Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer
File: h-gMDkYzEKnTA4zgE88YU3SlxyI.cer (raw, json)
Hash identifier: uzbHqyz5bfI1YGITLu4hFhnYkLvD0+gPSx9UPbtC788=
Subject key identifier: 87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FCF9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Jul 2024 21:04:03 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 151822
IP: 103.203.245.0/24
IP: 203.19.140.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130297 (0x1fcf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 1 21:04:03 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A918524B/serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3f:20:da:4c:a0:71:a1:2a:a7:5f:96:30:98:
ab:78:63:54:db:9a:27:ec:99:5b:6d:a3:10:ec:48:
11:92:4d:2b:46:9b:6a:c7:57:46:5b:0c:6b:25:30:
87:6a:47:10:f4:42:17:0f:97:c4:ae:77:b9:36:b8:
fc:29:9d:ed:40:8c:d2:27:90:ec:99:70:92:ae:89:
10:9e:65:30:30:e1:a2:17:a9:7e:34:36:4e:8f:98:
e1:7d:16:61:9d:f3:32:e5:a8:a0:40:32:04:31:10:
7c:1f:26:e2:45:2f:ad:c6:90:2b:47:6c:cd:14:de:
93:d8:5f:b0:1e:47:68:fe:cb:78:bc:f7:8c:84:f1:
d5:2c:1e:82:9f:92:16:89:c3:de:0a:db:57:36:69:
ec:34:f5:4c:1f:fd:ac:c9:79:98:b1:25:73:c0:27:
ea:52:75:ff:6a:eb:6e:d9:5f:be:d4:be:18:4d:55:
90:0a:d6:ed:ec:41:f8:ee:56:5c:f9:6d:d7:0c:4a:
8b:b7:98:4e:11:b8:fe:c5:36:97:84:80:df:f0:2b:
19:62:cc:df:10:c5:25:ea:83:d2:4d:4e:43:23:3a:
97:cb:e6:65:a0:fa:10:a3:6c:83:24:c7:62:00:ea:
d8:8c:4f:9a:7c:a4:c5:f5:de:a1:d8:45:4a:7c:01:
00:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151822
sbgp-ipAddrBlock: critical
IPv4:
103.203.245.0/24
203.19.140.0/24
Signature Algorithm: sha256WithRSAEncryption
30:54:59:11:ea:3c:11:f5:f2:cd:48:a4:54:ee:36:18:64:98:
6e:e7:ca:4f:03:fe:10:a5:d4:65:fa:bb:b0:67:5f:d3:aa:4c:
d0:5f:4d:e4:b3:c0:e6:7f:10:c2:64:34:ef:79:bd:7f:0f:00:
aa:f2:1b:d2:a0:ef:93:c8:f1:c0:3a:c4:2b:03:5b:f5:8b:3e:
c8:f6:55:4d:80:c1:1d:d2:6e:7d:6e:fb:97:12:21:3b:fb:94:
25:fb:85:b4:7a:f5:97:62:67:26:00:fe:c1:54:a7:22:d3:ee:
91:c6:2e:da:9e:46:14:1d:94:60:f4:ac:42:40:52:27:8d:28:
c4:45:96:5c:f6:2c:37:6d:0d:c6:ce:6d:5f:a2:d8:0b:b5:49:
dc:51:a1:58:15:72:31:c2:f0:7d:5f:72:ce:ac:61:ce:e2:b8:
83:56:d8:46:f5:31:60:ba:b0:bb:c7:9c:2a:fa:ad:d8:30:e1:
cd:ee:e3:e7:3d:48:a4:95:44:ac:be:c7:1c:56:34:a1:dc:15:
d3:87:a6:0a:4c:c8:1c:fc:1b:a9:2f:6f:b9:a8:a8:0b:c5:7d:
04:27:42:04:66:5f:8a:22:21:1f:35:3e:40:61:1f:53:67:08:
67:16:b4:e1:82:03:9e:92:14:9e:85:6e:cb:c9:5a:58:06:18:
1e:c3:cb:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:52 2024 by rpki-client on console-fra.rpki-client.org