Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer
File: uHLzTVUlH6dw7MOT0mcSED1VBzc.cer (raw, json)
Hash identifier: IcXND8xEBenwF00bjAvoGcgn+uZ2gbdgd4uUWPv+7g4=
Subject key identifier: B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0218D7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 03 Nov 2024 15:07:27 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 133544
IP: 103.176.206.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137431 (0x218d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 3 15:07:27 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A917C606/serialNumber=B872F34D55251FA770ECC393D26712103D550737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:20:be:89:99:ac:ae:b5:a4:06:0a:5f:d4:0a:
07:bc:ea:41:ee:0b:8f:ed:a4:9f:22:10:b8:44:44:
c9:57:55:e9:9e:a8:ac:b5:f2:03:c7:ab:7e:ac:f4:
b5:71:be:25:c4:cb:c5:15:ad:7f:5a:1d:cd:93:aa:
2d:b6:17:29:c2:78:3f:e0:60:aa:fc:db:9e:70:81:
1b:8a:5b:f5:a5:29:af:67:d6:0a:72:c7:ca:79:a3:
4e:1b:2c:db:b6:47:51:c7:7d:df:2d:7d:84:e5:04:
1c:e9:0f:66:ed:16:4c:a2:b1:d0:5f:0c:6f:01:71:
37:9e:d6:e5:76:14:5c:05:7d:4a:3c:1a:dc:b8:16:
53:65:e4:c4:51:84:86:4e:7b:8f:9e:a2:c7:0f:a7:
66:53:50:2d:85:26:be:1a:2f:c1:a3:de:c1:53:e8:
19:75:23:28:c6:91:00:63:7b:42:17:f5:7a:38:e6:
a5:21:27:1d:fb:16:12:bd:e9:ee:25:bf:8b:d7:5b:
91:30:41:a0:31:21:35:45:b2:36:86:db:5f:f0:ed:
ae:5d:de:93:33:6c:08:59:7c:cf:bd:d9:fb:1d:a9:
cb:b1:72:68:02:42:ba:d5:78:ac:4d:6f:15:26:d1:
8d:08:97:f3:de:bb:6c:28:85:e4:69:d0:9f:3b:2c:
39:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133544
sbgp-ipAddrBlock: critical
IPv4:
103.176.206.0/23
Signature Algorithm: sha256WithRSAEncryption
96:81:ab:c8:d7:75:a2:ed:76:2a:52:1a:18:d5:de:fb:fb:9d:
5a:59:d5:a5:ee:56:37:72:ee:53:8a:5b:3b:28:85:33:8c:a1:
b8:d5:fa:76:e6:ea:e2:2b:8f:ab:a4:df:31:c8:60:51:8d:9c:
f1:e6:2f:6e:a2:4a:e3:d7:ad:e4:94:e9:b6:7f:8e:2a:0e:06:
b4:d9:b8:73:c6:75:eb:b1:4b:37:78:df:93:12:9b:77:c7:2c:
4d:18:34:8d:85:33:a2:3a:6d:cf:57:51:94:01:2a:5f:cb:63:
2d:65:f0:f7:e6:7e:07:71:2b:fb:20:0c:22:df:50:bc:f8:53:
9d:f5:20:66:f7:37:29:5c:c2:42:12:b8:7f:3a:b1:23:69:87:
77:c4:8a:c4:73:3d:e1:84:e9:14:11:34:b0:95:34:a0:fa:08:
61:8b:d2:35:8a:98:38:a3:a8:98:23:b4:5e:fd:72:94:28:38:
3a:0c:b0:d3:24:49:13:3e:5d:5d:47:f6:88:3f:f7:74:9f:94:
55:7c:d6:a5:82:80:c8:39:01:9d:0c:70:ef:3e:59:40:0e:89:
17:da:7b:6e:cc:95:72:8c:8a:59:b5:3d:95:c4:5f:9f:c6:d6:
25:e0:2b:26:b2:39:c1:1b:17:75:db:0c:95:a6:8d:fd:c2:0f:
41:c0:a5:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:09 2024 by rpki-client on console-ams.rpki-client.org