Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer
File: h-gMDkYzEKnTA4zgE88YU3SlxyI.cer (raw, json)
Hash identifier: cihFPwvo57C7uZbN79RGMeLXmPpUSr82WdditJgW9Lw=
Subject key identifier: 87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BF97
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 25 Sep 2023 23:24:14 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 151822
IP: 103.203.245.0/24
IP: 203.19.140.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 19:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114583 (0x1bf97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 25 23:24:14 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A918524B/serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3f:20:da:4c:a0:71:a1:2a:a7:5f:96:30:98:
ab:78:63:54:db:9a:27:ec:99:5b:6d:a3:10:ec:48:
11:92:4d:2b:46:9b:6a:c7:57:46:5b:0c:6b:25:30:
87:6a:47:10:f4:42:17:0f:97:c4:ae:77:b9:36:b8:
fc:29:9d:ed:40:8c:d2:27:90:ec:99:70:92:ae:89:
10:9e:65:30:30:e1:a2:17:a9:7e:34:36:4e:8f:98:
e1:7d:16:61:9d:f3:32:e5:a8:a0:40:32:04:31:10:
7c:1f:26:e2:45:2f:ad:c6:90:2b:47:6c:cd:14:de:
93:d8:5f:b0:1e:47:68:fe:cb:78:bc:f7:8c:84:f1:
d5:2c:1e:82:9f:92:16:89:c3:de:0a:db:57:36:69:
ec:34:f5:4c:1f:fd:ac:c9:79:98:b1:25:73:c0:27:
ea:52:75:ff:6a:eb:6e:d9:5f:be:d4:be:18:4d:55:
90:0a:d6:ed:ec:41:f8:ee:56:5c:f9:6d:d7:0c:4a:
8b:b7:98:4e:11:b8:fe:c5:36:97:84:80:df:f0:2b:
19:62:cc:df:10:c5:25:ea:83:d2:4d:4e:43:23:3a:
97:cb:e6:65:a0:fa:10:a3:6c:83:24:c7:62:00:ea:
d8:8c:4f:9a:7c:a4:c5:f5:de:a1:d8:45:4a:7c:01:
00:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151822
sbgp-ipAddrBlock: critical
IPv4:
103.203.245.0/24
203.19.140.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:3a:9b:f9:99:60:7e:87:fe:ac:6a:27:68:aa:87:eb:6c:fa:
cb:13:84:64:f5:35:5e:b7:19:27:b2:11:9b:e0:6f:8f:cf:8c:
de:44:88:76:75:09:a3:e1:7f:41:da:fa:75:60:b9:18:cd:13:
26:e0:64:4d:b2:00:15:eb:fa:67:92:05:91:66:2f:e9:3d:04:
7d:75:c2:f3:5f:a7:da:77:fd:2a:a8:61:14:75:8e:09:32:1b:
99:ab:00:65:ba:ff:4a:26:3b:38:86:58:ac:d6:24:c9:1d:09:
4d:55:ee:5f:63:fe:6c:e8:8d:6e:a1:23:b5:97:06:8b:0f:ea:
ff:85:6c:1e:21:ab:82:27:77:29:ac:a6:e6:33:fb:18:c8:0d:
01:1f:c2:06:68:2f:cc:04:7e:ef:43:e7:80:76:88:db:77:f1:
cf:9d:d5:d6:f0:9e:be:80:9c:e6:65:11:d6:52:ee:8e:c2:68:
7e:b8:ed:ff:11:ad:60:7f:3c:13:b7:35:a9:c5:af:97:ba:7a:
0f:75:3c:09:7a:07:9e:15:54:03:bc:48:a3:08:90:6a:26:05:
6a:fa:39:84:4b:8b:2b:72:c3:8a:48:45:70:89:ff:59:d9:10:
4c:78:46:99:ab:fb:57:3a:d9:f9:29:e0:0a:d3:6c:7a:5e:3c:
6f:2c:02:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 20:21:43 2024 by rpki-client on console-fra.rpki-client.org