Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer
File: lRKAntQ1o2QK-bdfCvspKNQWPDE.cer (raw, json)
Hash identifier: Y02qIJcLGYly1HVjEH/aB2XWXnKkTHPviSHsqIZ+WUY=
Subject key identifier: 95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02198F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 03:21:06 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 55913
AS: 58750
IP: 103.21.48.0/22
IP: 202.74.61.0/24
IP: 2001:df6:f500::/48
IP: 2403:ecc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137615 (0x2198f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 03:21:06 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:13:5f:49:2f:1c:49:22:25:d3:c9:66:60:cb:
6c:1d:d2:fe:e3:b1:41:a9:27:21:8a:5e:58:b2:0a:
40:03:5d:de:55:e8:ed:26:4a:f2:ff:74:79:fe:bc:
7b:86:e5:36:e9:5a:bb:92:6d:15:17:ee:8b:da:03:
7b:91:11:e5:42:9c:4c:0b:bf:af:d8:02:98:1a:db:
47:03:68:a7:5b:5a:f7:aa:3f:3e:3c:26:00:3f:2e:
ea:f3:fb:de:c2:07:e6:5c:89:ea:52:40:e3:1f:6c:
b3:32:d3:45:76:c9:dc:1e:4e:dc:f2:84:14:94:2b:
d1:6d:fa:cc:c5:98:02:66:4d:a2:71:78:66:a6:d7:
5d:33:a7:c4:97:9b:e1:e7:3d:5b:8a:be:22:60:74:
62:f0:29:65:1c:99:23:69:a8:23:f2:d5:fe:f1:44:
9d:92:8e:98:2b:0f:a2:23:7a:ee:52:69:85:b3:26:
a2:a9:8c:ed:3d:c9:2f:8a:2d:26:95:39:17:e6:86:
b9:6e:fe:60:21:ab:85:65:91:12:ce:06:90:a0:bc:
cc:23:2b:f2:34:1e:92:e7:eb:39:7e:b2:8c:a1:ff:
5f:3b:0f:de:8b:28:e4:ad:1e:7d:58:05:d1:24:2a:
cf:ca:2e:fe:9a:8e:2a:a4:67:af:db:5d:5a:67:ab:
ea:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55913
58750
sbgp-ipAddrBlock: critical
IPv4:
103.21.48.0/22
202.74.61.0/24
IPv6:
2001:df6:f500::/48
2403:ecc0::/32
Signature Algorithm: sha256WithRSAEncryption
1b:98:c1:36:7b:7a:cd:a2:ca:0e:98:ab:02:2a:65:a9:1a:28:
66:f9:fd:b4:6b:ca:3f:5e:ec:2f:44:d2:5e:ce:99:e1:5b:2c:
14:63:7d:79:b7:e5:aa:e2:55:f8:82:6e:67:22:d9:18:4c:e5:
12:cf:20:e6:d9:06:ff:08:0d:b7:dc:a8:0e:20:34:8d:05:6c:
2e:30:2c:4a:e7:c4:df:b3:7c:e5:b7:68:ad:2e:bf:37:0a:5a:
be:82:1d:aa:36:10:0f:48:ff:08:5d:3f:66:14:02:8c:ef:a6:
e0:bc:87:32:00:c6:ac:1a:e3:8d:20:11:c4:cb:d9:11:be:d5:
07:68:15:e5:ed:25:55:0f:a9:a9:04:6e:2d:e0:ce:af:91:a6:
8b:27:04:7b:ee:98:61:5f:05:64:d9:cc:b9:aa:3e:a7:e7:85:
81:83:cb:59:ea:42:ea:81:88:f3:16:7f:b7:5d:55:73:82:05:
d8:38:47:d6:76:00:d5:f7:a9:e7:8a:d7:85:8d:c0:5f:74:5a:
63:55:ae:74:fd:78:f7:64:37:e4:77:f0:70:51:3f:e2:4c:36:
42:8e:ec:3a:1e:0c:7a:1a:28:29:be:02:7f:ae:d4:9d:e0:14:
76:61:05:6e:34:e4:ca:e1:0d:39:fb:61:63:fc:29:00:3c:09:
07:70:b8:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:56 2024 by rpki-client on console-fra.rpki-client.org