Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer
File: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer (raw, json)
Hash identifier: 3/7sz8qLgFuY6o09wWpf8fxFvw9c+vxFxZZXtbRQjKw=
Subject key identifier: AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D10B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 Dec 2023 04:39:44 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 133876
IP: 103.44.148.0/24
IP: 203.16.200.0/22
IP: 2400:bf20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119051 (0x1d10b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 11 04:39:44 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fb:f4:e0:1f:de:fb:ce:7d:3f:d9:42:9e:60:
e8:1a:f6:c6:82:03:31:7f:5f:06:76:79:d0:9a:b4:
25:26:9a:6f:5a:89:dc:1e:f2:f4:5e:33:36:78:a7:
3f:28:ce:ae:6e:cf:58:5f:a7:5a:31:61:45:20:f4:
97:88:d7:39:ab:37:cc:1e:84:95:f5:62:57:57:ea:
e4:7b:3b:d2:98:41:45:db:b7:a6:9b:0d:0e:da:61:
ff:0b:6d:ad:df:1f:82:b4:1b:a7:fd:39:14:5d:4a:
cc:f8:52:57:a6:8a:90:4c:53:93:b7:6f:a5:89:66:
54:cc:4e:e8:c8:a5:44:27:f7:3f:15:a6:0b:e8:96:
60:24:63:41:02:4c:d4:50:13:60:9b:43:c2:6d:5c:
63:19:4e:8e:a2:b2:f8:21:b6:6b:21:d9:3c:2b:72:
fc:7f:ca:77:b1:b7:32:6d:c7:aa:d0:1b:aa:2a:18:
da:45:9f:4e:8d:ae:d4:6a:b7:10:5b:d6:70:13:5b:
c9:77:20:cd:88:9e:90:f4:2f:4c:93:28:de:73:b8:
c5:c4:9e:3e:f1:5e:f4:65:91:27:e0:7a:0b:25:46:
6f:95:9d:5f:62:c8:e6:b5:a4:ab:d1:c2:b0:43:f4:
4c:84:69:3a:c2:4f:1c:38:68:d7:7f:00:4b:1d:86:
d0:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133876
sbgp-ipAddrBlock: critical
IPv4:
103.44.148.0/24
203.16.200.0/22
IPv6:
2400:bf20::/32
Signature Algorithm: sha256WithRSAEncryption
5d:42:a5:68:91:94:b1:a8:00:96:fa:79:c9:37:62:89:8a:0c:
74:1e:0c:66:b0:db:d4:ef:46:ca:08:f9:50:5d:c0:72:51:cf:
d7:87:d0:0b:98:a9:df:8c:7f:2e:66:6b:2c:88:5d:b4:7a:25:
40:51:bb:a5:80:b9:7b:40:3b:16:2d:20:b2:b3:1d:d9:f6:a8:
2b:fe:1e:4b:cc:0a:cd:23:7c:16:d0:88:86:ff:a3:c8:ab:a0:
47:ee:08:66:00:30:66:a2:2a:76:37:c2:b1:71:b9:39:1d:fb:
39:a8:c4:f3:3c:53:3e:fb:a9:03:c2:40:30:41:84:c0:7e:c2:
85:f4:c8:9a:e6:4b:2a:da:b9:cc:e9:bd:aa:d8:57:96:79:7d:
35:f9:d2:60:0a:18:1c:d8:32:1a:53:13:aa:3f:c6:6f:3a:13:
3d:89:50:35:4a:f6:6b:67:61:13:34:ac:18:11:74:ce:73:be:
b6:59:e0:4b:58:97:87:27:97:66:68:93:aa:68:d1:cc:f4:c2:
4f:31:57:d3:5c:68:2c:92:4c:ec:1b:20:87:c4:39:6f:25:7e:
2e:e4:4b:04:35:6f:3d:88:12:5d:7d:a1:b7:a1:5c:12:8a:ff:
92:ad:2f:00:7c:74:0b:f9:d2:39:35:1e:19:5c:ea:b4:16:97:
97:b0:9b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:06 2024 by rpki-client on console-ams.rpki-client.org