Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer
File: lATO33S5SXRR7zK7ehK-1x0sI-U.cer (raw, json)
Hash identifier: 8M6o0s8lzZKm3y54hJ0KQ8rBQqcnKOA5XiOpPfRiDZA=
Subject key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02066D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 13 Aug 2024 04:51:30 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 151473
IP: 103.229.252.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132717 (0x2066d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 13 04:51:30 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:01:02:04:84:51:37:12:ce:80:a1:d9:d0:41:
11:c7:22:b3:07:0d:c8:24:a3:a3:d0:a4:35:2f:cf:
20:8d:74:11:f3:ef:40:0f:cc:be:67:bf:0e:b6:cf:
f9:60:57:af:74:43:d0:f7:4b:19:a8:5e:b9:5f:b2:
12:22:39:17:d3:9f:92:20:fd:15:ed:bc:ad:9c:49:
89:99:bd:66:e5:86:cc:99:e1:b2:78:97:d0:a1:a3:
61:71:ec:75:3c:4e:6a:cf:88:0c:cd:4f:2f:f3:15:
42:10:cf:34:dc:a6:bf:2f:91:24:2c:b5:55:68:05:
cf:30:be:af:a6:23:58:f9:52:fe:f1:e9:3a:4c:69:
47:d4:71:94:53:7a:33:88:9e:c8:ed:9d:85:dc:21:
b9:5d:1c:1c:4f:a8:65:51:7a:4d:7c:f0:61:7c:4b:
6f:aa:88:62:2f:56:99:c7:b0:a2:cb:fd:76:ce:e9:
62:f2:7a:f3:a0:f6:9f:ac:e3:c2:4e:85:a9:b9:ef:
76:36:03:d5:df:e2:af:82:cc:ee:7c:ab:7d:f3:ad:
ef:51:22:eb:16:09:82:6b:6e:8e:30:75:07:b2:d4:
80:ad:b2:36:eb:95:2d:e4:69:74:04:5e:65:be:1f:
21:40:bf:98:cb:5a:7f:12:44:3e:2f:78:20:5f:84:
80:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151473
sbgp-ipAddrBlock: critical
IPv4:
103.229.252.0/23
Signature Algorithm: sha256WithRSAEncryption
d3:fe:f3:90:95:b6:f2:46:0c:90:2f:e1:74:ee:2e:26:cf:56:
1a:5e:f6:2f:3e:9f:99:17:41:fe:be:da:03:a3:59:f7:12:d1:
2e:6b:fc:04:dc:0d:62:14:4c:3d:3d:a3:40:88:f1:3a:f7:69:
4f:3d:6a:39:83:3d:e2:0a:f9:0b:4a:e2:cb:53:d7:0d:a2:37:
b3:1d:24:0d:01:54:d7:cb:d7:0d:5f:ac:f4:e1:74:e9:f4:99:
76:30:bf:a8:75:c5:87:dd:7d:22:71:99:70:a7:9c:92:7f:ec:
3b:7e:af:f9:44:01:eb:a6:c6:5f:75:f8:76:ad:5e:8c:c2:bf:
65:b2:7e:2f:a2:87:72:fd:b6:db:85:44:34:b5:82:30:77:14:
ef:ba:f3:11:5b:26:50:f4:a2:a9:6a:c0:5c:82:31:93:cc:28:
fa:28:ac:f6:2c:8d:03:a5:10:c8:34:35:72:e7:ae:49:ca:c5:
ae:e5:66:96:fa:76:8f:d2:d1:2c:1b:8b:3e:02:ea:58:88:81:
13:e3:6a:9d:0e:23:3f:38:7e:3e:f2:9b:23:d8:60:16:3b:cd:
5d:21:a4:c7:01:80:64:86:80:6c:60:b9:26:4d:9d:a4:fe:50:
a8:2f:9d:6b:12:af:38:25:1d:e5:0b:17:db:6b:a4:dd:5b:ec:
67:7d:5c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:56 2024 by rpki-client on console-fra.rpki-client.org