Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer
File: ficJop5GIOVCf3NfN8A0c-NrWXo.cer (raw, json)
Hash identifier: i7RIFSpsAQFyMMZ3MmtwAdZLxqnwPrbZwcLctDJ5Grg=
Subject key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D8E4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 17 Jan 2024 08:32:37 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 138663
IP: 43.239.204.0/23
IP: 103.106.6.0/23
IP: 103.117.164.0/23
IP: 203.78.162.0/24
IP: 2407:6540::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 18:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121060 (0x1d8e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 17 08:32:37 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ab:d8:02:8f:21:31:df:ad:0f:cb:12:a8:aa:
58:7f:1f:82:e2:f9:c3:5a:5f:b4:85:f9:ab:a2:10:
79:e4:fe:c7:33:07:c3:e4:b7:04:93:b6:f3:69:27:
cb:40:01:22:32:5e:f4:58:0b:52:5d:a9:14:41:69:
f8:6f:83:d8:bf:0a:01:db:4a:ac:32:61:48:5c:1e:
2d:4e:4a:39:9a:19:4e:8f:58:b9:ae:55:d3:4e:ec:
1a:38:01:26:df:8b:fe:a3:9a:a0:98:a7:79:b5:1c:
46:90:6d:c9:c6:78:99:c5:5a:a4:2f:21:5f:48:b2:
84:81:48:81:c2:f5:80:f0:27:04:26:bd:bc:b8:61:
2c:ad:0b:82:a4:60:7c:14:ab:ec:56:69:1e:47:bf:
e7:22:5f:f6:29:29:72:35:31:4d:eb:c0:dd:0f:d6:
dd:31:95:0b:87:38:55:49:2c:dc:6a:ab:66:4b:7b:
4b:7d:39:d4:af:8a:7b:46:ec:29:78:2c:ec:3a:33:
51:65:0b:58:4f:99:cc:78:0d:64:82:be:91:15:c3:
a2:e6:5b:3a:bb:bb:83:83:6d:c2:03:ec:b9:55:36:
dd:85:a8:05:28:3e:b5:22:55:01:58:bf:e6:4d:68:
80:09:31:b0:d4:d4:d6:53:9e:31:2b:74:63:74:94:
43:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138663
sbgp-ipAddrBlock: critical
IPv4:
43.239.204.0/23
103.106.6.0/23
103.117.164.0/23
203.78.162.0/24
IPv6:
2407:6540::/32
Signature Algorithm: sha256WithRSAEncryption
14:98:72:db:68:78:ae:8b:ca:b7:46:c5:cd:b0:a8:4d:fd:0d:
77:57:bf:99:d1:84:5c:ef:e9:df:9a:db:37:da:31:8e:29:9d:
0b:6a:40:a4:09:77:76:a2:87:6b:d2:83:32:c6:f9:41:21:67:
f7:b4:a4:42:89:e7:a6:26:cf:03:2b:30:3f:fe:fd:c3:41:d0:
45:db:12:83:14:87:02:1b:e1:09:14:d1:e5:3f:ab:b8:5e:47:
37:8d:e6:9b:27:b2:fc:48:b1:a7:4e:7f:27:6a:11:c1:fa:ed:
bc:b8:87:17:9c:6c:0b:fb:8f:27:8d:74:01:78:e6:da:46:60:
bf:dc:d6:62:08:df:1c:21:47:f1:df:0a:2a:04:4b:3a:35:71:
8e:28:18:26:68:55:d5:a5:64:09:95:6e:68:59:81:81:15:fb:
bf:fc:11:2e:80:45:a7:d4:8c:88:2d:0d:71:d7:63:c8:a3:78:
2a:83:6d:a4:2b:7e:ff:d0:30:14:1d:4a:2c:12:1f:8a:19:eb:
7b:27:18:0e:cb:60:b9:8a:57:38:f2:66:5c:2d:fa:77:b7:43:
93:05:5e:b7:73:99:49:6d:6c:06:70:64:20:62:e5:74:87:02:
33:fb:3c:58:7f:fe:71:b3:d9:fa:49:57:2c:d1:00:f7:71:87:
de:75:d8:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 21:18:52 2024 by rpki-client on console-ams.rpki-client.org