Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mvCw748-tT8U2E-jphBr5kvXgnI.cer
File: mvCw748-tT8U2E-jphBr5kvXgnI.cer (raw, json)
Hash identifier: jp4p9ToNll4ZLnCngMyTS4gMd6P8uSTHmF9dYyBaJbk=
Subject key identifier: 9A:F0:B0:EF:8F:3E:B5:3F:14:D8:4F:A3:A6:10:6B:E6:4B:D7:82:72
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C0C1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/mvCw748-tT8U2E-jphBr5kvXgnI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Sep 2023 19:36:37 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 136927
IP: 103.99.72.0/22
IP: 2001:df2:5100::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 06:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114881 (0x1c0c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 29 19:36:37 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91B06CA/serialNumber=9AF0B0EF8F3EB53F14D84FA3A6106BE64BD78272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f4:51:47:37:20:5b:51:9c:6a:f2:71:b7:ca:
10:6e:6d:22:22:76:8a:26:ff:21:f0:c9:70:19:0f:
2c:6a:76:78:84:8a:0b:d6:0c:2d:f0:45:eb:df:62:
6b:11:d4:68:1e:4f:4f:cd:2b:1b:b6:6a:31:74:7a:
0a:80:b6:05:a5:b5:a7:9d:75:50:a1:e1:29:22:55:
e9:cb:8d:1a:8d:13:3e:4e:e1:e3:1d:7d:94:f4:0d:
36:64:f1:d9:fc:2f:31:2f:4b:b7:e4:45:e5:85:7f:
b1:86:5f:84:98:f2:d0:df:b5:e0:4f:42:ae:11:e7:
8e:ff:ff:b8:83:fd:82:d4:a3:22:72:86:ea:46:c6:
05:85:49:a2:4f:c6:df:a3:ae:c0:69:26:0a:06:5a:
45:4f:91:38:62:5f:e2:21:8c:f1:e0:cd:83:72:ef:
3c:48:9c:55:8f:f6:f9:8b:18:60:3a:60:60:cd:4b:
34:ad:ff:82:ff:12:4b:6d:b9:25:01:c8:c6:9a:1d:
ec:56:9e:b9:bd:39:5a:ff:51:07:49:75:63:a1:7f:
32:16:86:da:d6:00:c8:ee:64:3b:13:a6:e1:00:7f:
be:4f:d0:81:e9:2b:85:45:8e:20:b9:e8:08:71:a4:
c2:9a:e4:de:c0:93:dd:7e:4d:29:64:41:d6:6e:7b:
e5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F0:B0:EF:8F:3E:B5:3F:14:D8:4F:A3:A6:10:6B:E6:4B:D7:82:72
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/mvCw748-tT8U2E-jphBr5kvXgnI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136927
sbgp-ipAddrBlock: critical
IPv4:
103.99.72.0/22
IPv6:
2001:df2:5100::/48
Signature Algorithm: sha256WithRSAEncryption
0b:6c:c7:5d:13:66:0f:cf:96:4a:1e:d2:63:d6:64:3b:0d:ca:
5d:f2:a5:f5:e4:0b:48:2a:4f:99:06:b2:68:1e:6a:32:3b:f8:
1b:1b:9d:41:91:89:8b:93:99:8e:f9:8f:c5:14:5d:e6:1e:94:
82:20:9c:e0:66:1e:90:d3:fd:57:c8:60:50:1d:e7:79:42:27:
be:e7:bf:a0:02:75:69:3f:ee:1d:e9:00:da:d1:ef:20:90:82:
7e:5e:ae:40:42:a0:5d:25:35:f3:c3:e1:70:3c:33:e5:be:d4:
af:59:1f:0d:34:7b:2d:9d:54:89:2c:a2:3a:33:02:a9:c7:bf:
fb:b1:23:29:bb:28:1f:53:65:1b:6b:e5:cc:f4:cc:95:e1:90:
28:99:dd:2e:f0:b0:40:38:d8:ab:6c:f9:44:2c:bf:44:92:03:
ef:b3:6f:bd:4f:e1:90:62:70:ce:e7:90:4d:f9:a8:4c:05:ad:
86:0e:08:d9:a3:db:48:9e:e2:2a:81:88:2c:f5:76:e0:75:65:
ac:7f:49:15:a8:44:f1:f4:db:05:3e:1e:66:a7:08:30:a8:21:
24:4a:13:50:5c:ef:fa:c1:16:58:84:e6:91:ae:14:32:6f:b3:
8e:37:c2:16:13:64:df:2b:70:d5:29:4c:b3:fe:a1:47:27:b7:
98:c1:37:a5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 19 07:41:39 2024 by rpki-client on console-ams.rpki-client.org