Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLLFTvC2TcIQCkhqe49ZMkute0k.cer
File: rLLFTvC2TcIQCkhqe49ZMkute0k.cer (raw, json)
Hash identifier: 9dA13qF26LMs/Ut21pFBeeVSAnkyujdIfG+Lgx2SF+o=
Subject key identifier: AC:B2:C5:4E:F0:B6:4D:C2:10:0A:48:6A:7B:8F:59:32:4B:AD:7B:49
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FEBB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/rLLFTvC2TcIQCkhqe49ZMkute0k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 08 Jul 2024 01:22:11 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 142132
IP: 103.166.174.0/23
IP: 2401:b0e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130747 (0x1febb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 8 01:22:11 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9185673/serialNumber=ACB2C54EF0B64DC2100A486A7B8F59324BAD7B49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:97:f0:a5:fa:6a:3d:ef:ff:4c:18:76:d6:2d:
73:c4:2a:db:7d:95:d5:f1:e3:36:e4:6b:8b:9f:27:
65:b4:2f:99:8b:53:fd:c9:ad:e8:19:b2:84:75:f6:
16:84:01:51:ef:ff:2d:bc:6c:15:8b:bb:ff:de:29:
28:f1:ba:e0:2e:9d:2e:74:8b:4a:32:53:eb:51:89:
09:0b:b4:96:3e:e2:23:74:91:3e:e8:75:8c:7b:3d:
e8:c0:5a:81:1f:9e:5c:4e:3d:bf:ca:5d:76:b9:2f:
e5:0d:ad:6b:71:de:1d:51:0e:03:b6:fb:d1:d1:cb:
92:5a:68:e5:7d:a4:62:0b:e8:6b:dd:c1:fc:79:44:
5c:d5:95:c4:3b:e5:ad:cb:34:2d:07:8e:a6:54:76:
fd:a5:7e:95:1c:79:af:89:e6:94:ac:70:d2:2c:57:
ed:c7:71:69:19:ab:42:0e:03:2e:e4:42:ae:ca:2f:
92:5c:0b:f9:d2:52:7f:11:83:e2:01:e3:63:22:a7:
27:d0:70:c4:e4:59:97:5a:ab:a9:a9:9a:05:11:18:
36:c3:80:42:78:c5:69:27:05:07:2b:ce:d3:d8:c2:
34:23:97:c1:e4:71:fe:76:c5:56:84:89:e1:82:20:
40:af:79:a0:7a:d6:12:14:7c:b1:a4:f4:46:2c:11:
a1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:B2:C5:4E:F0:B6:4D:C2:10:0A:48:6A:7B:8F:59:32:4B:AD:7B:49
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/rLLFTvC2TcIQCkhqe49ZMkute0k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142132
sbgp-ipAddrBlock: critical
IPv4:
103.166.174.0/23
IPv6:
2401:b0e0::/32
Signature Algorithm: sha256WithRSAEncryption
65:65:71:db:16:03:02:1a:e3:63:9c:76:c1:70:bf:85:1a:1d:
33:04:4f:13:10:2b:6b:e0:cd:e4:e4:3c:d7:29:8f:ea:3b:72:
25:5f:62:18:f0:6b:46:5f:57:24:ac:99:fe:2f:87:c9:e4:f0:
ff:3b:ac:c4:d2:55:42:6d:e8:5c:d6:8a:b8:dd:98:c1:c1:5d:
f1:af:a6:13:d1:8e:f6:69:f2:90:d2:e9:a6:64:de:b9:50:14:
43:2f:4e:58:69:9f:07:e5:d7:43:c7:c2:53:7f:56:4e:11:e3:
d7:0a:ba:3f:44:9e:de:74:63:33:2f:ea:6d:8f:01:1e:e1:4b:
17:43:38:71:61:01:87:ee:31:71:88:94:1d:1e:13:13:f5:39:
29:d0:0e:5b:09:0e:b5:f2:30:c9:35:cd:72:16:bb:c0:9b:42:
cc:de:af:33:d8:56:7a:75:1a:12:d0:a6:1b:4a:6e:da:c7:a5:
91:77:1b:4e:60:e9:5f:ac:29:a6:c1:92:5f:fb:57:f3:09:91:
ff:0c:3c:00:26:50:2e:5c:1e:0e:a8:a5:bc:bc:b5:d8:85:a0:
53:ca:17:f4:1f:62:4c:05:5f:11:46:c2:f7:3f:4c:61:be:28:
30:9b:9c:ed:a1:3a:2a:37:26:8d:b4:47:d5:97:1a:3c:3f:fd:
99:d5:d3:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:59:08 2024 by rpki-client on console-fra.rpki-client.org