Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n47RxT7pDTyshKZHDEt1lMVXXYU.cer
File: n47RxT7pDTyshKZHDEt1lMVXXYU.cer (raw, json)
Hash identifier: FB+FoNdZ8utFe8EHamyw1GqPUIgTyvmea5BWxSKj70E=
Subject key identifier: 9F:8E:D1:C5:3E:E9:0D:3C:AC:84:A6:47:0C:4B:75:94:C5:57:5D:85
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0202CB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/n47RxT7pDTyshKZHDEt1lMVXXYU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jul 2024 00:51:21 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 140869
IP: 103.42.6.0/23
IP: 103.141.0.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131787 (0x202cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 29 00:51:21 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A912B983/serialNumber=9F8ED1C53EE90D3CAC84A6470C4B7594C5575D85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:79:34:58:92:cb:33:f8:9e:0a:b1:24:16:2f:
cf:74:db:92:21:d1:c9:5b:2e:9a:e5:d9:d0:8e:c1:
09:79:19:55:00:d3:1d:d0:c1:62:7f:be:65:fa:38:
c2:54:cf:45:c7:90:4b:86:ed:47:9e:81:89:ba:56:
03:32:ac:c4:b8:ce:bd:39:64:a4:22:99:aa:a2:3b:
7c:2a:c8:91:3e:a3:72:c4:72:fa:2c:d9:fa:07:14:
ce:6f:72:46:9e:6b:a2:89:09:db:b9:8c:46:e4:5e:
8d:e4:4a:b5:55:a6:ba:5a:46:b2:57:dd:b2:16:2e:
e1:6a:ae:6e:20:54:05:39:86:49:4c:60:a9:be:b3:
6a:78:41:52:7c:46:6e:27:7f:15:5d:af:c7:ba:a8:
b6:e3:a7:85:f2:4c:94:55:ff:9c:4a:82:0c:d2:90:
77:d7:be:11:10:a4:44:50:ad:3b:c6:d2:88:d3:70:
9a:be:71:cf:7f:e1:56:6c:6b:31:15:a3:28:33:bf:
df:cb:25:b1:2e:8b:2c:f3:93:fc:7e:0d:e0:73:aa:
de:a1:7a:98:e3:46:d9:27:76:d3:ad:f8:ab:4d:2d:
9f:78:9b:05:88:dd:dd:f3:3a:d0:12:a8:b0:26:55:
0f:85:26:dd:73:bf:82:a5:47:e9:ef:04:4f:ad:fc:
74:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8E:D1:C5:3E:E9:0D:3C:AC:84:A6:47:0C:4B:75:94:C5:57:5D:85
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/n47RxT7pDTyshKZHDEt1lMVXXYU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140869
sbgp-ipAddrBlock: critical
IPv4:
103.42.6.0/23
103.141.0.0/23
Signature Algorithm: sha256WithRSAEncryption
63:96:40:2d:8a:5d:1e:65:96:60:ec:88:a7:2a:0b:5c:8c:ac:
7e:6a:92:29:5f:3a:4e:c2:4f:fb:54:2d:4f:00:db:92:c3:6d:
e7:17:d1:b7:e9:19:7d:12:0e:4d:b6:95:2f:7e:3b:0c:44:23:
6a:b7:b2:11:aa:c9:83:02:84:28:97:06:af:37:4a:55:c7:b7:
3b:36:25:28:d7:28:57:0f:e5:e4:58:0b:cc:dd:a5:da:3f:5d:
e9:7c:20:74:e4:1e:a5:3a:dd:45:b3:2b:4c:a1:1e:94:a7:bf:
1a:f5:e7:25:67:96:cd:83:7b:93:37:13:c8:03:31:b5:6b:46:
66:7b:2d:f0:7a:14:f3:9f:94:60:00:23:64:51:7d:19:e6:86:
7f:d1:f4:76:80:e8:bf:b9:e6:f5:1c:09:3d:76:b0:f5:dd:30:
0d:c2:5a:4d:8b:99:47:7a:2a:41:b2:05:db:4b:68:bb:c1:0c:
03:39:78:c7:cf:af:ad:f9:86:4d:45:e6:70:26:c0:ca:b7:bd:
8b:a3:6a:e4:fd:7d:e2:69:72:9c:68:ad:fd:99:4e:ca:4c:11:
e8:b3:31:b8:04:07:6a:d8:fb:4b:44:b9:f5:a4:ab:63:31:d5:
96:b5:7b:be:5d:00:f5:18:37:21:a5:d3:bb:e8:a7:4a:75:4e:
e6:20:ea:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:59:05 2024 by rpki-client on console-fra.rpki-client.org