Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer
File: t3KDxTMROjkeMdlFJxhqz4OZol8.cer (raw, json)
Hash identifier: NGMjJznxMcbrNyufqgagkxvqNwKm816RkubamEQXB3E=
Subject key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0207BE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 19 Aug 2024 20:42:32 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 134601
IP: 103.120.220.0/22
IP: 2404:ef40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133054 (0x207be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 19 20:42:32 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:83:50:c2:4b:e6:02:91:38:00:4b:92:db:a3:
91:ee:05:dd:05:b8:60:5b:d2:9c:25:df:c2:33:96:
17:8d:9c:ca:ac:3a:9a:a3:bb:21:77:fa:c1:e1:c8:
ec:12:80:1c:a5:a2:a5:53:e1:18:4b:93:f5:c6:57:
86:7c:8b:c1:9d:e4:a8:eb:41:a9:a3:98:2d:3b:3f:
78:5c:fc:b9:2c:fc:81:da:40:ce:9b:4b:24:27:1d:
ae:32:0f:eb:28:78:4f:f6:17:04:59:ca:8f:a1:02:
81:46:41:ea:1b:35:3e:38:da:1e:f8:78:a5:ba:ce:
47:1e:e4:d6:66:10:ab:1e:1e:fc:e4:1e:d9:f6:4f:
e7:27:4e:0a:66:0c:bf:b2:d3:28:bc:e5:c9:7c:ff:
a6:73:23:9e:f7:ea:25:31:95:36:88:4e:26:4a:b2:
21:0d:64:c5:0a:0b:e5:09:b3:22:13:7b:0a:51:9f:
86:90:fa:ff:f2:c0:68:c0:fa:33:1b:8e:97:24:ff:
bd:e6:40:e3:5f:11:8e:51:a8:80:04:22:b8:5e:f1:
08:07:cf:9d:7f:59:b6:6e:b6:96:82:b0:59:31:0d:
2b:9f:bb:d3:41:c6:44:be:58:bc:bc:bd:b6:65:b6:
2a:18:26:f0:c6:59:fc:6a:c2:57:36:b5:16:9d:fe:
6b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134601
sbgp-ipAddrBlock: critical
IPv4:
103.120.220.0/22
IPv6:
2404:ef40::/32
Signature Algorithm: sha256WithRSAEncryption
4c:dd:40:00:f3:81:ca:33:7c:56:71:7d:9d:76:f2:d0:2f:15:
77:d2:28:5b:1a:46:92:61:fa:93:13:44:76:4a:5b:bf:8a:e6:
99:69:31:61:e4:5f:73:24:7a:0d:1a:04:1a:fe:e6:f7:1b:4d:
ad:fb:67:2b:7f:d7:cd:ab:a9:1e:25:9e:4b:48:1e:e9:8f:64:
fb:5a:10:1c:9d:29:70:0c:6a:4b:55:81:43:ca:2c:79:a4:3a:
db:db:6e:b2:d9:df:a5:1b:62:77:5b:41:1f:4d:7a:18:04:f3:
78:fa:ad:31:3c:d4:66:11:06:a4:8e:75:75:4a:0a:a5:8e:9a:
be:38:83:49:bf:4a:db:da:fa:3f:dc:62:b7:9c:39:db:4a:06:
4a:53:24:8b:7d:f2:9f:50:75:88:73:e8:8d:93:e8:5d:e2:22:
95:2e:b5:39:19:0e:55:c7:52:99:3b:52:8b:f4:f2:b0:3d:2a:
d2:e9:c0:49:72:47:ed:49:f5:65:93:1e:68:41:b6:7b:ee:dc:
cd:84:bd:d8:30:58:f3:54:79:55:56:c1:4b:5a:3f:74:ff:5c:
e8:7c:59:fd:43:69:e9:bd:57:18:cc:d7:e6:97:6d:a1:ba:0d:
f6:23:59:05:78:d5:b9:03:97:95:c4:6d:84:e0:f4:5d:6a:c7:
3c:5e:a3:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:52 2024 by rpki-client on console-ams.rpki-client.org