Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1WlsAYqTmo9yHnjyfyyZnxokrc.cer
File: v1WlsAYqTmo9yHnjyfyyZnxokrc.cer (raw, json)
Hash identifier: BSowggmKUKKL8F+soAWoc8NJn+fiuRgJekfWB1a6KaU=
Subject key identifier: BF:55:A5:B0:06:2A:4E:6A:3D:C8:79:E3:C9:FC:B2:66:7C:68:92:B7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0216AD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/v1WlsAYqTmo9yHnjyfyyZnxokrc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Oct 2024 15:30:33 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 138209
IP: 103.129.224.0/22
IP: 2403:8ac0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136877 (0x216ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 28 15:30:33 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A914E08F/serialNumber=BF55A5B0062A4E6A3DC879E3C9FCB2667C6892B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:39:32:52:48:e1:af:6b:ac:f6:65:07:a9:4a:
ff:11:a6:57:3a:db:24:84:06:93:b9:76:d9:35:a0:
cc:6c:8b:90:33:15:0c:cb:1b:38:bf:aa:f9:e3:ef:
66:b7:10:df:c5:28:37:bc:97:8c:9e:95:c8:87:fa:
43:37:10:2b:b7:10:41:fc:2a:82:10:bb:4b:b7:c7:
b8:56:06:52:1c:e2:24:db:2f:28:09:08:eb:2a:c3:
2c:df:6f:41:44:8f:24:26:03:f2:53:47:df:65:b9:
59:9b:dc:61:1b:cc:dd:6e:f8:0e:52:85:86:51:4c:
74:26:26:0a:21:a4:2e:dc:3e:8c:91:55:19:78:3d:
6a:c6:eb:1f:71:fd:54:61:24:da:b9:da:08:e1:2b:
9f:9d:c9:ac:48:7e:c3:ae:d2:a7:e8:ea:16:63:73:
82:20:36:07:5a:88:96:74:69:dd:07:80:aa:af:58:
c4:8b:e3:49:19:31:48:88:e2:65:65:39:0e:bb:c3:
84:28:77:86:89:a9:ec:90:9a:c3:0d:45:28:19:dc:
8f:02:01:83:c1:e8:50:e7:20:6c:4b:0a:f7:f6:58:
86:71:da:9c:8d:73:a7:a5:44:9e:ea:56:5e:47:10:
03:4f:b2:74:60:74:53:be:60:3e:b4:ac:5c:07:06:
c3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:55:A5:B0:06:2A:4E:6A:3D:C8:79:E3:C9:FC:B2:66:7C:68:92:B7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/v1WlsAYqTmo9yHnjyfyyZnxokrc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138209
sbgp-ipAddrBlock: critical
IPv4:
103.129.224.0/22
IPv6:
2403:8ac0::/32
Signature Algorithm: sha256WithRSAEncryption
31:8a:10:52:b5:96:0e:b5:9c:b6:0c:13:17:ca:dd:13:47:49:
88:27:7f:62:e6:c4:35:9d:87:66:74:5c:43:18:11:44:c5:35:
35:57:4c:2a:53:47:62:68:a1:86:c5:8f:0a:84:5f:f1:83:be:
bc:a2:12:81:76:d7:00:2f:39:91:2e:cb:46:e1:ae:09:e5:e8:
51:02:fc:18:2b:b4:55:c2:05:93:e8:11:eb:1c:f6:56:0c:97:
b9:68:82:28:1f:5d:70:f6:0b:7d:40:68:8a:f9:28:48:f4:83:
46:98:6c:53:56:bf:4b:0e:b9:bc:b4:65:5f:11:34:25:cb:9f:
88:ba:be:b6:8e:d2:ec:30:60:b3:a2:14:4e:d2:1f:9d:f7:d9:
c0:c6:db:b7:18:1c:f0:d4:96:31:7b:40:dd:61:5d:6f:fe:8d:
58:d4:da:dc:fb:58:64:e5:c4:53:7d:41:d6:8d:a3:e0:28:b5:
11:6a:b6:ae:9c:02:a5:0b:5a:fe:69:ae:ce:6e:8e:68:4e:00:
d8:6d:02:c8:d4:16:1a:3c:cd:6c:4d:b0:62:c1:fd:55:ee:22:
19:a4:08:94:7a:04:55:84:8f:f2:b6:d9:fb:e2:dd:7b:5d:b5:
23:2a:c4:79:27:c4:24:de:bf:54:ee:67:9b:a7:31:18:b4:58:
b3:86:94:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:55 2024 by rpki-client on console-fra.rpki-client.org