Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMa2jRauQ5Lt8OkP4Tc4DjxEN-c.cer
File: kMa2jRauQ5Lt8OkP4Tc4DjxEN-c.cer (raw, json)
Hash identifier: lTVnFo8mLX/FkotIKvCLb6EJ2saH9jUG7KVvcUzcEUM=
Subject key identifier: 90:C6:B6:8D:16:AE:43:92:ED:F0:E9:0F:E1:37:38:0E:3C:44:37:E7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AEDE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F7935/905A3A489B9511ECAE3F0C4FC4F9AE02/kMa2jRauQ5Lt8OkP4Tc4DjxEN-c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F7935/905A3A489B9511ECAE3F0C4FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 06 Jul 2023 21:43:50 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 142406
IP: 103.167.214.0/23
IP: 2001:df6:c180::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110302 (0x1aede)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 6 21:43:50 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91F7935/serialNumber=90C6B68D16AE4392EDF0E90FE137380E3C4437E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:14:3f:79:1b:cc:37:00:ef:c4:cd:f1:d4:6a:
dc:ec:26:01:9b:92:83:f2:84:69:76:0b:37:b8:a8:
e0:05:97:d5:25:73:a7:36:95:e1:ff:4e:13:33:f4:
1b:90:77:01:d9:cc:a1:c4:4f:48:93:82:0a:fb:cd:
8e:54:b0:65:c3:d0:a0:88:80:9a:ce:de:ec:de:eb:
03:94:c3:23:e1:e1:0b:e2:3a:d0:12:43:6b:99:28:
d3:dc:01:ad:6f:be:12:dc:c0:44:08:f0:db:06:6b:
d7:28:57:df:5e:fb:51:c1:26:c4:e5:2d:f1:18:65:
a5:e6:4d:dc:50:15:58:d3:bd:02:61:b4:42:e5:cc:
e6:1b:f9:46:14:8d:5d:ae:60:7a:5c:8c:0e:76:6d:
b0:16:cc:ca:60:14:ef:f3:d9:a4:67:cb:53:1d:e3:
e3:e9:86:64:d3:f0:df:c4:4b:fd:cb:3f:80:08:2c:
b8:e2:bb:f0:61:10:f0:fe:1c:93:8a:98:33:da:60:
fe:86:40:81:40:b2:0b:ad:c7:54:cc:ae:9c:94:4f:
0e:30:13:89:c0:b0:f3:70:c2:c0:03:7a:3a:e1:c4:
00:24:36:33:d2:39:8b:dc:3c:76:01:e5:2e:4d:83:
aa:e1:2c:b9:86:af:18:87:9f:e2:19:f6:df:4f:f8:
a8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C6:B6:8D:16:AE:43:92:ED:F0:E9:0F:E1:37:38:0E:3C:44:37:E7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F7935/905A3A489B9511ECAE3F0C4FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F7935/905A3A489B9511ECAE3F0C4FC4F9AE02/kMa2jRauQ5Lt8OkP4Tc4DjxEN-c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142406
sbgp-ipAddrBlock: critical
IPv4:
103.167.214.0/23
IPv6:
2001:df6:c180::/48
Signature Algorithm: sha256WithRSAEncryption
32:a7:3f:67:7a:4e:c6:2f:46:a8:c9:95:cd:6f:c7:82:27:4f:
62:f1:5f:14:bd:fd:76:cf:26:9c:c7:a4:ae:89:e5:b6:f3:7e:
49:a9:d2:82:08:90:39:79:9d:24:72:3d:e0:fd:5b:96:70:1d:
06:91:45:fc:b3:92:30:26:18:74:cf:e7:23:4f:8b:a5:03:4b:
2d:90:7c:07:40:86:e7:3b:32:2d:60:01:8e:2e:f8:5a:8b:e9:
cb:3c:c3:9d:19:d2:57:69:84:57:fd:0d:67:51:2b:1d:13:b9:
4c:0a:d3:b1:79:a3:47:3e:29:1f:40:3f:69:4f:20:ab:60:79:
da:06:a9:30:0e:77:25:e6:00:86:f1:74:62:18:78:06:5e:b7:
27:ba:39:9d:03:e7:d6:f8:0f:80:ae:cb:e6:bc:78:25:c4:7d:
97:06:8d:2d:b0:2c:33:af:7e:34:d1:95:5e:5f:58:c6:17:15:
0c:ac:75:c6:de:ff:0d:97:29:1e:0a:91:5e:bf:78:d7:66:c0:
18:66:e3:d9:6f:80:2b:75:a2:56:cc:85:00:49:c6:1f:27:4b:
92:25:21:f1:28:0f:c0:99:f1:f0:c9:dd:ac:28:31:4f:be:da:
72:c3:b2:5b:2e:e8:b3:30:07:0d:20:07:17:19:51:bb:f8:72:
c6:f8:ed:00
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:07 2024 by rpki-client on console-ams.rpki-client.org