Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wHCklbOD5Z1FcbaxfYqSiartGCU.cer
File: wHCklbOD5Z1FcbaxfYqSiartGCU.cer (raw, json)
Hash identifier: Dmd353l8cqskemZ4gJtcoNzgb43eyF/RJFijC0l9JHI=
Subject key identifier: C0:70:A4:95:B3:83:E5:9D:45:71:B6:B1:7D:8A:92:89:AA:ED:18:25
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CDDA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911AE4A/14135E60651611EDA632214FC4F9AE02/wHCklbOD5Z1FcbaxfYqSiartGCU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911AE4A/14135E60651611EDA632214FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Nov 2023 12:39:18 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 150422
IP: 103.38.208.0/23
IP: 2400:c060::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 19:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118234 (0x1cdda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 30 12:39:18 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A911AE4A/serialNumber=C070A495B383E59D4571B6B17D8A9289AAED1825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fd:06:21:64:75:0a:0b:75:84:e0:07:65:a1:
90:96:eb:8c:8a:36:ab:79:d6:e2:08:2f:b5:74:db:
3f:a8:56:4a:49:7e:9d:6e:fc:ed:f8:3b:c2:47:15:
e3:61:60:32:04:bb:cc:7d:c7:07:57:db:a5:3f:75:
17:49:25:c2:29:71:d9:13:6a:ed:de:9e:7f:b1:df:
41:fe:ce:d3:50:84:29:99:29:e0:c2:fb:1e:cc:d0:
63:68:ca:a6:87:71:ee:25:84:c7:63:b4:db:aa:67:
a8:f6:e1:94:5b:c9:d6:3e:4f:72:0c:67:d2:04:ad:
1b:81:1a:c8:d3:8b:a5:09:e1:76:51:0d:fb:fc:52:
05:39:d4:0e:a2:75:ef:d0:29:39:ac:ba:0b:bf:57:
46:09:b9:ee:d5:43:97:d3:23:4e:32:c8:e9:f9:14:
cb:ca:85:6d:fa:6b:c0:83:34:5a:45:f9:99:a5:43:
4f:4d:13:07:6d:4c:50:a8:ed:4b:db:8e:00:84:f8:
6a:77:be:8e:73:8b:bc:43:4d:20:73:f2:51:64:e5:
d0:0d:e0:37:88:3f:e1:71:cd:e0:14:81:6d:0b:64:
5e:b4:6c:fd:7a:35:d3:b4:5d:4b:85:66:cb:74:b5:
39:a0:0b:57:bb:e5:b5:c1:04:bf:de:ef:f3:35:31:
21:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:70:A4:95:B3:83:E5:9D:45:71:B6:B1:7D:8A:92:89:AA:ED:18:25
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911AE4A/14135E60651611EDA632214FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911AE4A/14135E60651611EDA632214FC4F9AE02/wHCklbOD5Z1FcbaxfYqSiartGCU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150422
sbgp-ipAddrBlock: critical
IPv4:
103.38.208.0/23
IPv6:
2400:c060::/32
Signature Algorithm: sha256WithRSAEncryption
cb:26:4e:80:cc:b3:d2:62:f3:9c:19:ca:12:2d:8a:0d:23:83:
9b:46:52:f8:6b:68:f0:b0:38:86:f2:a2:3d:75:85:fd:03:25:
92:c5:dc:a8:77:33:d4:2a:15:1c:e8:70:b1:2f:8f:19:4a:e4:
7b:0b:c8:75:73:aa:51:1d:b0:03:9f:9b:b9:84:75:4c:83:b7:
29:06:cd:46:9b:da:0a:be:8d:6a:e3:44:b5:a3:04:1b:57:2c:
50:b3:ca:da:d6:91:05:9e:f1:79:e3:16:b7:43:4c:a0:e1:af:
2d:f9:0f:14:31:9b:ff:14:1f:c1:b0:ed:7b:11:29:71:51:87:
2a:69:3a:9b:d9:ed:f4:73:1f:0a:ab:be:a5:77:04:6e:37:eb:
0a:d5:b7:86:73:4c:e4:6a:d4:d9:cf:7f:48:6d:32:07:47:c8:
e2:c5:e7:db:65:51:9b:e6:f5:f0:50:1c:9c:8c:8b:f8:72:04:
ae:31:d9:5c:8c:a7:2f:4c:c2:86:01:79:00:2c:29:8b:85:87:
b9:e9:2e:9a:43:7a:5c:c0:08:65:12:52:f2:e3:5a:2d:a2:e9:
d5:33:e9:6d:30:af:98:25:60:e5:38:f0:9a:a8:98:11:bb:dd:
da:04:fa:d9:1d:d6:4d:9b:3a:c7:84:49:93:bd:b8:21:99:fc:
a1:f8:6a:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 20:21:51 2024 by rpki-client on console-fra.rpki-client.org