Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer
File: ifWWEQAwvcmzutds_QXDEkYXyVI.cer (raw, json)
Hash identifier: 1ziIEX4d3pbu/vUDEH1baYPGDxD73fuQFGJufmVWd2E=
Subject key identifier: 89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DA00
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 23 Jan 2024 12:46:41 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 149419
IP: 103.178.216.0/23
IP: 2001:df0:4440::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121344 (0x1da00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 23 12:46:41 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A911EA62/serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:7f:b0:f4:d9:19:ef:a6:24:58:93:13:3e:
47:a4:32:ef:bd:f3:0e:15:19:30:8b:2c:81:2a:dc:
d5:49:ea:8c:7d:81:0e:bf:9b:32:aa:31:eb:30:4e:
be:67:a9:d2:93:4d:15:c3:8e:82:59:2a:2a:ee:8a:
74:3c:dc:dc:47:a7:21:fa:9c:a3:fe:c0:cd:ed:80:
0a:b2:b9:9a:87:ad:10:33:fa:83:1f:5e:4b:54:33:
30:98:b9:a3:97:02:1a:a6:cb:97:09:b9:9f:bd:74:
d9:fd:33:6b:85:0a:a1:fb:87:fa:c4:19:c5:5c:81:
a1:bd:ff:ec:b5:f4:36:66:f1:81:0e:0b:ae:78:60:
d5:81:27:f4:62:cd:bb:58:78:b2:3c:25:e6:dd:8f:
2a:84:40:ce:21:3f:14:9e:61:47:3d:88:4e:9b:7b:
53:22:f5:dc:07:e3:26:5c:16:9b:4a:b8:bb:72:22:
86:0c:fb:b4:f8:24:4a:b4:bf:07:c7:12:69:0b:a0:
48:c1:c1:c3:68:e6:50:6d:2d:c2:ee:c9:2d:c0:5b:
10:29:81:be:12:cd:48:5d:fe:f6:5e:70:08:e9:4d:
4b:a9:37:52:cf:e5:73:a1:42:2b:a1:1a:cf:44:fb:
db:fe:c2:cb:f0:5f:07:58:11:aa:16:ce:50:84:de:
c3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149419
sbgp-ipAddrBlock: critical
IPv4:
103.178.216.0/23
IPv6:
2001:df0:4440::/48
Signature Algorithm: sha256WithRSAEncryption
49:6e:ee:8c:ef:70:7d:c8:ed:53:83:c6:22:58:b1:51:64:84:
cc:3e:b8:11:63:c9:0b:bc:b5:1d:5b:99:55:9a:46:1a:8d:6e:
72:3a:70:77:51:60:7a:5d:bd:41:6f:0a:ec:54:d5:7a:74:92:
c1:81:ac:8a:9b:3d:60:1d:64:8e:dc:a4:c9:f1:f3:67:ad:1d:
44:49:f5:12:bc:19:ab:f3:bd:ee:a9:51:8a:52:1d:47:c8:9a:
3b:11:93:72:03:dc:6b:40:f9:1e:1c:74:01:eb:93:6d:d4:83:
70:d9:8e:b7:a4:f1:79:70:35:5e:48:aa:e2:16:28:85:cb:b3:
4f:04:aa:02:52:05:30:0a:d8:7c:85:b1:0a:f4:9e:6a:17:20:
c3:1c:33:d6:16:1e:1d:e4:8e:96:c2:1c:35:e0:1b:e9:6a:5a:
e3:f7:c9:9a:1d:bb:c0:d3:8e:68:61:bb:2e:33:e6:8a:22:fa:
03:3f:a6:72:a2:c6:ac:f8:25:82:9c:f9:ed:46:b0:5f:c7:0f:
90:49:d3:c8:fa:9d:c2:2b:aa:04:5d:c9:84:75:3d:4d:57:a8:
ad:a4:98:4d:40:10:99:e2:f4:f2:fd:7b:10:54:93:d4:a6:f7:
fc:d8:66:0e:41:94:2d:c1:0a:da:55:60:81:5a:94:dc:56:56:
e8:91:ec:38
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:32 2024 by rpki-client on console-fra.rpki-client.org