Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer
File: o9c6Tp8QQ946v09e0Qhor20zW_Q.cer (raw, json)
Hash identifier: pS4bAlUOekI5BMCifQoT5mz7sjdmcBtZpptVxv5A0YU=
Subject key identifier: A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0217F9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Nov 2024 19:18:25 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 135334
IP: 103.172.214.0/23
IP: 2001:df7:7880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137209 (0x217f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 1 19:18:25 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A914A4A1/serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f3:7e:52:f7:a6:24:78:dd:46:52:f3:e5:af:
ca:22:74:0b:a6:41:63:dd:23:93:c3:9b:38:97:97:
0b:bc:69:96:dc:c2:f0:42:0a:2a:0c:8f:65:a6:e3:
e2:83:d2:52:13:91:1d:e7:04:2b:a0:9f:24:63:89:
d8:99:10:c3:21:b2:46:11:d7:f1:fb:ae:33:21:0d:
28:cf:78:55:0d:63:fc:b0:ca:43:40:97:38:a7:29:
1f:f1:54:3d:b2:87:01:ac:5d:37:42:5b:58:d7:9f:
82:f8:86:ef:37:95:c5:21:75:79:04:59:66:88:35:
d0:4e:77:34:6c:cd:33:d0:67:d2:00:f6:1c:e5:6b:
64:c2:1c:3d:33:b3:da:b0:35:53:5b:01:bf:7f:d3:
5f:fe:7b:5d:c9:68:62:4c:2d:79:1d:0c:56:c9:cd:
b8:09:26:f3:6b:fb:a7:2b:b4:ff:d8:93:c9:3e:d6:
e2:d5:5b:df:14:db:cc:58:8a:5e:ae:d2:70:7f:fa:
81:5b:39:44:39:d6:11:b2:9f:b0:2c:43:e3:02:76:
02:89:bc:b1:78:c6:4b:51:96:56:24:31:a4:e8:a7:
37:74:d8:84:1b:38:8a:86:6c:74:55:ad:51:20:38:
f4:85:e0:92:42:f0:41:f3:17:6c:65:8c:f2:ba:c9:
16:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135334
sbgp-ipAddrBlock: critical
IPv4:
103.172.214.0/23
IPv6:
2001:df7:7880::/48
Signature Algorithm: sha256WithRSAEncryption
4b:fd:27:42:a6:74:90:9a:c4:9d:85:60:62:f8:58:de:65:8f:
e9:fd:3a:e6:6b:1b:d2:8e:b3:21:2c:ad:2b:2b:4b:ec:04:0b:
20:85:1f:39:23:56:ad:d4:85:ae:a8:e2:71:72:7b:8c:16:94:
e0:d3:2e:b0:bf:69:65:95:d4:be:da:ca:e1:79:d1:a7:68:fe:
a3:f8:4e:d7:8f:74:05:bb:cb:64:eb:7b:e3:fc:ec:d5:6b:7d:
d3:6e:97:ca:3f:33:83:77:63:bb:80:c7:a9:b4:d8:00:82:3c:
e6:8b:73:4b:73:2c:fe:7d:d2:d9:ed:e8:ff:a1:65:8c:0f:ec:
66:4a:24:22:97:75:3c:ee:c3:e2:d5:3e:85:87:81:b0:89:b5:
3b:79:7c:fe:a5:39:43:88:78:38:fa:b8:cc:7f:62:34:d2:e7:
73:b7:69:c4:04:18:aa:fb:18:43:bd:79:48:90:fc:03:40:0e:
ba:2b:02:d9:5d:97:c5:16:9f:b0:8a:f3:14:51:05:5a:bc:a6:
f2:28:00:8b:6f:ad:d9:4d:e2:38:af:cd:98:19:67:05:fb:d9:
7c:82:46:be:0c:ac:10:0f:c9:5e:4f:98:d7:66:73:09:ad:ef:
22:54:da:58:d1:47:e5:21:9f:be:6a:24:0b:06:55:b2:c4:30:
7d:99:e5:2d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:03 2024 by rpki-client on console-ams.rpki-client.org