Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
File: kTOGkN66V4znOCGKniIIVNG1J18.cer (raw, json)
Hash identifier: XHxrxCkiPz7Xnt3oBazr6OOXmxhJar67cZzxrVJ02FY=
Subject key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D71A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 06 Jan 2024 20:18:29 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 149300
IP: 103.178.66.0/23
IP: 2001:df0:3540::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120602 (0x1d71a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 6 20:18:29 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:7e:c3:57:ab:d4:ac:de:9b:77:6a:c2:e8:0e:
6c:46:23:25:bd:db:b8:4f:27:cc:56:b7:fd:08:a1:
4b:cc:ba:d3:e9:84:d6:4d:7a:24:7c:e1:ba:52:47:
50:fe:09:a2:d5:64:52:b2:7a:c2:8d:17:10:07:21:
67:34:24:42:55:9b:54:12:61:55:63:72:48:9a:71:
eb:57:15:42:4e:e5:a3:aa:c6:d0:d3:0d:b0:d1:93:
e0:d9:ef:46:3d:2f:e1:5e:88:7c:ba:14:ec:a1:a9:
8a:cf:66:b3:b9:10:aa:2b:e2:04:2b:d9:c9:d3:9f:
b2:d2:60:66:1c:17:bf:ae:24:09:1e:34:24:d4:84:
f6:f3:27:be:9c:2c:c6:64:7f:3a:46:a4:88:27:85:
64:95:fc:c1:3a:13:7e:94:e1:39:bf:99:ee:3a:7c:
2a:71:b9:9e:e5:4e:3c:70:64:ed:27:be:4e:e2:85:
72:d7:d3:3e:0c:d6:be:81:8a:e8:4b:aa:99:25:16:
0a:24:db:b8:9f:6c:45:e8:dd:b1:79:59:2f:9a:46:
d1:fc:cb:c0:02:51:df:e9:b6:25:54:12:e7:5d:86:
dd:6c:df:0a:c9:f1:6a:87:84:d4:60:ca:d8:7a:11:
21:15:1c:d3:79:3c:ff:4a:b6:3a:1b:b8:8e:35:8c:
a8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149300
sbgp-ipAddrBlock: critical
IPv4:
103.178.66.0/23
IPv6:
2001:df0:3540::/48
Signature Algorithm: sha256WithRSAEncryption
d9:ca:74:93:4c:d9:e3:e1:a0:e8:c8:af:8d:8e:09:7e:b3:da:
19:b9:a8:45:9b:8e:40:72:eb:bf:e0:df:9b:f6:33:69:e0:e0:
0f:b3:ff:c3:76:eb:2c:a2:b0:90:ab:dc:b7:1c:d4:4e:30:63:
51:09:c9:16:15:4c:da:30:28:19:21:f7:54:11:32:ef:c7:4b:
0d:23:2e:2f:d7:04:b8:63:85:44:1a:53:eb:2e:b3:10:e0:76:
8f:ab:6e:38:d3:83:ec:82:b3:e9:86:97:83:e2:4d:4e:6b:c0:
e0:e1:c3:6d:dc:04:88:aa:ee:1d:03:d4:dc:cb:70:87:f3:b2:
73:94:4c:f0:59:92:6d:5b:4d:96:bd:0b:ce:e7:c6:85:79:cc:
35:26:2a:2c:9a:be:1e:ee:88:d2:62:f4:80:89:c3:54:fb:59:
c0:38:e4:e4:f5:37:87:ae:64:a0:44:db:7f:90:f7:03:c7:04:
c5:a0:82:36:72:f0:b1:f1:11:11:5c:fb:63:26:3d:15:15:8c:
c9:41:a5:00:dc:6d:43:51:8a:f1:e1:17:ab:d0:d3:3c:ce:50:
36:6a:ce:59:c5:8e:f2:e2:53:a3:bd:91:a5:a5:05:98:c2:da:
52:9a:52:36:6d:eb:27:f9:89:85:73:e6:b8:bb:7c:69:19:86:
90:6b:c2:d6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:45 2024 by rpki-client on console-fra.rpki-client.org