Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer
File: fd08hfmnH2JfzMEMqDHld3CbTz8.cer (raw, json)
Hash identifier: UlhL/3wa7/V0XuC+6liGjjQ4rbavLKEp3YAgXcORlBU=
Subject key identifier: 7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F4E4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 May 2024 17:18:14 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 149815
IP: 103.186.252.0/23
IP: 2400:7760::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128228 (0x1f4e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 30 17:18:14 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9167B41/serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3a:00:69:ad:b2:03:35:44:63:50:e6:0e:35:
a0:af:e2:82:b2:bf:ae:a5:94:1e:1d:e2:e7:ec:4e:
56:20:f3:f8:2d:a7:99:ed:9c:e3:b8:c4:d5:c8:38:
9c:45:51:49:91:2b:05:01:8b:a3:69:4a:56:bf:7c:
a7:b2:4f:b3:5d:c7:d8:96:63:26:2d:43:39:02:8f:
2f:2c:ab:38:69:12:ef:ec:64:cd:f2:04:42:80:82:
3d:08:64:ac:d1:ad:a1:76:6e:ee:b7:c1:1e:c9:c3:
cc:ca:53:14:7d:8e:2d:73:db:c2:ee:18:ba:e6:4c:
34:51:b2:2f:89:14:aa:fb:ba:a4:d0:8c:d6:ac:b0:
a6:aa:eb:4a:62:7e:0a:ef:32:88:5d:55:72:15:8d:
5f:eb:1d:f2:8c:c9:fa:14:77:11:4b:ab:95:32:33:
ce:27:9d:60:e4:5f:9a:95:58:ba:98:62:61:3e:d8:
cb:7b:d8:b7:c3:47:b9:f0:2a:37:f8:36:b1:b4:ae:
df:6f:11:56:cb:98:eb:78:d9:38:b9:57:76:48:4b:
77:bf:aa:04:b0:d9:1f:50:f9:23:c9:68:d8:95:8f:
da:13:87:c5:a6:31:10:26:5d:0f:87:d5:a7:50:21:
ce:8c:9d:78:8b:19:1a:2b:29:38:45:8b:23:de:ea:
a5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149815
sbgp-ipAddrBlock: critical
IPv4:
103.186.252.0/23
IPv6:
2400:7760::/32
Signature Algorithm: sha256WithRSAEncryption
09:73:77:96:27:07:33:a5:57:e6:64:58:ce:e5:ee:57:78:12:
c9:4a:80:a9:14:2f:d6:fb:d6:cc:cc:32:6c:a2:d6:3a:8c:02:
f6:bd:a6:b6:69:35:79:e8:d4:85:1c:29:06:b1:ee:d5:8a:70:
df:0e:6d:d3:2a:d1:31:c2:62:39:bf:4c:36:3f:07:4f:e1:d3:
a5:5b:64:13:97:31:82:8b:db:6f:b9:5c:8a:20:9b:75:de:76:
ec:79:7a:a6:59:7d:fd:cb:1a:94:86:a8:39:0f:e4:f3:e5:aa:
b1:5a:0f:ff:c1:7d:4b:1a:45:32:9a:01:94:ba:94:c7:56:24:
05:a6:04:e4:51:3f:41:ea:fc:4d:66:f8:1a:ba:8d:31:26:4b:
63:6c:bd:8e:50:26:f3:ef:22:99:1b:eb:2f:2c:b9:11:e0:c6:
59:b6:33:f5:29:ce:35:d3:5a:23:64:b9:b3:97:00:29:57:5b:
b9:22:75:73:ab:46:20:5f:83:ff:ff:61:c7:78:05:70:9c:19:
ee:4c:44:53:c0:e2:a4:5c:1f:ad:fa:7b:a8:64:5e:88:82:27:
b2:96:ec:dd:0a:a2:76:ff:30:ec:65:f1:b6:0f:c8:f6:8e:4b:
5b:e4:d6:28:97:a4:e2:23:77:64:6d:46:dc:17:36:2f:3f:64:
08:81:5a:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:41 2024 by rpki-client on console-fra.rpki-client.org