Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1nI_VoLWpmrBABkQjq_TbC04IY.cer
File: j1nI_VoLWpmrBABkQjq_TbC04IY.cer (raw, json)
Hash identifier: CdlF+eboDS4Em8ivC8V3MMkpwtjj9QHtlzEH5R6Qa74=
Subject key identifier: 8F:59:C8:FD:5A:0B:5A:99:AB:04:00:64:42:3A:BF:4D:B0:B4:E0:86
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C2B4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/j1nI_VoLWpmrBABkQjq_TbC04IY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 08 Oct 2023 15:23:51 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 58445
IP: 103.11.136.0/22
IP: 116.206.132.0/22
IP: 2001:df0:29f::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 19:33:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115380 (0x1c2b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 8 15:23:51 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91E647A/serialNumber=8F59C8FD5A0B5A99AB040064423ABF4DB0B4E086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d1:3c:7d:c9:24:b1:45:23:e6:34:32:55:10:
62:37:a8:f9:42:0d:89:68:1e:58:27:00:c6:fa:46:
02:15:70:ef:0a:67:0b:d8:00:fc:8a:be:3b:1a:4f:
5f:d0:ba:81:4e:f4:d0:37:7f:32:ee:f2:3c:95:6b:
1e:dd:ff:d1:f8:12:88:b1:26:7b:a1:96:92:c7:31:
41:b3:66:a9:2b:f6:ec:b9:7d:ad:7d:f3:8a:62:e4:
39:2f:08:a4:6f:6a:ee:8f:85:ad:4f:03:e2:e7:52:
28:bb:6a:9a:1d:89:fd:a3:1a:5f:ff:78:65:ee:2e:
b1:43:ee:f5:02:9d:f9:09:84:dc:05:f7:28:2e:03:
97:d9:79:d5:b2:43:50:ac:64:0e:4b:8d:d9:5f:52:
43:59:20:21:e9:a8:a9:78:e5:66:1e:38:a2:fa:e3:
31:d7:a7:58:86:aa:f6:0b:aa:6d:71:cb:ae:90:73:
43:ce:d0:9b:68:8f:53:8e:69:9a:d7:dd:7d:19:c8:
02:36:1d:9e:e9:dc:96:f1:ec:9a:70:39:10:43:1e:
71:14:a4:3a:5e:35:de:9e:04:d2:9d:ba:a8:b8:d7:
46:4d:80:3b:5f:d7:2b:77:8e:65:cf:ad:34:de:fa:
41:b4:02:48:29:26:4b:07:77:f6:40:c8:9e:c2:b5:
54:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:59:C8:FD:5A:0B:5A:99:AB:04:00:64:42:3A:BF:4D:B0:B4:E0:86
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/j1nI_VoLWpmrBABkQjq_TbC04IY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58445
sbgp-ipAddrBlock: critical
IPv4:
103.11.136.0/22
116.206.132.0/22
IPv6:
2001:df0:29f::/48
Signature Algorithm: sha256WithRSAEncryption
32:37:c8:87:51:63:bf:1d:e4:85:82:28:f3:bb:ad:03:d4:62:
15:cf:e6:e5:b1:6a:fe:39:4b:56:16:49:81:eb:58:f3:ef:c5:
2a:af:b2:48:35:fd:9a:dc:ad:d2:f3:9e:e7:69:67:2f:7b:d8:
17:b9:63:1b:a9:ef:8c:04:33:14:8c:a9:fe:a8:bf:dc:0b:99:
dc:63:b5:e2:e1:28:8e:36:ce:31:7b:27:58:84:7a:7b:0d:18:
00:0c:d1:97:17:e7:25:79:a4:45:0f:1f:4d:16:17:b1:e1:60:
0e:6d:3b:f8:7e:cb:53:da:31:b8:77:d7:78:70:73:38:a6:14:
3e:bb:32:c1:94:12:cb:6a:5b:c3:5c:01:50:5a:58:0a:0f:a8:
e7:07:28:b2:eb:7a:48:f7:10:99:2d:44:d9:45:5a:1b:6a:c4:
f1:5d:56:d4:b0:c4:49:67:e1:ad:d8:3e:55:cf:fb:b8:0c:78:
c7:23:6a:c5:13:09:1f:fb:af:68:93:0f:0a:a6:4b:b1:a6:e0:
db:f8:ca:c6:06:fd:bc:ad:ac:6d:35:c8:75:65:28:43:84:8a:
75:3f:e9:af:0d:38:c9:fb:df:64:81:25:ad:65:f7:7a:53:91:
94:59:ba:91:0c:15:01:3b:26:bc:d5:ff:70:e2:55:21:5e:a3:
fc:83:98:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 20:11:15 2024 by rpki-client on console-fra.rpki-client.org