8e:b6:b9:d2:ac:fa:f5:
14:d8:b6:c6:9b:b9:fb:b9:9b:61:68:cc:b9:15:fb:
4b:16:ff:4f:ab:fa:1e:2e:1b:a2:02:86:f4:1f:f8:
6c:e3:b7:31:4d:22:42:64:70:df:99:4a:d5:99:db:
99:b1:24:df:30:41:f2:4c:b1:6f:92:68:18:c7:9f:
52:57:0b:b8:03:11:07:91:08:59:f1:b4:7d:4e:d6:
d1:fc:1d:5d:05:5f:49:64:6d:cd:ef:10:f7:57:b6:
2d:a4:9a:a9:bf:86:af:54:ac:93:57:77:df:6c:0a:
53:ba:43:47:fc:d8:1f:67:85:58:6a:ea:9a:16:4e:
c7:2a:d7:06:a7:a6:26:7c:9a:bc:ba:c5:34:69:c5:
8c:02:87:c9:8b:10:71:45:83:6a:6d:2b:6e:99:d5:
fb:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:7F:2F:80:04:70:CE:B1:93:C7:EB:78:98:39:59:5B:76:27:47:4F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914F700/D4C5DB12797E11EC8CD78257C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914F700/D4C5DB12797E11EC8CD78257C4F9AE02/fX8vgARwzrGTx-t4mDlZW3YnR08.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133627
sbgp-ipAddrBlock: critical
IPv4:
103.36.69.0/24
103.134.182.0/23
IPv6:
2001:df0:1c00::/48
Signature Algorithm: sha256WithRSAEncryption
c2:2b:56:f8:52:5b:3d:b8:d8:45:2a:72:44:32:fb:22:99:08:
35:85:24:5c:a6:4f:31:aa:7b:0e:04:f1:88:36:f3:76:da:45:
49:cd:a8:8a:a9:d5:a2:0c:fc:58:63:84:ca:70:30:38:b3:62:
91:11:35:b5:c4:1f:27:c0:84:33:d4:d5:27:67:13:42:ff:56:
51:54:4b:57:dd:fd:d5:66:7e:e0:54:b9:2d:2f:1c:cf:1e:26:
8a:c6:29:e6:23:7c:53:6c:8f:0c:ce:af:10:e5:74:69:60:40:
8f:84:24:45:ce:c7:f0:4f:21:2f:7b:af:89:ed:d3:1a:20:c0:
4a:41:01:54:59:ec:05:e0:9d:a9:aa:52:b1:0c:3b:20:70:97:
b7:f3:9a:9f:de:e1:ab:41:62:79:2d:37:4f:d9:ed:c5:2e:1d:
35:7d:c4:e7:5e:c9:92:d1:8c:e5:64:26:a3:49:bd:f3:2d:7c:
31:55:a5:f0:8e:cf:1c:46:5c:5a:04:c2:86:e5:f0:9b:6c:c5:
6c:46:a0:de:10:57:52:2a:4a:fb:89:96:42:12:ad:99:33:06:
24:08:2c:4f:fa:c3:6b:6c:12:a1:8d:e7:87:2a:b0:e5:0c:7c:
74:76:65:5f:3e:19:e3:32:19:ac:3e:0f:46:a7:f8:c9:82:ac:
3c:fe:7a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:54 2025 by rpki-client