Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer
File: hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer (raw, json)
Hash identifier: fBARMpUM2ICqzWDy0wFqaqFbEGugn2vJnXi8Eh/equ8=
Subject key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0213ED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 14 Oct 2024 16:54:15 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 138434
IP: 103.125.92.0/22
IP: 2403:f040::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136173 (0x213ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 14 16:54:15 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0f:94:4f:7f:91:6d:4f:31:9c:1a:f8:be:bd:
c4:53:ea:e9:1b:8f:a6:6a:63:73:6f:20:59:4a:6e:
87:dc:0a:6b:e7:99:11:5e:09:89:c6:2d:51:91:31:
96:79:53:6c:a6:4b:3b:79:d9:61:67:c7:2f:85:60:
08:8c:48:d5:24:5d:d2:16:5c:0c:77:ca:38:6a:31:
2f:c3:db:2b:cf:b7:70:fd:b5:48:06:99:d2:b4:5d:
22:4a:72:23:57:3a:b6:29:58:7d:f9:84:f6:ec:9f:
02:c4:74:fa:c0:2a:93:9d:ab:96:a3:ca:7c:af:98:
cf:97:f4:14:f6:0d:14:e8:c8:5a:ff:45:ea:f2:31:
71:bd:4f:6b:25:99:51:2f:09:86:1f:1a:7a:ef:ec:
e9:2a:63:ac:90:80:ca:8a:c9:0a:44:ba:ff:f0:0b:
e3:3f:6c:ba:ef:1e:f7:09:6e:12:ba:74:03:90:9a:
68:4e:f1:f8:2d:ad:08:56:6b:6f:c1:4b:75:05:af:
73:f7:49:36:07:6a:db:5e:8c:d0:31:1f:79:a4:e4:
42:02:5c:c4:51:f5:8e:93:e6:8d:2d:85:59:5e:9e:
23:b7:8b:ae:7a:bc:79:f1:76:80:95:73:00:c2:09:
b5:7c:c0:4d:18:ab:64:2d:ea:82:61:51:9f:b4:f0:
65:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138434
sbgp-ipAddrBlock: critical
IPv4:
103.125.92.0/22
IPv6:
2403:f040::/32
Signature Algorithm: sha256WithRSAEncryption
4d:85:58:12:95:1f:dc:6c:28:db:ef:89:b9:92:c7:57:e6:58:
7f:a5:a5:ea:68:ac:ef:d8:f7:1f:85:d0:db:93:a1:ad:66:29:
8b:e0:e2:b2:37:92:1c:f6:20:36:92:18:8a:32:6e:ef:41:e8:
4e:c6:00:b9:e0:9f:96:ae:64:bd:24:e3:0d:83:bf:40:de:5c:
b0:06:8b:d3:a3:01:dd:bd:c1:95:51:47:ed:29:cd:5f:6d:f3:
d9:78:aa:a6:41:b6:63:16:75:d4:3a:91:6b:46:8c:b8:bb:cb:
07:93:c5:0d:72:00:79:95:08:a0:69:17:12:c3:8e:31:5b:5c:
cd:49:88:0f:dd:f4:ca:43:8b:e1:a1:e7:43:b0:1a:bd:31:03:
cc:8f:ef:5b:66:12:29:52:71:0b:79:de:3e:dd:21:5d:03:b9:
dd:4f:f8:69:a3:1c:fd:21:9e:16:08:55:c2:cb:39:31:9f:98:
ef:6e:d7:0c:07:8a:76:fd:71:45:7e:e5:94:f5:b4:48:5d:3e:
e4:96:a6:32:e1:85:a2:d8:81:4d:d6:c1:85:26:3f:ba:20:1d:
52:cb:e8:c7:b9:b0:32:e0:1c:f8:3b:be:11:ba:3c:8a:6e:00:
b3:e5:61:a7:71:97:4a:6f:af:ba:8b:56:10:2c:44:4f:d8:8f:
bf:3c:0c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:43 2024 by rpki-client on console-fra.rpki-client.org