Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer
File: mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer (raw, json)
Hash identifier: lnTWl+4BC/CLcxMS118cJeRWG5W/VDlEOvF+Sh83aIU=
Subject key identifier: 98:B5:C6:14:76:18:FC:B6:4C:21:4D:CC:C0:77:74:13:08:7E:97:70
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AC78
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Jun 2023 12:56:27 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 142559
IP: 103.169.98.0/23
IP: 2001:df6:f580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109688 (0x1ac78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 28 12:56:27 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91228BC/serialNumber=98B5C6147618FCB64C214DCCC0777413087E9770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0d:80:68:7f:09:62:73:d0:54:c2:8f:53:6a:
d6:5b:51:3d:6b:b0:6b:37:e0:f8:2a:98:46:ac:d5:
aa:87:4f:83:83:86:24:92:fa:f9:82:27:4b:59:c9:
25:d5:70:69:be:b8:5d:29:d3:e8:72:d9:8b:5d:43:
92:4f:55:78:97:7e:17:64:f2:f9:2b:a6:be:c6:65:
f9:66:f4:07:d0:01:44:f6:4f:b4:d4:ef:5e:70:78:
c6:18:d8:7d:7a:d6:2b:8e:df:80:6a:41:24:57:73:
3c:33:8c:8d:35:f8:a7:73:af:b9:92:0e:d1:fb:1e:
c0:4f:89:fe:46:0f:3c:2f:38:95:1b:ec:73:9e:d1:
64:85:d9:1b:c8:d5:51:67:74:8a:2c:94:09:87:a8:
da:dd:84:41:6a:7a:9e:fc:cd:89:ad:2c:d2:1b:26:
89:33:0c:56:ca:47:01:5d:f1:8d:86:51:07:b3:a8:
8a:d7:52:41:46:3d:09:46:14:cd:da:5e:a1:f0:a8:
4e:26:3b:1d:38:e7:3c:c3:f1:31:2c:94:f1:ca:b5:
8c:cc:c6:5a:90:18:f9:7e:58:37:b8:5d:d6:9a:ef:
93:c4:f5:b6:f4:ec:17:e5:86:85:b3:bd:6d:cf:6d:
47:3c:d1:0d:de:9f:47:7c:2f:2f:5d:54:63:6b:b2:
79:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B5:C6:14:76:18:FC:B6:4C:21:4D:CC:C0:77:74:13:08:7E:97:70
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142559
sbgp-ipAddrBlock: critical
IPv4:
103.169.98.0/23
IPv6:
2001:df6:f580::/48
Signature Algorithm: sha256WithRSAEncryption
76:a2:15:79:5f:b6:0e:f5:3f:5a:2e:58:a6:3d:6a:44:00:20:
88:3c:ce:fa:eb:75:5b:29:07:cd:12:5e:1d:1b:6e:05:9b:9a:
dd:89:81:96:03:ed:e4:e1:0f:7f:d3:7f:8b:89:8c:3a:7f:ba:
9c:22:93:d3:3c:87:58:e1:01:87:5a:10:74:5b:21:85:1f:11:
24:66:4e:0e:83:69:95:b6:5c:e1:db:ff:2c:d0:88:32:f2:26:
2c:33:1a:b0:43:e2:86:1a:ed:75:77:e1:63:fd:5c:c4:c8:cf:
57:96:8d:79:05:9f:16:61:58:6e:d5:c0:bb:ee:6d:0c:8a:97:
71:69:2c:cd:14:60:9d:63:53:e8:00:0f:8d:00:0e:e5:88:81:
ae:7a:e3:4d:4b:79:96:3d:37:ac:62:b7:2d:71:df:f2:62:a6:
75:99:74:fa:93:ed:c5:26:b4:5f:b1:06:2c:06:28:61:bc:27:
4f:60:18:e9:f3:7c:31:a3:79:69:7c:08:08:c5:ee:72:3d:cb:
b8:12:e0:a9:e6:f7:25:96:79:51:ff:b6:03:5e:65:d9:1f:67:
dc:b7:29:7a:a0:41:ae:92:8a:cf:3a:d1:6f:eb:d1:e3:2d:a1:
f8:47:f7:37:d2:3b:0d:cf:5f:8c:dd:94:f9:bf:0b:8c:da:fe:
ed:d5:77:e2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:34 2024 by rpki-client on console-fra.rpki-client.org