Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer
File: pTalTbQeRB3nTDP29zbFrXpmhcY.cer (raw, json)
Hash identifier: aE8RRvmTYJOrc1j+HI9PAkPpcPYYj9JO2b7pa2AsNFw=
Subject key identifier: A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020CF2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Sep 2024 03:03:37 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 9653
AS: 151415
IP: 103.228.124.0/24
IP: 202.3.64.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134386 (0x20cf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 11 03:03:37 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91DC75C/serialNumber=A536A54DB41E441DE74C33F6F736C5AD7A6685C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cc:a0:12:4a:28:31:45:ee:02:db:24:8e:bc:
0a:5a:e2:30:42:34:01:11:f5:53:70:87:06:02:94:
14:f1:b9:5f:78:22:03:5c:84:17:04:21:1a:da:51:
28:9b:6c:a5:eb:90:7e:f9:8a:a4:fd:02:b3:23:13:
b1:30:d0:39:ad:db:b1:a9:6d:e8:f6:19:b6:2a:b2:
1e:fb:7c:cf:68:58:7d:eb:0d:89:d8:19:b9:06:54:
72:de:a1:ab:f7:11:60:c0:2c:95:71:d3:dc:0e:81:
cc:9f:ae:1f:d3:f4:b7:19:22:cb:52:93:be:14:c4:
3d:dd:d5:47:5e:63:eb:b3:8b:80:1c:df:5c:41:5f:
1b:28:f9:8e:80:3f:fa:63:34:d8:04:17:be:e4:f0:
fa:e0:97:f3:73:db:91:83:13:e2:a6:22:3f:0b:23:
c6:1f:8c:ef:06:e9:f3:5a:e5:5e:27:c5:92:06:b7:
bd:16:73:73:6d:76:91:f8:81:31:8f:1e:84:dc:4d:
85:e6:77:10:2c:77:b6:2f:13:9f:d3:57:60:6d:ac:
b4:32:f1:30:8f:48:5a:04:03:50:09:e7:d2:d3:d5:
8d:b4:5d:c3:46:3a:76:3a:8c:7e:d2:8e:35:36:6a:
ff:71:32:21:48:7f:d7:fc:e2:a8:68:5d:70:f4:49:
97:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9653
151415
sbgp-ipAddrBlock: critical
IPv4:
103.228.124.0/24
202.3.64.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:16:52:8a:75:71:a9:fe:58:35:6d:13:c9:c1:20:32:6a:11:
fc:6e:05:fc:d6:2d:73:cd:29:99:91:af:53:2a:75:89:ba:8a:
c3:5a:76:eb:ca:52:bb:16:de:50:ba:a0:8c:d4:40:63:d0:e9:
c6:97:e9:56:24:6d:fa:3e:e4:e5:be:40:ba:24:27:f3:15:3c:
c5:be:7e:51:14:25:3c:77:24:f3:ba:6b:7e:36:74:e6:5b:ab:
6b:3b:c1:9f:7f:c4:88:68:75:ea:be:0e:0c:01:49:4c:5b:b4:
db:e7:e5:13:87:c2:f9:09:49:f0:bc:0a:4c:c5:ba:00:97:4e:
75:14:e8:7a:af:8a:7e:a7:59:b3:5b:a8:d9:a4:0e:9c:44:63:
1c:b7:0e:7c:db:73:72:17:65:46:f8:6d:1b:cf:35:5e:bd:cc:
62:33:25:62:ea:bc:37:80:53:4f:69:86:27:0f:ef:c6:74:25:
6b:e6:01:c7:61:ca:17:ba:8e:09:03:96:f8:b6:d0:7b:7b:cc:
2c:62:e9:6d:36:2c:28:7a:63:63:c5:dc:e9:52:23:f6:7a:69:
fd:7f:28:8e:75:ff:dd:19:44:f0:06:0c:44:b6:81:c1:1b:1b:
87:fc:ca:65:40:89:b1:2f:69:15:ad:a4:f1:6d:3f:92:1d:5c:
05:0c:00:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:49 2024 by rpki-client on console-fra.rpki-client.org