Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsTj-v1QkSiuwsCHnmr5E54V6rY.cer
File: jsTj-v1QkSiuwsCHnmr5E54V6rY.cer (raw, json)
Hash identifier: T5NdaYQGiwXMfRZtRp4QaJP10bLsfdbUiFxTVWV1WOo=
Subject key identifier: 8E:C4:E3:FA:FD:50:91:28:AE:C2:C0:87:9E:6A:F9:13:9E:15:EA:B6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022346
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/jsTj-v1QkSiuwsCHnmr5E54V6rY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 18 Dec 2024 14:08:20 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 149170
IP: 103.177.208.0/23
IP: 2400:3d60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140102 (0x22346)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 18 14:08:20 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9142AA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2c:d1:e4:27:f5:ff:f4:2d:cb:f6:97:82:71:
1b:5c:e3:7e:e1:a7:b7:91:04:5c:df:4a:17:63:cc:
27:cb:06:3a:17:44:ab:6a:44:1a:c3:f3:e0:db:04:
b8:48:d1:38:87:63:af:4c:04:a8:2b:88:23:f2:f3:
69:27:e6:ff:99:79:d3:25:25:d1:0d:77:e3:80:ca:
98:ae:e0:a4:3b:7d:4a:e6:87:fe:ce:95:f8:a4:d6:
20:fe:c2:86:fc:2b:8d:64:2f:6d:be:ef:7b:6a:47:
c0:c0:7a:c4:87:cc:68:da:c6:ce:b0:95:3e:53:b8:
4b:23:0e:81:74:00:0c:67:f5:cf:4a:bf:2e:25:50:
e2:9f:ff:24:1c:49:ad:0a:04:cb:10:57:91:d9:43:
62:38:5f:28:29:22:d3:82:27:91:97:14:ca:a4:98:
56:24:80:de:e9:fb:06:40:66:fb:26:82:0b:8e:5d:
eb:02:22:cb:ab:81:1b:1b:8a:4e:b6:32:3b:da:c4:
77:5d:e6:3b:bd:fd:cc:72:b8:8b:ed:a6:08:ed:a9:
00:df:82:09:71:25:5e:1b:fc:43:b8:3b:48:df:e4:
8e:95:cd:2c:0d:8d:c0:54:a7:d7:61:cd:ba:48:ef:
23:49:27:d8:d3:bd:55:6e:99:f0:04:bd:4d:4f:fe:
9f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C4:E3:FA:FD:50:91:28:AE:C2:C0:87:9E:6A:F9:13:9E:15:EA:B6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/jsTj-v1QkSiuwsCHnmr5E54V6rY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149170
sbgp-ipAddrBlock: critical
IPv4:
103.177.208.0/23
IPv6:
2400:3d60::/32
Signature Algorithm: sha256WithRSAEncryption
32:c7:7f:78:a7:df:8d:02:9e:15:3c:87:64:d0:5d:47:3b:d4:
e3:ff:9c:a3:46:6a:eb:61:df:1c:4d:3b:95:73:a8:83:4d:18:
ba:c8:65:f7:0a:f7:b3:24:6e:9c:a9:2e:99:24:52:5b:09:78:
a8:bd:26:fb:ac:89:b1:dd:7d:04:77:2b:22:35:02:83:64:46:
9c:f3:53:4f:2d:6d:e7:6b:1d:30:c8:de:f5:ee:f2:b6:f7:39:
f9:9e:89:1e:3e:85:2b:8e:98:6d:0c:32:a4:5a:eb:04:6f:b5:
7d:9c:63:63:95:e0:d7:2b:3b:85:cd:7c:84:bc:b2:dd:20:ea:
07:41:5c:54:cf:9c:9f:48:db:eb:21:d5:f3:00:6c:c3:e7:11:
53:39:48:3b:b2:35:0d:8f:af:88:87:c7:fa:73:88:de:e6:78:
bd:b1:89:f0:5f:cf:41:33:04:d4:df:a6:2e:31:d3:65:b1:78:
0a:44:18:aa:88:e1:5e:22:74:e3:4d:61:3e:9a:33:83:97:1c:
46:d3:8e:b9:ae:0c:70:85:41:90:f9:1d:3a:fd:5d:7e:fb:4e:
45:0b:39:31:82:51:22:6b:e8:6b:ad:b8:b2:8e:dd:bf:1f:18:
2e:be:d4:2c:d0:17:e8:78:af:bb:fd:68:59:87:69:b1:5a:08:
5a:9d:8b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:55 2025 by rpki-client