Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vadiHhrG4FsLoMLvFUF0yL5cE7k.cer
File: vadiHhrG4FsLoMLvFUF0yL5cE7k.cer (raw, json)
Hash identifier: v3f6lfxzI8bJa7RFr5idViPqbhOiVqpYOeKH52j7yWQ=
Subject key identifier: BD:A7:62:1E:1A:C6:E0:5B:0B:A0:C2:EF:15:41:74:C8:BE:5C:13:B9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C958
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 07 Nov 2023 02:10:47 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 150394
AS: 152099
IP: 103.29.60.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117080 (0x1c958)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 7 02:10:47 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A912885B/serialNumber=BDA7621E1AC6E05B0BA0C2EF154174C8BE5C13B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2c:62:96:4d:56:84:7e:02:0a:f9:be:24:26:
ae:7c:da:4d:56:eb:81:37:a2:2c:5d:9b:af:53:60:
df:e5:65:23:62:6c:a1:31:4d:ed:85:20:b7:cb:6e:
69:aa:da:20:71:7e:9a:f7:f3:e4:a2:f2:bf:ee:e2:
ad:11:fc:5c:7b:2d:70:ee:54:f7:01:b6:06:52:2f:
ae:1a:29:65:a5:45:72:a0:02:37:e4:4d:df:a3:ba:
7c:98:a4:b6:ca:38:bd:37:2c:00:ab:35:aa:c6:38:
b8:92:c1:36:38:dd:80:2d:0d:a8:10:1b:95:10:69:
d9:cc:6b:3b:58:c8:e0:82:9e:42:70:4c:b1:27:e3:
2a:3c:4a:15:c3:5e:b8:ac:78:44:bb:65:a7:a5:b9:
d5:f3:13:33:5a:12:59:5a:92:f8:0d:b6:76:8c:62:
7f:7a:6d:35:96:c1:f3:5a:11:68:e6:e6:27:88:5d:
73:4d:4c:5c:07:32:45:c0:b3:1e:8b:c5:82:de:00:
16:2f:5e:a6:96:5d:af:eb:b5:e1:57:cd:05:92:da:
81:ed:11:8f:f7:7d:c1:97:aa:64:c4:ab:78:e2:15:
c1:e9:72:32:d5:0a:d8:cb:fc:bc:ba:b3:40:22:e0:
f2:d1:99:f8:ea:2f:ef:cb:9a:42:05:83:08:e9:9a:
a5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:A7:62:1E:1A:C6:E0:5B:0B:A0:C2:EF:15:41:74:C8:BE:5C:13:B9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150394
152099
sbgp-ipAddrBlock: critical
IPv4:
103.29.60.0/23
Signature Algorithm: sha256WithRSAEncryption
d6:a6:9b:89:94:c4:8b:ba:b3:5d:f2:b6:77:dd:c9:56:98:d8:
a4:ff:cd:e6:bd:8b:d9:9d:e7:a4:74:f4:8e:22:ad:cd:eb:42:
e9:87:74:3f:d2:31:21:a4:e1:20:29:ba:bc:25:18:2f:0d:f1:
4d:26:1e:77:4b:c3:7b:c2:25:cc:97:8b:c0:a6:98:7b:07:bb:
28:48:87:2b:4e:24:76:ee:3b:ca:4c:ef:ae:67:2b:b6:bc:51:
25:19:88:14:73:3c:d1:2d:77:10:36:53:6b:01:16:35:60:80:
74:f0:3e:e6:ef:bc:32:46:b6:39:c5:9b:6f:be:8f:80:dc:bd:
05:eb:18:0f:39:94:15:58:e0:c8:19:27:74:77:01:19:04:0c:
fe:57:b9:34:14:f6:b8:eb:24:96:59:a2:a4:df:e7:e0:6c:32:
33:1c:0e:7f:9f:b9:13:a7:58:af:5c:74:e0:02:74:0b:d4:76:
01:11:71:72:7d:fb:bb:9f:62:df:79:e1:c7:cb:91:1a:f1:7d:
e7:3c:bd:13:cc:fa:a7:3f:d6:09:dc:36:6c:0a:7f:8e:43:b0:
80:87:1b:95:b3:ac:16:9d:36:27:60:05:94:92:c7:3e:3c:9e:
e2:8b:0e:0b:b2:a4:15:f6:0b:ba:f0:fb:22:2f:82:84:00:9f:
e0:60:ed:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:58:08 2024 by rpki-client on console-fra.rpki-client.org