Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer
File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer (raw, json)
Hash identifier: vk9CtlNvY0I8I4iAyjRjqnDjam7ec65YPLA4HBckZP4=
Subject key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020D4D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 12 Sep 2024 20:40:32 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 132438
IP: 103.73.44.0/23
IP: 2406:ec80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134477 (0x20d4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 12 20:40:32 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a7:bc:bf:24:ff:95:a0:7d:86:15:28:ca:c7:
0a:ef:ff:be:84:9c:15:71:06:4a:5c:c0:0a:8e:e5:
15:8d:eb:47:6a:d1:aa:11:d7:a1:8a:00:c4:e9:74:
c3:6f:7c:aa:54:c9:59:b4:bf:39:1a:6d:46:5b:06:
7f:1d:44:36:f6:51:0f:bb:42:27:ba:90:8f:91:11:
20:e6:02:85:b7:2e:f3:d2:e9:3e:14:4b:75:0a:66:
26:3c:9f:43:63:08:f6:95:1d:cf:33:08:24:67:c7:
d7:b2:cc:f2:10:2a:0f:90:2a:b7:19:88:bf:2e:a2:
07:32:17:e5:6e:b3:66:2e:42:04:10:c9:a9:67:a9:
12:e6:fb:92:35:21:a2:a6:32:a1:b4:fd:7d:7c:04:
43:15:62:da:93:e9:33:fe:06:45:54:dd:61:ab:c5:
a8:cd:46:8a:1f:43:7f:3a:f4:ca:cd:68:62:e9:c5:
1d:86:ba:bc:c3:06:a5:c7:9a:7c:96:33:e0:e9:b1:
2a:19:e5:80:f8:b4:11:1b:cb:9b:96:54:59:c1:01:
fb:cb:26:62:0d:e3:3f:a2:b9:46:53:6b:ba:8f:3b:
ba:22:33:09:01:5e:4a:67:a6:1e:a3:6e:c0:3c:87:
97:08:cc:fe:d3:50:5e:97:cb:25:78:c4:83:b6:fb:
1a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132438
sbgp-ipAddrBlock: critical
IPv4:
103.73.44.0/23
IPv6:
2406:ec80::/32
Signature Algorithm: sha256WithRSAEncryption
82:58:34:c5:1d:fb:f6:dc:18:63:30:d8:50:25:ae:7e:c7:2a:
2c:3a:fe:2b:82:8e:3c:a3:8d:aa:ba:20:3d:74:79:9d:64:65:
8a:09:21:a3:f2:ab:c1:f1:9c:94:ee:ca:c5:6f:2f:66:36:3c:
b1:1b:2a:ea:6f:c2:33:64:7c:f2:63:a2:45:e5:1c:28:61:97:
90:38:7a:a5:ae:0e:a9:20:fa:6e:82:ca:ab:ad:ba:2b:59:9c:
1a:27:59:14:ff:ad:6d:a9:85:5c:a2:a6:b9:58:03:69:fa:bf:
a0:76:67:f3:ad:b1:74:5f:e8:d1:b3:3c:61:0e:7c:df:b0:9f:
ed:ad:44:40:48:c4:16:57:15:1d:13:61:01:10:91:5c:a4:34:
4c:4f:c1:f2:9b:42:3c:ee:73:48:ae:b6:c5:5b:3c:6d:d0:64:
75:08:69:35:07:39:6a:be:7e:d1:20:5b:4b:2a:74:6c:cd:e4:
1f:56:d8:4e:75:32:3b:76:35:dc:71:0e:72:03:76:bd:84:a8:
cd:57:0b:52:e3:f2:7c:f5:b9:86:3e:ec:68:13:06:31:af:6d:
39:16:d5:6b:78:e1:72:70:f6:c3:51:04:0f:a0:05:c9:e7:c7:
8d:33:25:7c:32:b6:50:b9:06:6e:a8:a1:b4:2e:9b:47:5a:3d:
13:9c:b3:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:22:10 2024 by rpki-client on console-fra.rpki-client.org