Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uf67oJzxCyh-7SzlZyKzyaDvEv8.cer
File: uf67oJzxCyh-7SzlZyKzyaDvEv8.cer (raw, json)
Hash identifier: 1Tv1txxiIRT+ViBkpVTltMhkUqvnCgVkW67FvzC9fN4=
Subject key identifier: B9:FE:BB:A0:9C:F1:0B:28:7E:ED:2C:E5:67:22:B3:C9:A0:EF:12:FF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D039
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/uf67oJzxCyh-7SzlZyKzyaDvEv8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Dec 2023 17:11:17 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 139919
IP: 103.147.24.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118841 (0x1d039)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 6 17:11:17 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A918BB7A/serialNumber=B9FEBBA09CF10B287EED2CE56722B3C9A0EF12FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c9:7a:c9:be:54:93:d8:79:81:4a:1b:c5:c0:
dd:49:9b:c4:14:db:bc:0c:b8:44:07:11:00:4e:58:
50:bb:e4:65:8e:9c:8d:9d:70:8f:8c:80:5e:6a:5f:
61:66:06:46:20:5d:d5:a2:4e:45:45:d9:ba:09:97:
c3:ab:5e:49:2a:ee:86:b2:85:77:f6:d8:d1:18:a9:
c3:e8:c0:46:2e:36:12:0d:1f:f8:2e:52:5b:0e:22:
af:83:ef:96:fb:ba:19:15:de:77:51:1e:e4:6c:26:
2f:8c:dd:7c:76:13:ec:57:6a:81:7f:e4:11:94:44:
0d:9d:e3:cf:7c:1f:18:7a:32:66:9b:93:c2:0d:24:
62:87:30:47:b0:28:c7:a8:f0:c7:73:5a:ec:69:79:
b0:a9:bc:8a:38:15:38:ea:8a:6f:8e:ed:ec:b0:d8:
ab:63:b3:ed:a9:11:7a:c1:19:d0:cc:b8:40:68:fb:
2c:ee:c3:e6:39:80:f2:6b:57:5f:89:cd:a8:98:0d:
c4:4f:52:0d:a2:12:fa:dd:37:3a:7b:1b:b9:59:97:
7b:21:a5:63:e6:ba:c6:39:5f:1f:1c:77:92:63:22:
ec:f6:7f:8a:85:77:d4:6f:0a:1e:a5:9a:93:80:e2:
57:fd:7a:0c:bd:7e:c0:22:da:93:28:7d:3f:3a:12:
8e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:FE:BB:A0:9C:F1:0B:28:7E:ED:2C:E5:67:22:B3:C9:A0:EF:12:FF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/uf67oJzxCyh-7SzlZyKzyaDvEv8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139919
sbgp-ipAddrBlock: critical
IPv4:
103.147.24.0/23
Signature Algorithm: sha256WithRSAEncryption
d3:55:32:9b:fe:54:ac:30:66:c9:03:17:a7:71:ed:77:bd:87:
2e:01:c1:fc:37:44:70:1d:ff:68:3f:1c:5a:ab:e7:14:30:67:
2c:77:fd:97:44:c5:eb:30:b3:4d:fb:d8:95:a9:43:d7:57:66:
80:6d:89:d7:3d:29:76:44:9f:35:07:e6:ee:08:d2:04:96:85:
e2:15:90:7c:06:0d:c8:eb:c5:39:80:a1:cc:0a:51:88:32:28:
a0:10:ec:bd:09:c3:2b:e8:65:98:ab:3a:02:d0:6f:61:3d:79:
e5:2b:7e:5d:8e:d7:5e:58:46:d6:17:65:7f:fe:11:92:92:d2:
cf:13:e9:2f:a5:e2:ee:2c:cd:ed:67:cb:3c:cb:2f:71:0a:5e:
ac:b5:6e:63:9f:d1:13:35:90:43:59:7c:7a:d7:0d:69:bb:40:
00:99:0c:65:a6:a9:ce:0d:18:12:04:4b:1f:75:98:e8:f1:9f:
ed:71:a3:02:a8:ec:5d:f4:70:af:2e:49:f2:07:0e:84:5e:ef:
d0:8e:fe:63:50:04:b8:72:86:2e:bb:93:b5:d9:28:b7:74:bf:
98:43:cb:90:9d:24:dc:c4:60:57:d4:c5:e2:df:3d:c7:10:42:
99:52:d0:d1:03:c3:ed:44:42:1d:00:94:9c:54:5d:65:7c:10:
63:e0:8d:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:09 2024 by rpki-client on console-ams.rpki-client.org