Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyMYIw4lgiCnzuQuCX0Zrpl2E6M.cer
File: gyMYIw4lgiCnzuQuCX0Zrpl2E6M.cer (raw, json)
Hash identifier: d7hcYrcrmSEZ2bjlRpCVflBKePwUGeaay3/tQfwZu4I=
Subject key identifier: 83:23:18:23:0E:25:82:20:A7:CE:E4:2E:09:7D:19:AE:99:76:13:A3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0204A4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917E4CB/AC510912235311ECBC6BF063C4F9AE02/gyMYIw4lgiCnzuQuCX0Zrpl2E6M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917E4CB/AC510912235311ECBC6BF063C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Aug 2024 18:26:22 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 136751
AS: 140837
IP: 103.95.37.0/24
IP: 2001:df1:9700::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132260 (0x204a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 18:26:22 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A917E4CB/serialNumber=832318230E258220A7CEE42E097D19AE997613A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a2:0c:fc:38:00:eb:42:38:9e:1c:6e:96:22:
fa:49:ea:4c:1d:1c:22:0a:dc:07:a8:9a:82:9c:29:
59:c8:f0:7a:de:b0:2b:fc:88:d9:a7:0f:65:d1:10:
0a:68:d7:69:0b:20:42:d4:c9:5a:82:f7:9d:75:88:
d2:57:76:c4:48:4b:bf:53:f6:e8:97:68:34:c5:1f:
a5:f8:12:c0:97:a7:e0:d8:40:fd:05:08:70:fc:97:
c9:f2:3a:73:0d:34:e1:e7:cb:77:2a:0f:6b:ca:23:
c6:75:96:59:a8:83:ca:70:e3:f6:5f:ce:a8:b4:cc:
c4:f4:cf:4e:e8:8f:ec:6f:f8:7f:16:e4:86:fc:97:
56:f7:f2:11:ce:c2:5e:62:40:e5:43:fd:f4:38:6b:
f5:bc:60:cf:39:91:ec:6e:4e:84:70:51:59:1c:76:
2e:1e:86:61:17:8a:08:9c:a3:c6:55:7e:5b:e1:7f:
d5:29:9d:c5:d7:c4:29:db:c8:29:4f:f6:6f:68:80:
de:12:81:f8:43:e8:1a:4e:fa:60:aa:20:cb:9a:29:
a9:93:a3:0a:43:0e:16:7c:ad:f3:57:f5:d9:a9:2c:
e0:4a:69:41:99:19:17:bf:f3:43:97:64:de:e3:c6:
63:35:27:19:02:7d:3a:d0:a8:82:d4:06:84:7c:67:
54:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:23:18:23:0E:25:82:20:A7:CE:E4:2E:09:7D:19:AE:99:76:13:A3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917E4CB/AC510912235311ECBC6BF063C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917E4CB/AC510912235311ECBC6BF063C4F9AE02/gyMYIw4lgiCnzuQuCX0Zrpl2E6M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136751
140837
sbgp-ipAddrBlock: critical
IPv4:
103.95.37.0/24
IPv6:
2001:df1:9700::/48
Signature Algorithm: sha256WithRSAEncryption
21:ff:d2:be:cd:18:c8:b8:ad:60:2d:b3:56:52:51:85:5c:fe:
ef:59:78:c5:68:f0:d5:c3:76:49:63:55:22:8b:0e:0d:be:3e:
a4:25:c6:d5:33:72:17:1b:41:62:ff:b4:66:b9:e4:90:32:4a:
98:1e:e4:fd:28:63:83:fc:8d:14:70:1d:f6:e3:64:9d:10:66:
ed:ee:3d:66:36:7b:eb:db:4b:4e:8e:26:8e:1e:3e:24:f6:51:
d0:ec:38:00:4e:b7:72:cf:74:81:ba:fd:72:bb:8f:b3:b9:aa:
15:48:42:5b:6c:b8:c5:5f:40:b6:a0:6a:24:51:71:6d:a1:3f:
3f:8a:7c:30:5f:08:49:96:88:b7:31:0d:d9:71:d0:5d:d9:68:
d0:a3:73:06:f0:12:3f:00:d2:2b:32:9d:91:14:e6:39:bf:50:
08:29:f7:7c:08:6c:8f:32:80:8f:b2:20:1d:a5:92:d1:0f:92:
13:ee:de:d0:e1:00:17:e6:f8:6c:9a:e5:db:6b:3a:57:39:a1:
ef:26:d9:9e:ed:54:e7:c7:d1:31:04:d3:35:c9:c0:e2:90:ca:
d3:17:e7:9e:5b:e2:9a:39:d2:1c:34:31:0d:9f:1f:f2:f1:8e:
8a:83:ff:68:65:eb:8a:5d:f2:9a:69:da:61:95:c7:9f:47:8f:
00:6b:ea:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:57 2024 by rpki-client on console-ams.rpki-client.org