Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer
File: lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer (raw, json)
Hash identifier: eF+GuJinRY+LsHHAb2+y/oMuUFDGmEk1WBpGhqw6a7Q=
Subject key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020D3F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 12 Sep 2024 16:55:58 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 150288
IP: 103.126.142.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134463 (0x20d3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 12 16:55:58 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:6b:0b:82:b8:26:9d:db:cc:c1:16:bc:b3:8c:
8e:f8:b2:57:80:7a:24:d7:75:1a:0b:7e:7f:3a:cb:
fe:51:ca:9c:be:4d:1b:ab:d7:e8:d3:bb:cd:ac:b5:
c9:a9:0a:e6:00:dd:76:5c:05:b4:c7:ea:f7:ec:fc:
cb:9d:67:96:7f:08:5d:1b:ec:0b:b9:a3:47:3f:ed:
f5:4f:85:48:34:74:e1:20:77:38:23:8a:1c:f5:2a:
ed:c1:a0:df:8b:6c:1a:dc:52:11:81:59:18:5a:24:
e6:a1:f7:73:5d:8d:58:01:83:84:64:3a:0b:59:41:
e3:63:04:c3:7d:ff:0b:c7:19:14:f8:a3:1f:9b:f9:
0a:60:51:b9:73:7c:db:c6:ab:5a:17:f5:5f:62:60:
99:f5:ed:2e:27:4d:3b:ca:7f:1e:57:d5:97:3f:60:
fe:30:97:e5:19:e3:74:27:48:7a:b9:2f:9f:7a:e5:
0a:45:72:ea:93:60:08:3c:33:49:8f:6f:2c:e5:c7:
19:8c:b4:1e:7e:29:28:44:ae:54:a3:af:26:42:c2:
ed:90:c9:3a:66:e6:09:dd:22:32:61:ec:e3:f6:79:
4d:d8:31:dc:9b:79:c1:e0:15:bd:35:f8:cb:46:d0:
39:f4:0b:f2:7a:2a:e9:b3:c3:0c:42:0b:56:cd:7b:
39:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150288
sbgp-ipAddrBlock: critical
IPv4:
103.126.142.0/23
Signature Algorithm: sha256WithRSAEncryption
27:04:2f:0e:8e:58:08:53:83:bb:4c:bd:74:6a:91:1e:c0:bc:
3e:ae:30:2c:73:ef:95:d8:59:ae:da:a4:e5:7a:59:42:f0:65:
68:db:d1:af:2f:d6:5d:a2:c3:54:2a:97:42:cb:42:6b:de:9d:
26:ff:5a:2f:c5:fb:24:38:54:05:86:0c:2a:a2:46:de:07:46:
f8:f1:6b:ce:ce:27:b4:aa:1a:e8:b2:21:c6:d2:3e:72:2f:00:
0b:cf:a1:fa:a8:60:61:0f:7d:aa:78:4d:ef:07:11:f6:a3:a6:
8a:b0:1f:b3:d9:3e:a2:6d:a5:bf:f6:15:2b:76:b2:af:42:1a:
a0:2a:79:8f:df:2b:f9:39:cf:20:1b:7b:47:39:22:70:e2:69:
4a:3c:de:ea:84:7e:74:2d:3c:1d:57:70:28:fc:85:f5:cb:75:
c7:61:a8:f1:e1:21:e3:33:09:7d:67:5b:65:ab:39:0f:27:91:
d4:6d:d0:73:2b:96:a2:e8:07:2f:fe:de:06:96:24:1f:f8:d6:
b7:ae:02:a5:f1:f0:4f:62:da:0a:8d:ce:c8:26:af:24:85:34:
5c:ea:44:2c:a4:bc:ff:22:d4:cf:82:67:fb:bc:f9:dd:59:d7:
ab:03:f0:76:f8:c9:82:50:30:55:fe:3a:5c:ac:53:67:83:96:
71:b3:38:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:00 2024 by rpki-client on console-ams.rpki-client.org