Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer
File: mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer (raw, json)
Hash identifier: 2XwCzWNE47WHd1ny5cqoxbPYiu9bNNY0lCI4fjGk17I=
Subject key identifier: 98:B5:C6:14:76:18:FC:B6:4C:21:4D:CC:C0:77:74:13:08:7E:97:70
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02032C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Jul 2024 13:33:37 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 142559
IP: 103.169.98.0/23
IP: 2001:df6:f580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131884 (0x2032c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 30 13:33:37 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91228BC/serialNumber=98B5C6147618FCB64C214DCCC0777413087E9770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0d:80:68:7f:09:62:73:d0:54:c2:8f:53:6a:
d6:5b:51:3d:6b:b0:6b:37:e0:f8:2a:98:46:ac:d5:
aa:87:4f:83:83:86:24:92:fa:f9:82:27:4b:59:c9:
25:d5:70:69:be:b8:5d:29:d3:e8:72:d9:8b:5d:43:
92:4f:55:78:97:7e:17:64:f2:f9:2b:a6:be:c6:65:
f9:66:f4:07:d0:01:44:f6:4f:b4:d4:ef:5e:70:78:
c6:18:d8:7d:7a:d6:2b:8e:df:80:6a:41:24:57:73:
3c:33:8c:8d:35:f8:a7:73:af:b9:92:0e:d1:fb:1e:
c0:4f:89:fe:46:0f:3c:2f:38:95:1b:ec:73:9e:d1:
64:85:d9:1b:c8:d5:51:67:74:8a:2c:94:09:87:a8:
da:dd:84:41:6a:7a:9e:fc:cd:89:ad:2c:d2:1b:26:
89:33:0c:56:ca:47:01:5d:f1:8d:86:51:07:b3:a8:
8a:d7:52:41:46:3d:09:46:14:cd:da:5e:a1:f0:a8:
4e:26:3b:1d:38:e7:3c:c3:f1:31:2c:94:f1:ca:b5:
8c:cc:c6:5a:90:18:f9:7e:58:37:b8:5d:d6:9a:ef:
93:c4:f5:b6:f4:ec:17:e5:86:85:b3:bd:6d:cf:6d:
47:3c:d1:0d:de:9f:47:7c:2f:2f:5d:54:63:6b:b2:
79:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B5:C6:14:76:18:FC:B6:4C:21:4D:CC:C0:77:74:13:08:7E:97:70
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142559
sbgp-ipAddrBlock: critical
IPv4:
103.169.98.0/23
IPv6:
2001:df6:f580::/48
Signature Algorithm: sha256WithRSAEncryption
b8:5e:a1:54:61:9c:09:cd:df:32:9c:33:13:8e:25:ea:1c:83:
08:5d:07:bf:a6:e0:78:9b:fa:f9:c6:6f:ae:77:55:48:77:47:
a4:58:04:d5:b1:02:1a:6d:32:7e:91:52:a7:d8:f1:55:a7:1b:
b9:8b:d0:99:d7:b3:5a:fe:f5:64:c0:41:a3:29:3f:6d:6b:16:
9a:c4:6b:2f:24:50:72:50:d7:75:cb:f3:e6:6a:ad:c8:3e:e6:
39:6c:e2:d6:2f:cb:39:ee:15:8f:f6:a6:d5:78:bb:6d:ba:34:
c6:28:d0:39:48:ba:46:ed:5f:2d:64:32:e6:78:8a:df:18:06:
e3:38:a1:45:d4:2c:a5:53:03:46:08:2f:ed:05:07:bd:17:3b:
0a:8a:b8:96:b5:d4:2a:e1:01:dd:07:2d:d6:5e:5a:c0:01:4a:
3f:a3:4b:55:ab:1c:cb:a2:72:ea:64:56:f9:bb:89:39:da:ec:
9d:9e:9d:d9:52:8a:57:2c:c2:44:35:6c:ad:ce:11:36:57:37:
a3:e1:a7:8b:e3:2c:df:54:c3:c3:91:be:52:e8:ec:29:21:c4:
e4:38:07:1c:7a:c9:f5:f0:d0:0f:3c:2e:db:71:65:f3:a3:7c:
f4:91:5b:06:88:9b:86:fd:dd:61:71:8b:53:c7:7a:cc:28:0d:
3e:2f:c0:f7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Nov 27 04:08:12 2024 by rpki-client on console-ams.rpki-client.org