Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kJQ-uOrUTDbtyZEDG_-IuKtlWik.cer
File: kJQ-uOrUTDbtyZEDG_-IuKtlWik.cer (raw, json)
Hash identifier: tRXvbqHXus7LvjFVSjaPn+G6wgxwUahJJdzkXCIGvEA=
Subject key identifier: 90:94:3E:B8:EA:D4:4C:36:ED:C9:91:03:1B:FF:88:B8:AB:65:5A:29
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E92D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9149106/9617C06E536911ECA4A6BC78C4F9AE02/kJQ-uOrUTDbtyZEDG_-IuKtlWik.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9149106/9617C06E536911ECA4A6BC78C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Apr 2024 02:54:11 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 135137
IP: 103.104.164.0/23
IP: 103.210.124.0/23
IP: 2405:d840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125229 (0x1e92d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 3 02:54:11 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9149106/serialNumber=90943EB8EAD44C36EDC991031BFF88B8AB655A29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7f:99:0f:63:bc:16:33:78:41:f1:12:78:95:
a4:83:c5:71:ee:d1:1d:85:c8:a1:4d:aa:8c:4f:e3:
1b:6c:90:94:e0:a5:d3:43:22:7a:5a:69:16:40:37:
99:a7:a3:6b:c6:06:4a:6a:89:f9:77:10:b3:5e:a5:
e6:2e:88:6c:c1:64:40:6c:44:25:98:2d:d1:a1:17:
a6:71:58:6d:1a:8d:5b:68:92:71:48:af:83:b8:12:
4b:c7:9c:2c:90:20:1a:8e:a1:d2:a1:43:e7:51:e4:
16:86:0e:e5:3b:71:6e:24:e8:c8:af:57:cd:93:ce:
ad:8d:95:2c:7f:b7:61:a8:18:12:14:9e:40:e2:ed:
2d:1b:0d:5e:1f:9d:b1:02:f3:15:af:bf:ed:f6:dc:
96:95:6a:ac:0e:62:db:9f:3e:c1:cd:89:b7:57:b8:
51:dd:5e:5d:66:ea:70:9e:42:2a:70:87:bc:c0:f1:
ee:2d:f6:ac:43:5a:18:42:aa:9b:a1:ed:0f:d4:31:
1c:e5:19:d2:aa:81:89:30:2f:ac:e4:28:94:7f:46:
41:1a:1c:4e:68:0e:35:a5:eb:fc:81:f8:d6:76:a6:
1a:36:fd:98:c5:0e:51:0c:eb:82:ee:49:d7:76:af:
d8:f3:c6:65:c8:21:b8:aa:0b:54:50:0f:b1:14:34:
d3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:94:3E:B8:EA:D4:4C:36:ED:C9:91:03:1B:FF:88:B8:AB:65:5A:29
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9149106/9617C06E536911ECA4A6BC78C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9149106/9617C06E536911ECA4A6BC78C4F9AE02/kJQ-uOrUTDbtyZEDG_-IuKtlWik.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135137
sbgp-ipAddrBlock: critical
IPv4:
103.104.164.0/23
103.210.124.0/23
IPv6:
2405:d840::/32
Signature Algorithm: sha256WithRSAEncryption
36:90:1d:48:2e:73:c5:da:ca:b4:9a:d2:3b:78:22:5b:45:a6:
e2:0c:c3:f0:6a:1d:c6:3e:fe:23:c4:98:34:2a:66:54:24:b3:
8e:04:af:26:dc:15:2a:1b:b4:81:36:02:46:1e:d3:00:19:0e:
bd:5f:e0:f8:01:04:e2:78:21:cc:0c:57:da:47:9a:30:a6:21:
fa:c2:7b:c7:e9:5c:17:dd:57:16:57:40:be:0c:20:d3:eb:d0:
30:83:e5:f3:f2:b2:91:6a:65:6a:3e:b1:03:e3:0c:8f:82:fa:
f8:42:db:a9:cb:75:38:2d:96:ab:57:3f:6d:27:68:3f:bf:2c:
bb:31:5d:f8:72:60:9d:1d:5c:14:94:2d:2f:8b:85:15:ba:92:
c6:dd:76:87:49:2c:e9:22:a8:f6:83:d1:3d:d3:86:1f:6e:40:
04:c2:66:38:18:d6:7a:26:b7:b6:f9:48:60:a3:ba:5e:3e:26:
72:a1:29:ee:ee:cc:72:3e:e6:09:1e:72:c9:0c:8a:f4:7c:0b:
32:2a:8e:e1:3d:ac:ce:9b:9d:ae:c6:3e:bd:d9:f8:e8:ca:39:
ad:24:8c:22:8c:25:91:d3:fa:74:f4:4c:35:d8:7e:ef:57:22:
70:aa:f0:68:2e:7f:92:2f:8e:27:47:6f:e7:b4:e3:95:f8:cf:
23:da:75:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 08:28:40 2024 by rpki-client on console-ams.rpki-client.org