Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gdwd7gcIM6fnU5cgh1oXYH7hJs8.cer
File: gdwd7gcIM6fnU5cgh1oXYH7hJs8.cer (raw, json)
Hash identifier: KnpG5sXWY5wM5CB/oCuPXIUxQ4oYmcxsAACTHXyCCio=
Subject key identifier: 81:DC:1D:EE:07:08:33:A7:E7:53:97:20:87:5A:17:60:7E:E1:26:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020389
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C9F4F/6F0D05101B1D11EE87D28976C4F9AE02/gdwd7gcIM6fnU5cgh1oXYH7hJs8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C9F4F/6F0D05101B1D11EE87D28976C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 31 Jul 2024 05:36:42 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 151479
IP: 103.230.94.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131977 (0x20389)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 31 05:36:42 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91C9F4F/serialNumber=81DC1DEE070833A7E7539720875A17607EE126CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:00:42:3a:42:b5:6b:f9:b7:71:cb:12:ec:50:
47:33:ea:63:e1:2d:5f:62:42:78:74:1b:f9:43:8a:
75:3a:ae:b6:9b:cc:05:aa:3f:c8:47:39:7e:2e:53:
d3:48:8a:45:44:41:a5:3d:be:6c:0e:e5:4a:98:e9:
ac:b8:5f:2b:41:88:f6:7c:07:90:7f:1e:05:fe:d3:
96:89:42:18:32:7a:bf:4d:17:77:bb:25:99:a1:37:
ef:82:6e:76:b5:61:8d:eb:a5:75:b2:c8:26:fd:8c:
d3:5e:70:4a:24:b1:af:28:fe:01:44:a9:6f:46:83:
bc:45:52:07:26:37:cd:53:6d:33:b3:4f:aa:85:2f:
e1:3f:cb:77:be:9f:c4:d7:64:8c:27:b7:af:be:9f:
b9:bc:54:b7:19:8e:e3:c5:a4:00:23:00:22:3c:01:
ed:79:c6:c0:3e:8a:56:4c:f3:d4:b9:ee:ce:7d:dc:
86:c3:9d:ab:c2:6f:5b:e6:17:e9:08:2b:b9:cd:1f:
fc:82:f4:ac:26:3d:31:52:b3:c4:06:e5:e2:78:c7:
82:5b:6c:05:9d:45:9b:0a:cc:c3:03:d5:98:1c:d0:
1e:65:e6:7e:9d:82:bd:aa:b8:e0:f1:b7:91:7b:1b:
f5:24:61:1a:e2:57:67:f8:73:cc:31:2c:89:d2:c0:
07:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:DC:1D:EE:07:08:33:A7:E7:53:97:20:87:5A:17:60:7E:E1:26:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C9F4F/6F0D05101B1D11EE87D28976C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C9F4F/6F0D05101B1D11EE87D28976C4F9AE02/gdwd7gcIM6fnU5cgh1oXYH7hJs8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151479
sbgp-ipAddrBlock: critical
IPv4:
103.230.94.0/23
Signature Algorithm: sha256WithRSAEncryption
89:72:bb:b7:a8:d4:a2:7b:58:c8:de:83:58:69:fd:60:28:b4:
68:16:36:97:f6:e9:5b:34:ff:99:fe:dc:a7:50:12:ec:73:36:
b0:4d:57:9b:94:03:46:74:0e:98:79:01:10:bf:67:76:df:72:
25:93:b6:94:2c:cc:b7:cf:9f:5d:28:94:2d:d5:d9:ba:27:ad:
78:7d:b2:37:d3:67:49:b7:d9:68:e0:57:88:58:8b:ac:a0:5c:
35:d0:c4:a3:6b:e1:fc:11:7f:4d:23:6a:c5:46:e9:a6:0e:1d:
56:cc:75:cb:c2:f9:3e:54:aa:fe:d3:d0:ed:89:9c:f9:7d:ea:
6b:91:dd:e7:37:45:04:df:48:80:d1:e4:77:7b:e1:a0:40:2c:
15:ce:8f:a6:6c:e7:ed:d0:44:92:53:4e:15:42:51:39:1b:03:
fc:65:b7:fd:37:85:33:da:6f:20:9d:e8:2a:f8:9d:9c:5b:30:
31:e4:53:a1:90:9f:82:f4:27:eb:a5:6e:05:e7:d0:42:eb:2b:
0f:db:45:26:64:36:7f:c1:1f:c4:77:c3:a6:09:99:81:2e:fb:
df:44:e1:08:17:fd:ef:61:c4:a3:2c:4b:d9:99:85:0b:f5:ae:
75:43:81:8c:eb:83:df:b7:76:46:f3:ad:77:c2:b7:21:df:93:
fe:40:5d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:22:01 2024 by rpki-client on console-fra.rpki-client.org