Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer
File: sRd7K0wt-LMG0UpkMAcob4nWnMA.cer (raw, json)
Hash identifier: iaqkwsW/fiw5gvAjIE1KxkI541kYjaowfczuFmRKQ2k=
Subject key identifier: B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021C50
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 19 Nov 2024 15:15:41 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 139716
IP: 103.143.254.0/23
IP: 2001:df7:b080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138320 (0x21c50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 19 15:15:41 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A915DA5A/serialNumber=B1177B2B4C2DF8B306D14A643007286F89D69CC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:71:07:9f:40:2b:bf:21:3c:47:e1:ab:e2:c6:
f9:8f:d0:1d:d8:2c:e8:c2:77:21:75:bb:c2:68:f3:
45:3f:43:9d:ed:87:ef:aa:60:12:89:4a:73:a3:a7:
bc:ec:f3:78:1b:b1:51:57:f6:70:df:67:88:ed:64:
af:57:62:fb:67:cd:1e:66:14:54:c7:c3:26:29:66:
26:01:cd:1f:37:89:dd:cb:91:e6:3b:9a:35:58:4c:
b2:03:5e:f7:6a:67:6b:12:35:24:b3:d1:a2:2e:ea:
b7:94:fa:6f:da:17:81:19:3d:31:ad:7a:66:7c:7e:
f4:34:37:98:b4:be:45:e9:c5:bb:04:f3:9d:36:3f:
18:e3:8c:cb:db:59:ea:84:34:45:5b:c9:9e:8c:df:
46:3e:06:19:2f:37:e6:96:14:1a:fe:f7:70:1f:ca:
c0:4f:44:5f:0b:3f:e7:15:95:43:95:bf:6a:f5:d7:
26:ab:17:48:6c:f3:95:f5:7f:60:23:f4:4d:30:b8:
df:f6:f9:2b:bd:72:6f:9c:3e:68:85:ec:da:21:47:
97:c4:e3:da:13:5c:b7:e0:6d:4f:81:9a:9c:1e:9c:
a6:b3:1c:f0:a0:90:71:3b:fc:aa:44:b0:8a:00:27:
8c:ad:e1:3b:c9:0a:28:b0:85:b2:55:3e:d2:b4:e5:
fe:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139716
sbgp-ipAddrBlock: critical
IPv4:
103.143.254.0/23
IPv6:
2001:df7:b080::/48
Signature Algorithm: sha256WithRSAEncryption
34:43:53:84:f7:67:c1:45:af:1a:8f:8b:3c:92:f5:fa:a2:79:
0a:ea:5a:fd:a5:59:b8:d6:a0:44:26:fb:72:c3:1a:c6:11:93:
2c:6f:1f:38:b3:21:51:c2:df:54:aa:92:95:55:32:d4:8c:8b:
db:fd:d5:6e:a8:5a:4f:ca:e7:e2:ea:d7:e5:ff:fe:b3:f1:3f:
59:b1:3e:30:58:17:e8:b6:29:60:da:a3:a6:a8:35:b0:4e:51:
f2:22:ff:c3:b0:9c:b3:b6:f1:60:3b:99:28:62:d7:5e:42:cc:
ac:7d:ca:74:ef:98:a8:28:08:27:02:dd:87:9c:41:55:b2:b5:
97:31:cb:fa:8c:d0:fd:c7:8f:0e:68:05:02:ed:a6:47:29:0e:
3d:32:37:46:34:44:93:5f:8d:36:87:9d:5a:49:56:77:34:92:
92:2b:54:74:83:96:02:c9:14:c1:fe:c7:ef:49:e1:04:19:af:
f1:70:90:d7:2d:70:24:da:ae:2c:55:b7:e8:c0:c7:60:b7:42:
03:0b:70:9f:66:59:65:94:a8:8e:14:31:dd:da:3e:48:86:d8:
83:3e:76:53:ba:a9:6f:be:0e:25:66:97:c9:2c:a1:8e:96:2c:
b5:69:16:e1:69:73:02:ee:62:8a:c0:1a:33:f9:ea:1d:eb:86:
d4:a6:52:16
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:52 2024 by rpki-client on console-fra.rpki-client.org