Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer
File: vTfx1AdHvmxfXGujMH32Vgq2gaM.cer (raw, json)
Hash identifier: V2vfAeQ4tLpsagFQeaUO5Wcata3OiZU8X2HQ2r7srrY=
Subject key identifier: BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022134
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Dec 2024 20:25:59 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 140712
AS: 149876
IP: 103.152.26.0/23
IP: 2001:df3:f280::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Jan 2025 09:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139572 (0x22134)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 6 20:25:59 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91817E6/serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:af:da:a3:49:ef:8a:14:ea:5f:3e:fe:b6:74:
e1:26:9d:60:e5:cb:d3:8c:57:a9:85:34:2d:a8:ad:
bd:49:cc:44:d3:6d:3e:4e:f6:b3:62:02:60:be:ed:
d7:6d:17:cf:41:14:64:b6:98:75:0a:ee:65:ef:24:
05:31:80:8d:75:18:e7:5f:b2:b3:ea:a2:74:39:6c:
b1:0c:33:1a:af:99:f4:fc:9d:47:18:cb:91:74:23:
70:89:34:ce:08:b4:eb:e2:a5:e4:aa:d3:bf:3f:89:
a9:1c:52:ad:bc:6a:d0:47:04:71:06:1b:05:59:89:
37:11:51:e7:67:13:26:77:a2:49:29:81:53:d7:a6:
b9:b8:72:54:52:3a:d3:e5:e2:e9:e8:02:e6:67:e0:
09:b0:a4:dd:cb:56:0b:5e:29:b7:74:d0:d6:9a:3d:
0f:e9:60:44:4b:81:11:8a:2a:42:1e:cc:87:e1:88:
37:be:4d:f6:30:d3:2c:5c:58:e9:f5:c7:6a:d2:af:
1e:a7:a3:c6:1d:2b:fb:71:7d:da:e2:54:6d:5b:d9:
7b:94:d9:9e:7a:c6:c9:c0:d9:ab:17:17:b0:6f:63:
f5:d4:28:47:9f:8c:9e:b7:41:86:a1:ec:91:8b:b3:
72:16:83:bc:e1:97:4d:b3:f0:b7:3e:60:ef:a0:80:
f1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140712
149876
sbgp-ipAddrBlock: critical
IPv4:
103.152.26.0/23
IPv6:
2001:df3:f280::/48
Signature Algorithm: sha256WithRSAEncryption
4c:71:12:9c:09:35:41:a5:00:99:ad:33:65:6b:50:b5:54:2d:
2e:d1:13:e9:4a:4b:cf:4c:0c:9e:45:a1:2a:55:45:fc:ee:ab:
4b:53:80:af:ac:b9:53:88:14:67:19:40:3f:d8:e4:7c:96:81:
d3:bd:f6:08:5c:f9:e1:d3:37:12:32:55:c1:be:41:be:7f:e6:
24:d0:23:cc:cf:c5:c6:53:c8:67:b2:64:f8:89:f5:09:39:9e:
01:0d:c1:0f:f5:e2:83:69:79:29:a9:d6:b2:06:6f:bf:79:2c:
e9:4b:81:c7:5d:08:0d:9c:71:d9:cf:ba:87:65:b8:2c:7e:95:
eb:f7:f2:b9:06:05:64:c3:42:ff:07:b3:e4:8e:6c:17:c7:a0:
1b:65:f8:81:bf:12:7e:82:30:a2:e1:d1:20:67:34:24:77:f7:
03:24:54:aa:fa:3d:87:fa:30:da:34:83:92:04:85:ac:e8:2d:
4e:10:28:90:c3:ab:d3:12:2a:57:48:12:fc:25:dd:75:97:ab:
5f:26:72:5c:17:e8:93:df:4e:a6:62:b8:b9:8d:14:de:3c:a3:
0e:09:f7:ef:d4:dd:19:62:49:78:19:ab:4c:2a:5f:0f:2a:9e:
bb:c1:6d:2f:dd:dd:e1:da:2c:0a:51:7e:af:fa:7b:e4:97:06:
b1:41:d5:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 10:26:10 2024 by rpki-client on console-ams.rpki-client.org