Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2JAwXQl4PPi4Vds30t527-rVe4.cer
File: h2JAwXQl4PPi4Vds30t527-rVe4.cer (raw, json)
Hash identifier: UTskZloTWfUe4FF8C0ENAyo/GIEREmIAe4gox5qotjo=
Subject key identifier: 87:62:40:C1:74:25:E0:F3:E2:E1:57:6C:DF:4B:79:DB:BF:AB:55:EE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EB00
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/h2JAwXQl4PPi4Vds30t527-rVe4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Apr 2024 18:06:35 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 150811
IP: 103.65.240.0/23
IP: 2001:df1:c9c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 11:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125696 (0x1eb00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 10 18:06:35 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A918FE4B/serialNumber=876240C17425E0F3E2E1576CDF4B79DBBFAB55EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:73:be:81:59:7e:84:2d:6f:e6:5e:2a:ae:9b:
9a:65:a2:18:10:4e:27:b2:fe:29:0f:5f:f3:c1:88:
e7:fe:0e:ae:c1:29:0e:c1:05:92:04:83:3e:14:f0:
69:1c:f8:4e:97:2f:01:49:89:76:80:13:57:a3:5a:
57:fe:e9:fe:ae:03:53:99:9a:3e:59:3a:bc:f5:ad:
5d:b9:0d:ce:aa:d0:ec:de:6a:f7:00:77:81:bd:f1:
3d:19:bc:1a:78:bf:42:b4:7c:5e:4d:6c:9a:5e:d4:
e2:35:fc:d2:b3:cc:2b:e0:94:30:1f:65:57:f8:fe:
fb:7b:f4:d6:d9:d0:11:91:22:6b:0e:44:24:08:6d:
70:76:1d:28:46:7b:5b:5b:fa:63:87:59:4e:75:22:
91:60:94:88:99:40:a7:5d:d6:5e:9a:53:df:38:8d:
8b:5d:a1:06:87:6d:55:01:a6:e5:a0:6b:ee:f9:3f:
7b:d5:70:20:e2:2d:7e:a9:60:db:5c:0f:ab:f5:95:
9b:2b:64:f0:01:3b:3a:b1:80:09:13:74:b2:37:ca:
7c:06:32:07:1f:78:d5:c6:80:17:dc:6f:fb:64:37:
bc:bb:cf:3c:a4:70:8c:73:55:2d:f9:aa:b7:83:36:
dd:32:ec:18:62:b4:43:62:5f:c3:36:c5:6f:c2:44:
a6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:62:40:C1:74:25:E0:F3:E2:E1:57:6C:DF:4B:79:DB:BF:AB:55:EE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/h2JAwXQl4PPi4Vds30t527-rVe4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150811
sbgp-ipAddrBlock: critical
IPv4:
103.65.240.0/23
IPv6:
2001:df1:c9c0::/48
Signature Algorithm: sha256WithRSAEncryption
68:18:82:f4:aa:d1:40:25:0c:82:16:83:4d:5e:e3:88:fd:c2:
ea:20:ad:9f:a6:6a:7d:80:9b:33:82:4a:2c:44:b1:e3:1e:b9:
73:db:5c:f4:30:58:3e:e0:14:0f:54:53:60:d7:52:a3:61:af:
55:fd:e0:a0:1b:44:9c:1a:9d:71:d5:fc:06:79:49:7f:dd:33:
20:b2:78:9c:5b:1a:ab:b8:0e:66:3b:f4:9a:b4:97:ec:b3:60:
8b:89:bb:66:3d:5b:71:0b:6f:ff:28:ff:1b:df:43:d1:41:70:
27:b6:70:f5:ee:6c:8e:25:c0:20:89:a9:32:48:e9:a2:25:99:
ba:42:f5:60:cd:e3:fd:6d:43:41:4a:94:cd:92:3d:f3:16:cb:
cb:5a:b5:c8:ee:87:8f:e4:80:4d:80:ad:bb:df:52:cf:16:25:
30:d4:45:de:e3:89:e2:ff:db:24:d1:64:20:aa:3c:57:ea:03:
0e:18:24:b1:e4:c5:92:6f:18:c1:69:d3:1f:b3:50:96:2a:59:
ff:ce:63:69:df:33:ec:48:fc:1a:6f:bd:7e:f3:12:7d:49:dc:
c8:97:25:46:21:f1:d5:7b:f0:64:2f:8b:1e:63:a2:ed:15:44:
97:5f:3f:e4:7c:42:7a:41:46:f5:ec:ad:3f:43:3d:8b:0e:39:
35:c6:22:2f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 19 13:18:51 2024 by rpki-client on console-ams.rpki-client.org