Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vadiHhrG4FsLoMLvFUF0yL5cE7k.cer
File: vadiHhrG4FsLoMLvFUF0yL5cE7k.cer (raw, json)
Hash identifier: 5ntsi1DnPHe5qryasjwD1GeXP7abtkWdw37Id7LpPjw=
Subject key identifier: BD:A7:62:1E:1A:C6:E0:5B:0B:A0:C2:EF:15:41:74:C8:BE:5C:13:B9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021CFE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Nov 2024 12:58:25 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 150394
AS: 152099
IP: 103.29.60.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138494 (0x21cfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 22 12:58:25 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A912885B/serialNumber=BDA7621E1AC6E05B0BA0C2EF154174C8BE5C13B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2c:62:96:4d:56:84:7e:02:0a:f9:be:24:26:
ae:7c:da:4d:56:eb:81:37:a2:2c:5d:9b:af:53:60:
df:e5:65:23:62:6c:a1:31:4d:ed:85:20:b7:cb:6e:
69:aa:da:20:71:7e:9a:f7:f3:e4:a2:f2:bf:ee:e2:
ad:11:fc:5c:7b:2d:70:ee:54:f7:01:b6:06:52:2f:
ae:1a:29:65:a5:45:72:a0:02:37:e4:4d:df:a3:ba:
7c:98:a4:b6:ca:38:bd:37:2c:00:ab:35:aa:c6:38:
b8:92:c1:36:38:dd:80:2d:0d:a8:10:1b:95:10:69:
d9:cc:6b:3b:58:c8:e0:82:9e:42:70:4c:b1:27:e3:
2a:3c:4a:15:c3:5e:b8:ac:78:44:bb:65:a7:a5:b9:
d5:f3:13:33:5a:12:59:5a:92:f8:0d:b6:76:8c:62:
7f:7a:6d:35:96:c1:f3:5a:11:68:e6:e6:27:88:5d:
73:4d:4c:5c:07:32:45:c0:b3:1e:8b:c5:82:de:00:
16:2f:5e:a6:96:5d:af:eb:b5:e1:57:cd:05:92:da:
81:ed:11:8f:f7:7d:c1:97:aa:64:c4:ab:78:e2:15:
c1:e9:72:32:d5:0a:d8:cb:fc:bc:ba:b3:40:22:e0:
f2:d1:99:f8:ea:2f:ef:cb:9a:42:05:83:08:e9:9a:
a5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:A7:62:1E:1A:C6:E0:5B:0B:A0:C2:EF:15:41:74:C8:BE:5C:13:B9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150394
152099
sbgp-ipAddrBlock: critical
IPv4:
103.29.60.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:65:01:80:d6:04:72:ff:4a:cc:04:72:0d:f9:d8:37:32:6c:
88:3d:e5:25:6c:41:ae:05:88:b6:d4:0b:5f:94:b9:d3:04:b8:
88:de:76:4f:55:d8:b5:bf:92:42:25:7d:e9:60:a7:10:93:97:
73:46:eb:c6:3d:6e:86:23:1d:88:f1:72:64:7b:e1:1c:64:8c:
d3:a6:d3:75:75:ff:c0:3c:a5:90:86:97:39:ac:0e:ea:18:75:
70:e6:7e:72:fe:08:99:f2:fb:26:ad:c2:8e:96:84:8e:b8:38:
81:44:db:a6:9e:32:e9:d7:d5:0a:1e:3f:be:7a:2c:35:2d:91:
b4:29:da:95:58:48:32:f5:40:78:a2:35:70:79:7b:f4:24:c0:
2b:97:bf:e2:b2:3a:c9:40:71:43:82:6b:cc:2b:99:1c:c5:74:
6a:9b:e0:2e:cf:ce:dd:6f:3f:25:f7:c3:da:b3:d5:72:28:38:
4e:0c:2b:dc:04:33:3b:d8:16:48:b3:a1:db:45:6c:32:21:9f:
87:34:64:a2:33:01:a9:1f:9c:57:ff:c5:fa:df:d2:5e:70:f2:
c6:64:ab:81:36:f3:e8:7f:e8:ce:3c:35:6e:52:ce:76:d2:f1:
89:e8:4b:47:38:00:60:09:ff:71:f4:5b:8d:32:f1:63:ef:d3:
2c:ac:3a:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:04:09 2024 by rpki-client on console-fra.rpki-client.org