Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer
File: gpROaqVxwOs14nkbwVlvdyd6cyQ.cer (raw, json)
Hash identifier: 1nYzkfing8qrd+HjvVUp+JTtVW72t5dVauqTL3HgUMk=
Subject key identifier: 82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CC21
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 21 Nov 2023 21:13:47 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 150408
IP: 103.31.10.0/23
IP: 2001:df1:7ec0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 16:32:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117793 (0x1cc21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 21 21:13:47 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91DE9CC/serialNumber=82944E6AA571C0EB35E2791BC1596F77277A7324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9f:16:49:89:6b:ba:8b:06:2f:a6:1d:0f:55:
6f:bb:64:79:46:87:76:3c:ed:54:40:03:16:de:48:
9d:40:25:ae:03:f6:35:28:7a:b1:2d:a4:a7:6a:3f:
3c:a7:12:57:93:e4:cb:50:7d:12:f4:ef:a2:6d:b5:
30:4e:2f:d2:85:6e:47:d6:67:dc:0a:59:59:cc:42:
d9:4b:b3:32:a0:28:7e:13:2b:16:07:df:04:31:c9:
53:c9:2d:9e:e1:a2:d0:81:f5:e2:bb:70:89:4a:ef:
35:0b:a3:c6:cc:d4:74:ca:72:2e:15:56:6f:e9:cb:
b8:a9:a6:3d:44:a4:39:b0:62:af:93:d9:8d:04:77:
a1:05:48:8f:4e:28:14:11:5a:6f:83:d1:46:2b:d3:
71:62:b1:92:0d:2f:c8:a1:0c:d6:68:b8:c7:99:68:
a0:47:de:74:c1:4b:87:88:ce:3a:0b:2b:f3:23:67:
4a:61:16:87:a2:11:2d:5f:cd:10:2d:e9:a0:7a:e0:
d8:35:c2:41:d4:ce:25:3d:14:16:62:c3:47:ac:36:
7b:be:e8:7a:6a:93:cb:5f:b2:d5:7e:25:df:6c:6a:
26:8b:b2:3a:a9:f8:03:d0:eb:3d:66:6f:4d:d9:2a:
81:a1:4a:f3:04:28:93:05:fd:27:61:ac:7e:f2:b1:
16:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150408
sbgp-ipAddrBlock: critical
IPv4:
103.31.10.0/23
IPv6:
2001:df1:7ec0::/48
Signature Algorithm: sha256WithRSAEncryption
53:4e:7e:d0:19:97:3d:2a:ed:8f:16:96:1a:30:fb:c3:8d:4f:
81:2c:6a:33:8f:11:0b:bf:14:23:fa:0f:99:f9:67:78:bd:f3:
6d:6c:50:32:0a:a6:c4:5d:b8:b6:f3:15:57:eb:41:d7:5b:65:
53:48:1a:6a:3a:77:57:38:e4:6f:7e:c1:af:c9:a4:93:75:85:
dd:69:72:24:4e:95:cf:53:be:c9:5f:16:f7:13:c2:cb:18:44:
92:ac:31:1c:ef:76:17:42:07:90:29:f5:97:3a:c4:62:41:a9:
8b:cc:4f:a0:ed:4a:5d:d2:c1:ff:f4:24:f7:ea:ae:11:f0:5b:
93:70:d9:75:7f:36:55:3f:81:53:b9:16:bc:38:a3:79:d9:e5:
43:be:af:13:ad:9c:46:eb:84:08:90:b7:aa:f4:00:ef:52:a1:
c4:7d:20:7b:73:97:35:0a:61:a8:b2:56:34:35:12:67:70:ce:
42:e3:68:02:d5:25:1e:43:88:12:45:aa:5e:a7:94:4e:1b:80:
a4:97:08:92:81:e4:a4:63:12:6b:d2:01:6b:6e:ee:6c:bc:b4:
d4:53:2f:80:0a:f8:62:9b:a2:0e:83:63:a8:22:33:32:ba:9d:
0a:c6:fc:fa:f4:8d:42:0e:53:26:f9:e1:be:b4:da:f5:a3:09:
69:f4:39:eb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 19 17:12:28 2024 by rpki-client on console-fra.rpki-client.org