Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer
File: u5dqWY5eywXjf6wApbeIjlf1HFI.cer (raw, json)
Hash identifier: 7or7UDEJv2hKtCfQWNVoYuaiTCUeJJwfTh9ABKgyHHc=
Subject key identifier: BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BF17
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Sep 2023 14:33:24 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 136948
IP: 103.99.248.0/22
IP: 2401:b640::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 16:32:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114455 (0x1bf17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 22 14:33:24 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91590E3/serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2d:ae:99:60:b6:75:71:01:61:58:94:24:6e:
9d:d0:b9:2c:fc:e8:ec:f2:e3:60:a1:d3:21:3a:aa:
43:27:e2:d9:67:52:6b:48:4e:7e:8d:4b:4b:51:6f:
e5:72:3a:e6:54:86:f6:67:85:2d:c1:25:64:45:c7:
f5:2f:bf:03:97:62:40:bb:04:e6:e9:fa:04:a6:f0:
d9:c8:26:a8:60:14:ac:b6:ac:50:7b:f6:e2:4f:5a:
64:71:1a:97:d2:fa:ee:73:da:bd:10:26:7f:71:79:
f3:6b:fc:95:c5:d4:d0:3b:a8:f7:64:79:77:26:54:
ca:96:ff:21:5c:04:9d:2d:b3:36:6c:d3:a7:a2:1f:
a4:83:2c:62:7a:e4:05:7d:00:f0:03:89:60:05:e3:
93:86:26:42:e6:fb:f3:3f:cd:d6:6d:32:81:f3:4e:
33:0e:4c:57:52:64:26:1f:d5:4a:3b:75:cd:34:22:
80:c4:6f:5b:37:3b:4f:12:b5:15:92:10:17:6d:dd:
ea:84:51:bc:39:92:f6:12:b8:01:92:f0:e4:0c:c1:
f7:e3:ad:69:5d:41:82:c8:a0:50:f5:a9:52:85:59:
e4:57:57:7f:8b:24:8e:b3:fd:47:26:e0:03:47:f6:
f8:7c:7e:75:12:ce:f7:09:06:01:43:0a:1c:9f:84:
f4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136948
sbgp-ipAddrBlock: critical
IPv4:
103.99.248.0/22
IPv6:
2401:b640::/32
Signature Algorithm: sha256WithRSAEncryption
7a:1b:05:af:d4:ea:f9:0f:5a:49:35:47:9f:62:9e:f5:48:2e:
f2:ab:88:09:98:92:21:a7:ac:ce:07:aa:f7:42:60:e6:90:e9:
83:3e:65:8c:b8:ad:64:1c:a8:20:a5:b0:6f:21:a4:cd:16:f3:
ea:51:2d:8e:90:4c:65:9d:12:f3:65:80:0f:cd:32:37:7b:14:
06:20:49:3b:eb:d0:1d:cf:f1:28:52:13:14:22:fa:09:45:be:
11:2b:bd:0a:61:15:af:be:34:f5:71:cd:5d:4a:c0:a0:e0:18:
1b:4e:6b:8e:ef:83:3a:e4:19:2c:33:47:75:21:4c:2f:da:79:
85:df:63:6e:23:cf:86:63:cd:d1:44:80:9c:e4:9e:fa:e5:22:
3a:5b:cb:2d:d9:00:12:d1:3a:53:7b:74:6d:af:9f:5b:21:30:
0f:24:dc:c8:7f:a2:db:cc:07:6b:21:ae:00:f9:8a:ae:09:64:
7b:69:92:15:a2:e3:b3:13:a9:15:ac:d2:6a:5a:24:cb:2a:ef:
2a:47:f1:e3:b6:e3:bd:ca:e9:cc:2d:33:d4:f2:dc:a0:9b:18:
89:87:36:21:a1:d4:01:25:5c:a6:7e:8e:44:31:5d:26:80:6d:
88:73:67:22:dd:63:c7:23:d3:72:77:18:1f:c0:da:cc:eb:75:
0f:57:27:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 17:12:34 2024 by rpki-client on console-fra.rpki-client.org