Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8C6F5rKocB50zxmk_RGcBBPzZg.cer
File: k8C6F5rKocB50zxmk_RGcBBPzZg.cer (raw, json)
Hash identifier: g6MA6zK/fdP5uKOVX3adMk8eb4AZ6h5ea73q0dd0LVc=
Subject key identifier: 93:C0:BA:17:9A:CA:A1:C0:79:D3:3C:66:93:F4:46:70:10:4F:CD:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C9AA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Nov 2023 12:22:50 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 150396
IP: 103.30.8.0/23
IP: 2400:bd60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117162 (0x1c9aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 8 12:22:50 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9111788/serialNumber=93C0BA179ACAA1C079D33C6693F44670104FCD98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:61:00:95:57:c5:1c:5c:a1:b0:2e:c8:6b:4b:
46:8f:25:81:44:c2:af:9e:e7:e7:09:2b:7d:41:c3:
63:7d:c4:13:a4:69:97:31:1d:94:cf:98:b0:16:dd:
fc:68:73:50:83:09:b5:ff:7a:78:cf:55:a2:3e:34:
82:e6:45:44:ae:06:1e:84:27:8f:ac:9d:d3:81:45:
6d:cd:2a:5d:4f:4d:47:65:bc:0c:7f:31:27:72:7c:
02:5f:b1:29:16:f4:c2:b3:80:9b:9c:d2:f9:06:85:
1f:26:55:0c:89:51:f0:d7:af:40:81:80:29:a0:18:
68:20:3c:2f:21:86:82:59:ca:5d:db:1e:96:4b:43:
c1:5c:95:f7:d3:ba:30:95:9c:a1:92:4d:8a:22:06:
5a:ad:f8:d9:81:4a:8b:8c:46:cf:04:e6:a3:ab:74:
b9:fd:19:1a:fd:ae:5d:21:c6:3d:05:3a:d3:ee:33:
1d:a9:fd:ed:bc:fe:67:6a:5b:57:e3:3c:c7:32:c8:
d4:1e:ab:0a:3c:81:05:68:d4:13:37:2c:18:1c:7d:
3e:9c:63:06:5e:9a:12:1b:78:4e:e6:0f:25:5e:1c:
f1:13:49:21:3e:6a:59:af:73:88:66:44:0d:dd:93:
9c:d7:38:0a:91:32:87:d7:1f:b9:cb:89:8a:6e:c8:
10:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C0:BA:17:9A:CA:A1:C0:79:D3:3C:66:93:F4:46:70:10:4F:CD:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150396
sbgp-ipAddrBlock: critical
IPv4:
103.30.8.0/23
IPv6:
2400:bd60::/32
Signature Algorithm: sha256WithRSAEncryption
ba:f5:ef:07:a8:90:e5:44:8f:20:ff:6f:19:3c:ba:25:19:0b:
9a:7a:11:0d:05:f0:d8:a5:20:6d:07:1d:2b:43:7a:0f:66:9f:
bd:0a:69:6e:9d:b1:be:59:db:8d:29:8c:8b:3e:58:ec:f4:9d:
de:88:e8:64:1f:21:b0:61:bb:c0:3a:ec:64:4a:0e:ed:96:3a:
2d:0b:f7:c2:48:f6:6e:17:cd:70:22:f1:15:45:74:e3:8f:70:
9c:bc:eb:d8:7c:bf:d0:df:69:0f:3d:75:f7:b1:3d:71:bb:66:
aa:ce:3e:d9:6e:1b:1d:10:c8:6b:8d:3b:47:d7:bf:3e:dc:36:
bc:fd:96:98:b5:37:b4:50:70:ba:55:41:08:49:28:a2:f4:40:
59:fc:51:81:3a:6a:c5:4a:ac:07:f2:cc:c5:37:20:bc:73:d0:
61:5f:91:8c:ec:6c:f8:9c:7a:fd:a3:ac:21:83:48:ad:99:91:
91:90:84:59:93:5c:f7:ae:89:8d:b7:51:b7:e0:0b:ff:a7:e6:
c7:de:10:fb:d6:f9:2f:be:26:ba:9f:6e:ba:f8:a7:af:f3:2d:
e6:c1:08:fa:5c:72:0e:5f:15:ff:08:6a:6d:56:85:72:d1:c1:
4f:2d:32:4f:af:a3:ff:65:43:ab:0a:60:a6:bc:6a:78:66:e9:
6c:f9:65:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:58:02 2024 by rpki-client on console-fra.rpki-client.org