Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jn5KA1ggOeRh7O2RAAjJgnNiNZ8.cer
File: jn5KA1ggOeRh7O2RAAjJgnNiNZ8.cer (raw, json)
Hash identifier: 4ahVv7df77YWRp5RTdctYuCc/wW4hlYoN6m3ViiqySc=
Subject key identifier: 8E:7E:4A:03:58:20:39:E4:61:EC:ED:91:00:08:C9:82:73:62:35:9F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0210B7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918223E/5F6B3A5ECD0411EC86137D1CC4F9AE02/jn5KA1ggOeRh7O2RAAjJgnNiNZ8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918223E/5F6B3A5ECD0411EC86137D1CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Oct 2024 01:44:25 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 136896
IP: 103.98.8.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135351 (0x210b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 1 01:44:25 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A918223E/serialNumber=8E7E4A03582039E461ECED910008C9827362359F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3b:a5:d9:ce:e0:97:87:29:14:4f:05:d9:25:
55:65:1d:e7:2f:61:f8:d6:e6:fc:46:88:6e:15:a9:
19:ff:41:14:66:c8:28:89:2a:9a:34:68:ec:20:38:
69:09:b7:18:3e:a9:1a:74:14:88:2b:65:12:d2:d6:
46:ba:dd:bc:b8:2f:31:3a:20:08:1f:1f:c4:66:39:
42:db:f5:8d:45:b3:0f:fd:16:cd:58:5a:54:9b:f4:
90:6b:18:04:77:3c:ba:38:d9:fa:c6:ea:fa:59:9d:
2b:00:b8:f0:1d:05:66:6f:06:8f:1e:fa:ca:7c:d0:
fc:72:37:d9:1d:c9:34:59:44:d6:8e:d8:d0:62:6b:
7c:dc:de:ee:04:ca:00:fc:4a:e2:9a:dc:58:ea:3a:
e5:ef:9d:40:84:54:9b:b8:86:bb:99:66:5f:1d:9c:
19:ce:69:25:0a:ec:18:9c:94:41:6f:8f:4c:50:68:
3a:aa:3f:76:59:d4:98:d8:f3:11:6f:54:5f:2c:32:
f7:03:aa:29:a0:8b:1c:b9:0d:5a:36:f9:06:94:23:
df:c2:c7:61:38:bc:a6:a4:de:ca:57:1d:07:82:ab:
37:03:94:48:83:83:53:b6:9e:6a:3e:f7:7e:75:ba:
a4:b7:80:50:46:bb:f9:b0:4d:2f:ee:0d:ad:46:59:
b1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:7E:4A:03:58:20:39:E4:61:EC:ED:91:00:08:C9:82:73:62:35:9F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918223E/5F6B3A5ECD0411EC86137D1CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918223E/5F6B3A5ECD0411EC86137D1CC4F9AE02/jn5KA1ggOeRh7O2RAAjJgnNiNZ8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136896
sbgp-ipAddrBlock: critical
IPv4:
103.98.8.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:46:25:ac:bc:52:d7:d9:17:ad:f3:0b:8e:15:15:30:4c:f0:
05:38:5a:87:43:a5:cb:a0:89:28:fc:b6:07:e0:8d:9b:63:78:
a7:ae:57:61:7b:85:5f:0d:31:46:79:fb:90:cd:83:f8:7c:58:
cf:69:7c:4f:0f:07:46:3a:02:ae:4c:1b:7f:90:f4:e6:83:01:
36:e7:f0:ef:65:b4:29:58:27:20:8c:80:c5:71:db:c6:25:62:
5c:ba:2f:06:ff:e6:0b:88:a7:8c:55:4f:70:e2:a3:8b:a6:bd:
d3:f2:93:94:21:07:a8:65:bb:de:8b:df:16:a6:fd:28:b9:d8:
ef:c0:53:29:09:be:c3:57:cd:cc:30:af:01:09:b6:d0:64:85:
e2:73:2c:7f:e9:89:d4:d6:8d:75:91:91:c4:5e:12:64:75:a3:
e7:96:48:4d:3f:67:7c:08:64:f6:be:cb:2f:e4:00:c4:75:ee:
a7:65:f0:f8:ba:68:68:50:db:89:af:ab:f2:7d:1e:ca:63:99:
8e:fc:a4:94:59:25:b3:d3:6a:57:d4:9f:38:00:34:e0:7b:66:
37:06:83:e5:9a:c9:e5:66:7d:8e:df:d8:3f:4e:0d:a9:3f:ea:
e7:9b:b0:34:3d:6a:8e:87:25:dc:6d:7d:b8:59:50:87:b8:5f:
e4:e4:f1:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:44 2024 by rpki-client on console-fra.rpki-client.org