Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mvCw748-tT8U2E-jphBr5kvXgnI.cer
File: mvCw748-tT8U2E-jphBr5kvXgnI.cer (raw, json)
Hash identifier: Coi3BYQTXPN/LtvhZ14oktvb1C3ziN9AqvzuuoIzBNM=
Subject key identifier: 9A:F0:B0:EF:8F:3E:B5:3F:14:D8:4F:A3:A6:10:6B:E6:4B:D7:82:72
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020B64
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/mvCw748-tT8U2E-jphBr5kvXgnI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Sep 2024 01:13:42 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136927
IP: 103.99.72.0/22
IP: 2001:df2:5100::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 12:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133988 (0x20b64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 3 01:13:42 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91B06CA/serialNumber=9AF0B0EF8F3EB53F14D84FA3A6106BE64BD78272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f4:51:47:37:20:5b:51:9c:6a:f2:71:b7:ca:
10:6e:6d:22:22:76:8a:26:ff:21:f0:c9:70:19:0f:
2c:6a:76:78:84:8a:0b:d6:0c:2d:f0:45:eb:df:62:
6b:11:d4:68:1e:4f:4f:cd:2b:1b:b6:6a:31:74:7a:
0a:80:b6:05:a5:b5:a7:9d:75:50:a1:e1:29:22:55:
e9:cb:8d:1a:8d:13:3e:4e:e1:e3:1d:7d:94:f4:0d:
36:64:f1:d9:fc:2f:31:2f:4b:b7:e4:45:e5:85:7f:
b1:86:5f:84:98:f2:d0:df:b5:e0:4f:42:ae:11:e7:
8e:ff:ff:b8:83:fd:82:d4:a3:22:72:86:ea:46:c6:
05:85:49:a2:4f:c6:df:a3:ae:c0:69:26:0a:06:5a:
45:4f:91:38:62:5f:e2:21:8c:f1:e0:cd:83:72:ef:
3c:48:9c:55:8f:f6:f9:8b:18:60:3a:60:60:cd:4b:
34:ad:ff:82:ff:12:4b:6d:b9:25:01:c8:c6:9a:1d:
ec:56:9e:b9:bd:39:5a:ff:51:07:49:75:63:a1:7f:
32:16:86:da:d6:00:c8:ee:64:3b:13:a6:e1:00:7f:
be:4f:d0:81:e9:2b:85:45:8e:20:b9:e8:08:71:a4:
c2:9a:e4:de:c0:93:dd:7e:4d:29:64:41:d6:6e:7b:
e5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F0:B0:EF:8F:3E:B5:3F:14:D8:4F:A3:A6:10:6B:E6:4B:D7:82:72
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/mvCw748-tT8U2E-jphBr5kvXgnI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136927
sbgp-ipAddrBlock: critical
IPv4:
103.99.72.0/22
IPv6:
2001:df2:5100::/48
Signature Algorithm: sha256WithRSAEncryption
5c:3f:29:be:17:99:3e:b2:77:f0:fa:0e:93:8a:2a:57:37:e1:
5f:73:18:55:1a:bd:d0:90:1d:0b:a2:03:84:01:2b:4e:23:c3:
86:5d:ba:78:a0:9e:f2:00:61:81:47:3c:3e:31:7c:69:7b:f3:
27:57:5b:aa:7b:fd:21:89:a7:6c:12:9a:42:b1:17:13:db:ed:
e2:2b:bc:d5:61:70:7c:b7:43:5f:9e:36:cd:42:4d:b2:a6:bd:
b9:fc:32:38:c1:64:35:6d:4f:fa:be:74:70:be:9c:47:94:d2:
15:cd:24:d9:b7:7a:a0:af:f3:75:ed:bc:4e:42:95:fd:b0:9d:
c7:5e:eb:fb:bf:dd:5f:45:36:e9:5f:0e:eb:29:21:8f:cf:f5:
91:a9:a7:d3:f8:41:45:39:f7:02:33:f4:8a:73:4c:bd:77:bc:
94:dc:e2:04:b9:d5:33:6a:4e:9a:88:9e:fa:57:7d:87:9d:3e:
62:52:24:ed:6a:71:df:c0:45:dc:17:65:8e:90:3e:0c:03:7b:
93:10:86:b6:e8:2a:7b:60:5c:23:d0:f3:bb:ba:a8:26:23:9d:
e1:47:a7:df:51:af:10:6b:75:c2:0d:08:84:ba:9a:21:0b:f2:
53:af:16:55:05:bf:fc:1b:a3:ba:d3:97:fd:3f:c2:b6:f2:15:
ce:41:6c:ad
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 13:36:07 2024 by rpki-client on console-fra.rpki-client.org