Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gWpHjYbn4hvzF4UQuFhTJVg0MO4.cer
File: gWpHjYbn4hvzF4UQuFhTJVg0MO4.cer (raw, json)
Hash identifier: IErvFHgNokqarvrGUMwL1iGfRkBcnEL62XtoaWlhcgk=
Subject key identifier: 81:6A:47:8D:86:E7:E2:1B:F3:17:85:10:B8:58:53:25:58:34:30:EE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C7FB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/gWpHjYbn4hvzF4UQuFhTJVg0MO4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 Nov 2023 07:46:30 +0000
Certificate not after: Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources: AS: 151818
IP: 103.204.40.0/23
IP: 2001:df2:f840::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 06:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116731 (0x1c7fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 1 07:46:30 2023 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=A919D08A/serialNumber=816A478D86E7E21BF3178510B8585325583430EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:32:45:bb:60:fe:a0:9d:ab:65:9d:e6:3c:db:
c8:63:28:cc:46:0a:52:ec:42:46:30:e0:60:1b:05:
0c:1c:53:08:2e:e9:22:84:63:00:06:dd:0a:13:97:
4b:c1:46:41:10:0d:62:cc:2b:ac:71:b3:f7:96:a9:
e8:f6:f2:f9:8b:01:c7:c3:bb:47:d8:bc:d8:0e:54:
04:cf:72:90:e3:bf:97:87:30:ed:14:dc:38:5e:59:
61:4b:7a:8c:b0:ef:1f:ea:56:b5:fc:9c:6f:29:50:
75:06:6f:18:62:5b:bd:e9:5f:02:0e:ce:a5:c5:42:
74:9d:61:68:48:0b:6f:67:63:af:09:4c:52:46:78:
1f:89:6c:9c:48:41:62:03:3f:b9:56:ee:d2:43:9e:
33:d8:0d:d8:a9:29:61:c7:4a:45:dd:b0:6f:a6:17:
fc:bc:96:31:e5:36:f8:6d:2a:9d:80:f0:bf:2a:b6:
e0:4d:84:35:70:c6:f4:73:a4:3c:ef:fc:7d:9f:13:
30:47:db:03:fe:88:ec:9a:2f:27:52:c8:dc:7e:6e:
fa:68:d5:be:c8:dc:27:cf:91:bb:59:70:2e:45:5f:
09:8b:b1:b3:79:80:3e:60:f3:6c:5f:42:90:e4:40:
6c:32:4b:5c:82:6d:64:74:95:42:e0:ce:42:07:b6:
b8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6A:47:8D:86:E7:E2:1B:F3:17:85:10:B8:58:53:25:58:34:30:EE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/gWpHjYbn4hvzF4UQuFhTJVg0MO4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151818
sbgp-ipAddrBlock: critical
IPv4:
103.204.40.0/23
IPv6:
2001:df2:f840::/48
Signature Algorithm: sha256WithRSAEncryption
30:a4:bd:a7:7d:37:60:27:1e:b7:c3:11:f4:37:a5:94:d8:70:
23:e1:ba:aa:56:70:6c:a3:f9:10:36:9e:9e:1a:89:11:c7:5a:
63:75:4c:1f:7c:6c:c9:c5:b6:ae:c4:32:e3:5b:2a:b9:96:cd:
06:4a:09:2b:ea:fe:0f:60:d3:0a:14:82:fc:31:59:31:e8:f7:
26:a5:c3:7d:43:12:24:c0:d0:b5:aa:43:db:19:d7:10:ee:00:
12:a5:24:04:a8:9b:7f:2b:92:f9:71:36:e6:26:06:3c:5a:ce:
b4:aa:3a:91:a6:f5:6f:33:06:27:6a:5c:3a:78:e0:f5:56:11:
fb:89:7e:fe:0a:e0:cf:7b:73:a1:31:51:bb:56:9a:10:80:f8:
10:b9:04:50:ce:be:0d:be:86:76:6b:fe:55:ee:fa:41:6a:93:
40:4a:28:07:94:e5:dd:87:3b:76:6d:b4:8a:18:06:90:a0:6b:
13:f1:6f:8a:1f:d0:a1:b9:8f:13:fe:45:ed:51:42:13:46:09:
e5:a4:1a:21:3b:eb:3f:f3:29:7d:2f:e7:e1:f3:bb:41:10:ca:
d7:7f:80:66:8b:0e:12:75:28:5d:79:50:3b:8d:77:17:3e:56:
9a:a0:5f:6f:ff:a0:a0:64:92:6f:28:62:f0:c2:28:33:53:a0:
62:a6:ba:48
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 08:03:43 2024 by rpki-client on console-ams.rpki-client.org