Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer
File: gpROaqVxwOs14nkbwVlvdyd6cyQ.cer (raw, json)
Hash identifier: uOUGhWFnvLuBhVJ2aDfEbkDx6r3zDURe7DQqmw8T1gQ=
Subject key identifier: 82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0218DB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 03 Nov 2024 17:36:53 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 150408
IP: 103.31.10.0/23
IP: 2001:df1:7ec0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137435 (0x218db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 3 17:36:53 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91DE9CC/serialNumber=82944E6AA571C0EB35E2791BC1596F77277A7324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9f:16:49:89:6b:ba:8b:06:2f:a6:1d:0f:55:
6f:bb:64:79:46:87:76:3c:ed:54:40:03:16:de:48:
9d:40:25:ae:03:f6:35:28:7a:b1:2d:a4:a7:6a:3f:
3c:a7:12:57:93:e4:cb:50:7d:12:f4:ef:a2:6d:b5:
30:4e:2f:d2:85:6e:47:d6:67:dc:0a:59:59:cc:42:
d9:4b:b3:32:a0:28:7e:13:2b:16:07:df:04:31:c9:
53:c9:2d:9e:e1:a2:d0:81:f5:e2:bb:70:89:4a:ef:
35:0b:a3:c6:cc:d4:74:ca:72:2e:15:56:6f:e9:cb:
b8:a9:a6:3d:44:a4:39:b0:62:af:93:d9:8d:04:77:
a1:05:48:8f:4e:28:14:11:5a:6f:83:d1:46:2b:d3:
71:62:b1:92:0d:2f:c8:a1:0c:d6:68:b8:c7:99:68:
a0:47:de:74:c1:4b:87:88:ce:3a:0b:2b:f3:23:67:
4a:61:16:87:a2:11:2d:5f:cd:10:2d:e9:a0:7a:e0:
d8:35:c2:41:d4:ce:25:3d:14:16:62:c3:47:ac:36:
7b:be:e8:7a:6a:93:cb:5f:b2:d5:7e:25:df:6c:6a:
26:8b:b2:3a:a9:f8:03:d0:eb:3d:66:6f:4d:d9:2a:
81:a1:4a:f3:04:28:93:05:fd:27:61:ac:7e:f2:b1:
16:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150408
sbgp-ipAddrBlock: critical
IPv4:
103.31.10.0/23
IPv6:
2001:df1:7ec0::/48
Signature Algorithm: sha256WithRSAEncryption
12:04:1d:79:5f:7f:f7:f6:d5:50:9e:b5:c9:cd:a7:52:d0:34:
14:1f:3c:50:39:6c:8b:cc:ef:44:85:71:2f:a1:2d:55:77:fe:
14:8c:12:ca:1a:85:1a:3a:55:76:36:97:7b:b7:ee:26:66:dc:
89:a6:c1:4d:57:f7:a1:a2:b1:bd:9b:09:15:9c:c1:ec:75:7b:
75:d8:5a:ba:12:5c:37:11:64:fb:b8:9e:7f:28:46:3c:09:2f:
a6:d9:3a:6a:7b:7d:17:69:7e:0f:02:15:84:bd:fe:84:ca:8e:
18:4e:2d:39:45:0b:ef:36:74:6c:ff:ae:a5:54:32:50:a6:93:
d3:c2:95:b3:aa:52:22:75:80:f1:9f:e0:98:55:43:89:ea:0f:
33:06:12:cf:d4:ba:f4:d2:a2:68:ab:34:b7:fb:31:ed:9c:25:
dd:b6:67:51:4b:e4:b5:57:d2:6c:9d:b5:a3:97:74:6d:fb:97:
77:85:ec:9b:82:f4:99:28:d1:c3:88:b7:07:25:fe:32:21:7c:
8e:b9:c9:dd:41:57:84:3d:04:34:72:a3:81:b1:c3:c6:74:7f:
ef:35:b8:76:d4:d5:37:c2:64:aa:51:72:83:7d:d2:29:de:09:
ab:38:04:df:04:29:f4:21:15:43:ac:81:ce:24:df:eb:20:54:
75:71:9d:1d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:43 2024 by rpki-client on console-fra.rpki-client.org