Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gdwd7gcIM6fnU5cgh1oXYH7hJs8.cer
File: gdwd7gcIM6fnU5cgh1oXYH7hJs8.cer (raw, json)
Hash identifier: h6uxhE8SRT+YpvEA++I0RHNO0+Mdj46DAE/QAmj27o8=
Subject key identifier: 81:DC:1D:EE:07:08:33:A7:E7:53:97:20:87:5A:17:60:7E:E1:26:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AE6F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C9F4F/6F0D05101B1D11EE87D28976C4F9AE02/gdwd7gcIM6fnU5cgh1oXYH7hJs8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C9F4F/6F0D05101B1D11EE87D28976C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Jul 2023 10:19:39 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 151479
IP: 103.230.94.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 20:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110191 (0x1ae6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 5 10:19:39 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91C9F4F/serialNumber=81DC1DEE070833A7E7539720875A17607EE126CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:00:42:3a:42:b5:6b:f9:b7:71:cb:12:ec:50:
47:33:ea:63:e1:2d:5f:62:42:78:74:1b:f9:43:8a:
75:3a:ae:b6:9b:cc:05:aa:3f:c8:47:39:7e:2e:53:
d3:48:8a:45:44:41:a5:3d:be:6c:0e:e5:4a:98:e9:
ac:b8:5f:2b:41:88:f6:7c:07:90:7f:1e:05:fe:d3:
96:89:42:18:32:7a:bf:4d:17:77:bb:25:99:a1:37:
ef:82:6e:76:b5:61:8d:eb:a5:75:b2:c8:26:fd:8c:
d3:5e:70:4a:24:b1:af:28:fe:01:44:a9:6f:46:83:
bc:45:52:07:26:37:cd:53:6d:33:b3:4f:aa:85:2f:
e1:3f:cb:77:be:9f:c4:d7:64:8c:27:b7:af:be:9f:
b9:bc:54:b7:19:8e:e3:c5:a4:00:23:00:22:3c:01:
ed:79:c6:c0:3e:8a:56:4c:f3:d4:b9:ee:ce:7d:dc:
86:c3:9d:ab:c2:6f:5b:e6:17:e9:08:2b:b9:cd:1f:
fc:82:f4:ac:26:3d:31:52:b3:c4:06:e5:e2:78:c7:
82:5b:6c:05:9d:45:9b:0a:cc:c3:03:d5:98:1c:d0:
1e:65:e6:7e:9d:82:bd:aa:b8:e0:f1:b7:91:7b:1b:
f5:24:61:1a:e2:57:67:f8:73:cc:31:2c:89:d2:c0:
07:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:DC:1D:EE:07:08:33:A7:E7:53:97:20:87:5A:17:60:7E:E1:26:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C9F4F/6F0D05101B1D11EE87D28976C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C9F4F/6F0D05101B1D11EE87D28976C4F9AE02/gdwd7gcIM6fnU5cgh1oXYH7hJs8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151479
sbgp-ipAddrBlock: critical
IPv4:
103.230.94.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:0b:d9:07:e8:6a:f5:bb:94:8e:94:bf:06:5a:76:e0:08:f3:
0c:fa:44:3b:f3:af:11:48:aa:5c:ce:7b:fc:7b:cf:bd:86:b2:
35:4b:6b:13:a3:a0:ba:b5:41:15:a2:a7:41:a5:84:dc:0e:f0:
79:ae:42:ee:78:72:d3:a8:97:5f:2c:8f:e2:fc:d4:a9:15:48:
00:a1:ee:e1:b9:64:6b:41:bc:e9:9c:d6:ca:3e:6b:95:11:a2:
9e:bf:38:28:68:35:a9:8e:18:f6:06:c2:79:83:7c:0f:c0:e3:
2d:4c:eb:68:b4:4a:56:ac:71:43:04:15:d5:b6:b8:54:8b:8a:
52:f4:ce:c2:1e:58:5a:1c:50:4d:c2:44:7b:04:68:15:73:72:
7b:34:1f:c2:29:17:4a:1c:e7:b8:f6:0f:6e:23:7a:25:14:05:
17:f9:f2:90:d3:e4:02:b8:61:91:bf:54:38:82:c1:78:4c:db:
db:75:24:e8:f9:6c:f9:5a:99:72:02:42:b7:57:57:7e:86:fd:
9c:a1:05:62:0c:8e:40:8b:01:7a:b8:ee:31:0d:be:e6:ae:86:
45:e0:77:53:c3:72:dc:d5:60:3e:1c:6b:58:6b:a8:6a:c8:97:
2d:17:31:b7:12:c6:f6:38:cb:8f:d6:5c:f7:51:96:8b:d7:9f:
cf:0d:21:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 22:08:27 2024 by rpki-client on console-fra.rpki-client.org