Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer
File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer (raw, json)
Hash identifier: rw5jLVLf5sGmi34U1Kb7jLOJ8Vy7+VrSntIcnDTQbuY=
Subject key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020EDF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 23 Sep 2024 04:34:36 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 151671
IP: 103.255.96.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134879 (0x20edf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 23 04:34:36 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:93:a9:8a:17:11:c8:2d:ac:34:35:99:50:67:
11:51:23:7b:e0:12:73:7e:5e:75:68:10:b2:fc:60:
73:8a:4f:16:01:7f:11:3a:33:2e:58:23:dd:8c:ae:
e8:11:93:07:73:a2:39:ba:e0:49:ef:21:5b:d9:23:
20:d7:47:65:d3:b9:1c:bd:9b:53:d6:2a:44:2a:79:
00:7a:62:83:f2:4d:6e:74:0e:2d:85:ce:dc:cb:e7:
d4:eb:13:07:e6:c6:a7:fb:40:be:ad:d7:45:af:0a:
41:5d:3c:77:be:76:dc:99:30:c7:0d:f6:f2:cf:cd:
ef:fe:7b:f9:c8:64:1d:4d:41:8b:fb:2e:96:89:42:
59:92:80:b2:9b:ab:90:76:e9:72:bf:6c:bf:27:61:
01:c5:38:a7:6d:4b:cc:b7:6d:cf:3d:1a:89:0f:f5:
03:ac:fe:ea:9d:4d:1e:3e:64:ff:98:25:f5:06:96:
42:23:cc:1a:0d:1e:46:df:b1:aa:cd:8a:61:69:4c:
98:67:f8:1d:e4:0d:93:20:05:6c:54:1b:0d:ec:98:
6b:6b:40:13:8f:c9:17:90:99:08:7a:e3:b8:f2:ea:
c9:b3:0c:f6:07:1d:af:92:a1:fd:2d:ec:1b:ed:b1:
9a:34:39:39:37:62:29:8c:11:6d:08:51:5a:62:68:
d7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151671
sbgp-ipAddrBlock: critical
IPv4:
103.255.96.0/23
Signature Algorithm: sha256WithRSAEncryption
46:e7:0e:62:19:0b:c3:b4:21:6e:81:6e:02:e3:2a:73:ee:28:
69:7f:c7:54:fb:09:9b:e7:ee:c1:44:0c:49:e3:bb:6e:8b:2a:
3f:30:0c:36:db:a9:c1:af:3a:eb:f4:e2:54:4a:c4:4b:a0:06:
33:5c:97:c3:af:33:7e:01:45:59:b0:fc:7e:e9:b5:10:84:c8:
3d:8b:7a:42:75:5a:15:ec:ca:e0:ec:35:47:4d:28:89:21:5f:
a8:0d:6b:8e:83:25:cb:c7:bd:3f:4c:af:14:94:0f:d2:44:65:
f3:a8:30:0d:6a:b9:7b:d1:72:d2:e5:27:84:2e:00:41:99:27:
f3:b8:9e:95:e8:78:82:91:ae:45:0d:5c:43:58:b7:6f:fd:d2:
7e:ad:e4:c3:ad:d0:e9:a3:d2:3e:a3:13:35:a0:cf:19:6b:8f:
54:c8:16:b2:47:22:aa:50:fc:e9:13:b4:c3:8f:8d:43:37:a8:
2a:ad:e7:13:3c:5d:40:e6:33:51:f3:b1:f9:2b:3d:cd:4d:51:
dc:f7:a4:1e:60:0c:17:e8:2e:d1:5d:b9:41:6e:44:b6:b3:7d:
8d:03:ff:0b:6b:73:a6:ea:12:3b:a4:f5:28:8c:14:79:5c:41:
91:5a:90:8b:91:ce:30:dd:4f:0d:1d:1f:c2:bf:59:3d:2d:92:
9b:e2:96:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:59:09 2024 by rpki-client on console-fra.rpki-client.org