Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer
File: h25oE78sGBHNEd6ZKBrNRL7A3nM.cer (raw, json)
Hash identifier: /gfxtcZ1MWXyXvC7q+O9RZPl/KvJ6iEMFvQaB+8j2qk=
Subject key identifier: 87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F38A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 24 May 2024 11:01:57 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 149172
IP: 103.177.196.0/23
IP: 2400:3d20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127882 (0x1f38a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 24 11:01:57 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91F4FB0/serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e7:45:22:11:d3:f6:b9:75:4f:7d:a8:31:86:
06:48:5c:90:19:be:62:e8:fc:1a:4a:be:c3:25:42:
46:2b:a4:f9:83:a0:0f:22:9f:3f:70:b0:f9:30:57:
7f:c9:26:e3:e4:71:ac:f2:4e:d9:a7:e8:c6:95:ff:
50:d4:49:52:9e:e4:f8:b8:2f:92:d5:ee:9f:21:85:
06:2c:d2:b5:cb:71:23:f3:f3:60:7d:79:49:1d:20:
3b:8f:e7:f7:d8:46:f5:00:47:ae:49:34:38:ef:9c:
0a:eb:90:15:38:11:4e:91:19:41:d8:08:b6:9b:3d:
9a:12:20:c8:e5:3d:36:a4:48:81:8e:72:85:ac:12:
4e:1b:c4:4c:42:00:2c:ae:e2:f1:6b:e9:c3:3b:a7:
12:0e:e2:50:43:1a:69:1d:05:18:6e:77:3e:10:c1:
09:d4:4d:e0:ad:2c:4d:07:bf:2c:51:23:7b:37:d9:
4e:f7:08:ba:a6:d0:c9:57:f9:6c:c9:7d:39:a9:48:
de:ed:1f:7e:9b:51:ce:f7:37:e9:5c:e9:04:1d:15:
b1:56:54:44:30:c1:28:ba:a7:aa:58:e1:63:e7:a0:
41:7e:e9:ba:74:54:b2:1e:ab:19:83:b9:aa:06:c7:
b4:bc:b7:84:a5:1a:da:7d:56:4b:9d:35:a7:8a:ae:
30:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149172
sbgp-ipAddrBlock: critical
IPv4:
103.177.196.0/23
IPv6:
2400:3d20::/32
Signature Algorithm: sha256WithRSAEncryption
9a:bd:b5:6f:2b:c6:c8:27:2c:72:6e:13:c9:ae:ec:b1:2e:ed:
d8:b1:e2:01:16:ba:2a:68:ec:c9:0a:77:ec:f1:69:a4:d0:a2:
69:71:60:d4:f1:5c:77:de:86:be:68:8b:fb:a7:59:94:56:12:
cc:5f:8c:f7:66:08:30:88:df:a7:d5:f6:33:9a:86:de:42:6b:
9e:3d:73:1b:58:8d:63:b3:95:e7:9a:79:f9:d0:89:6b:a5:57:
7a:4a:82:c7:4a:47:7d:0c:6a:c4:a7:bd:04:61:06:eb:28:97:
62:32:55:3d:a4:5e:5e:7c:85:3e:ba:00:4d:64:04:99:fa:e1:
0e:98:c3:a9:f7:ea:c2:29:30:35:34:64:4b:b7:50:98:a0:e3:
66:0d:bc:c9:e3:50:84:3d:34:01:66:5b:9a:8b:38:da:a7:0a:
94:1e:65:be:25:cd:58:9f:a0:15:1f:20:e5:20:93:94:47:52:
22:a4:8f:be:6e:bc:68:9a:ad:22:33:4a:e9:f5:ed:8e:6e:bb:
d8:87:b2:b0:1b:49:c9:ce:82:43:80:5f:43:c7:0e:16:97:14:
96:9b:0b:32:a9:de:d2:35:8d:8c:8d:fd:15:21:67:24:f8:8c:
12:a1:9f:9f:67:87:13:1d:25:54:fe:3f:fe:46:f3:a4:29:71:
75:3a:e4:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 22:42:00 2024 by rpki-client on console-ams.rpki-client.org