Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer
File: mG5BZ9azgH9J98JgDWD5wmCacJY.cer (raw, json)
Hash identifier: MNyvXIyqxp4y209n1vQB2s3jXI9VGJjRjCuFzAVGBrI=
Subject key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020D23
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Sep 2024 21:50:34 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 58695
IP: 103.15.224.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134435 (0x20d23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 11 21:50:34 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:67:41:14:f2:dc:55:34:97:10:5b:5c:07:
86:da:0a:ac:3d:cd:d5:72:e1:b3:e6:98:3a:e5:27:
52:11:23:bc:ee:68:03:9b:f3:68:ac:b8:53:c9:a1:
2b:aa:32:6a:15:ab:cb:d5:75:4d:33:b2:9a:c7:f4:
ac:21:94:1f:46:5c:52:5e:d7:44:cf:ac:c0:86:ef:
46:ce:70:4a:41:9b:09:8c:11:c1:07:9e:bb:e2:0a:
dc:5e:0c:aa:3a:ed:9f:67:1b:69:be:60:b8:db:53:
ab:2d:dc:af:ba:8d:80:c2:6a:bf:2c:86:21:79:85:
cc:28:ec:9a:dd:13:75:67:86:cb:b4:d3:02:67:d8:
84:01:ae:52:dd:15:fa:e8:73:84:15:a2:ae:7c:b0:
c4:d5:f7:e3:62:fb:1f:2c:12:aa:10:e6:2b:b0:2d:
1d:d6:05:30:6e:07:82:c2:18:c3:35:38:8a:d0:1c:
c9:bd:72:81:d5:8a:9c:87:f3:a4:55:27:97:36:f3:
22:f2:ff:7c:14:e7:da:d5:f1:9a:5d:92:63:c0:54:
86:16:28:ce:a9:d4:a9:4a:14:ad:d5:4e:ef:da:1a:
1c:34:16:a6:24:af:8d:f1:fe:de:40:a6:ad:20:b9:
c0:fd:86:48:a3:32:45:0a:7b:dc:cd:f6:06:13:90:
5b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58695
sbgp-ipAddrBlock: critical
IPv4:
103.15.224.0/23
Signature Algorithm: sha256WithRSAEncryption
71:75:a8:67:fe:7f:ea:40:a9:d1:8a:68:ab:bd:76:5b:64:92:
46:d7:a6:57:1f:87:8e:cd:62:48:f4:14:7e:c7:b3:d5:ed:ac:
1b:26:32:8b:d5:26:3f:80:4f:55:aa:92:a4:02:ab:c8:55:a0:
5c:37:3d:5a:e1:b2:c0:8c:47:fc:3b:8d:3a:22:b5:d3:f8:c0:
d4:6a:8a:20:a2:dd:61:77:85:55:0d:73:62:b8:6a:70:8f:17:
4b:04:68:b0:90:77:57:34:e3:69:95:ca:4f:3a:db:57:79:00:
d2:22:f4:af:10:09:93:af:d0:dd:e6:42:14:0a:db:d8:bb:7d:
62:7c:05:3d:e5:5c:e5:41:37:c3:9a:06:13:b2:94:f7:61:4d:
a8:f4:3c:f9:f9:52:aa:85:81:90:c8:98:8f:02:06:f7:2f:e0:
80:39:57:80:9a:3c:82:c4:77:fb:5c:d6:b5:23:b5:b7:a8:a9:
03:30:d1:eb:0e:84:a1:40:26:5a:f7:f8:61:f7:ea:b5:b1:26:
26:5a:79:44:01:13:df:19:fd:8c:46:45:cf:b6:f7:3b:d8:33:
32:39:6f:49:4f:86:07:3b:81:6d:7c:85:0f:cf:f1:35:58:af:
1f:e0:95:3b:a3:14:b6:6b:75:c0:12:e7:be:43:6d:f1:81:86:
60:9f:fc:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:01 2024 by rpki-client on console-ams.rpki-client.org