Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxVOxxr_DOw2jHltJXw6nAWJo_8.cer
File: oxVOxxr_DOw2jHltJXw6nAWJo_8.cer (raw, json)
Hash identifier: FGuVGWXCL33O2pKAnUngv40UZn0+9zWMnMQgRsij8jg=
Subject key identifier: A3:15:4E:C7:1A:FF:0C:EC:36:8C:79:6D:25:7C:3A:9C:05:89:A3:FF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020B1E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914A2C1/7FFDFB64C09E11EEAD3B8554C4F9AE02/oxVOxxr_DOw2jHltJXw6nAWJo_8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914A2C1/7FFDFB64C09E11EEAD3B8554C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Sep 2024 17:22:47 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 151678
IP: 103.23.94.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133918 (0x20b1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 2 17:22:47 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A914A2C1/serialNumber=A3154EC71AFF0CEC368C796D257C3A9C0589A3FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0d:62:b1:5f:f2:96:13:44:bf:55:a4:a6:34:
e5:44:10:9d:01:5f:87:be:25:d2:37:a5:72:2c:5e:
ca:11:1c:10:4c:cd:a5:64:d1:fc:11:cc:9a:7c:8f:
d2:6f:0c:5e:fd:74:30:90:1c:53:74:b3:23:0d:dd:
42:32:48:e0:14:10:ab:32:4a:d1:25:e9:7f:42:fa:
97:c4:27:bf:8e:6e:11:0b:66:08:14:25:33:ad:39:
c1:25:1c:54:b0:50:70:5a:e9:b9:57:a1:d9:14:cb:
1b:01:9d:e0:63:55:92:bf:d9:88:d6:92:ff:e0:95:
85:3d:61:c3:f5:e1:d7:fe:9c:12:60:d5:e3:fb:61:
f9:d7:2f:6e:77:72:f1:d7:ec:13:b1:14:54:3b:c0:
b3:cc:3d:09:c0:6d:8d:d7:e9:95:c1:f8:69:97:9a:
b7:82:46:ca:75:b6:43:4d:7f:d4:6b:72:44:e6:55:
6e:18:f1:88:a7:7d:f2:58:a0:35:8d:6d:20:0b:51:
fc:00:62:18:37:b0:b0:59:91:18:e8:de:06:6f:c3:
91:9d:e3:9d:47:80:cc:c2:ae:e7:a2:03:ea:6c:c4:
68:ae:56:84:79:34:76:cb:b7:d3:88:8f:86:3f:aa:
df:6a:2b:fd:40:7f:f2:60:49:ef:fb:cc:10:cf:da:
7f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:15:4E:C7:1A:FF:0C:EC:36:8C:79:6D:25:7C:3A:9C:05:89:A3:FF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914A2C1/7FFDFB64C09E11EEAD3B8554C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914A2C1/7FFDFB64C09E11EEAD3B8554C4F9AE02/oxVOxxr_DOw2jHltJXw6nAWJo_8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151678
sbgp-ipAddrBlock: critical
IPv4:
103.23.94.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:4e:d7:cd:8a:fc:17:87:38:45:e5:14:73:1a:76:10:60:5f:
22:79:72:7f:ea:d5:ff:e6:b9:9b:49:2e:67:a0:f6:67:08:ef:
19:d0:bc:d9:3f:ae:e3:26:51:d4:9b:d3:d2:d6:eb:5f:82:d4:
a7:58:2a:58:b3:d5:c1:a0:bf:bb:a2:a2:b2:b7:df:8c:22:ae:
62:7d:f4:7b:95:ea:dd:7f:43:3a:f5:8a:37:12:5c:4e:6c:15:
bb:44:2e:fd:82:8f:1e:63:94:12:9e:fe:74:7a:cc:c7:bc:f7:
9f:c3:d2:b1:04:76:cf:a3:73:e9:97:90:c8:01:d1:e1:6a:aa:
4e:fb:7b:d3:cd:ec:14:8d:52:af:bf:bb:b6:d1:d6:1e:53:8f:
6a:e3:a5:fa:e1:8c:54:12:0c:9f:aa:08:8e:bb:09:ee:86:47:
52:61:8b:c0:98:aa:72:42:32:e7:15:0b:d1:29:91:50:d5:a8:
b8:ec:cd:7f:68:98:4b:1a:d2:c4:a1:63:48:98:aa:29:bd:f6:
42:ff:ad:00:2d:94:66:fe:f5:c4:86:e9:3e:e5:40:43:05:9d:
0b:db:98:a2:63:28:4e:41:03:10:5f:f3:57:cf:76:37:07:64:
0a:de:4a:f1:9b:83:2f:db:a3:92:f0:9b:a4:6c:8d:bc:91:15:
af:f7:e4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:04 2024 by rpki-client on console-ams.rpki-client.org