Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wS8PVy2jONITRB7wfKUR0anIm20.cer
File: wS8PVy2jONITRB7wfKUR0anIm20.cer (raw, json)
Hash identifier: JEAJvfWjT19Xa7Q9PEF7pQ5kPs78as3pkNM6I8jpvlw=
Subject key identifier: C1:2F:0F:57:2D:A3:38:D2:13:44:1E:F0:7C:A5:11:D1:A9:C8:9B:6D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DD77
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 Feb 2024 16:18:19 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 139917
IP: 103.147.44.0/24
IP: 2001:df2:8380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 13:35:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122231 (0x1dd77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 5 16:18:19 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A916CA70/serialNumber=C12F0F572DA338D213441EF07CA511D1A9C89B6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e1:59:5b:f2:c1:37:00:5b:81:a3:b7:aa:d9:
32:c7:e7:2f:87:8e:5a:98:de:35:81:42:42:75:56:
15:95:3b:b0:26:b3:2b:9f:ab:6f:ba:e7:a3:85:ba:
fb:84:7f:e5:d5:3f:bc:af:86:ef:0a:fc:dc:59:3f:
29:f6:1d:e2:71:ca:bd:89:d0:74:45:c0:7d:1a:f0:
8b:e6:02:33:a0:a7:ad:81:b6:d6:76:95:f1:f4:d2:
72:22:9d:8d:9f:7d:01:b7:f6:e8:12:b4:7b:bb:4a:
23:92:32:d5:48:e3:2a:c2:ed:bf:ac:6a:13:b5:00:
4f:c2:0a:9a:36:2f:40:e1:cb:7f:4a:4f:f4:0b:ea:
be:0c:ea:82:e4:ec:8c:22:42:c9:b2:76:a0:a0:f8:
e9:5f:b0:e0:bb:3b:a4:f8:2e:7c:35:d1:af:69:d6:
0b:72:d4:01:07:79:f7:59:f8:6f:3f:85:ba:60:f2:
a2:ef:88:f0:16:54:a9:c6:b4:52:67:6b:79:1d:b0:
e6:07:b4:42:f8:c1:30:f8:37:87:02:f6:99:8a:cc:
64:4c:41:ab:d8:22:d7:ed:94:c7:c4:ff:66:a7:11:
6e:87:db:25:c4:77:23:9a:c6:f2:17:24:b6:b6:a0:
e3:cc:84:52:a1:90:f2:da:8e:b3:cb:59:21:d0:05:
83:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:2F:0F:57:2D:A3:38:D2:13:44:1E:F0:7C:A5:11:D1:A9:C8:9B:6D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139917
sbgp-ipAddrBlock: critical
IPv4:
103.147.44.0/24
IPv6:
2001:df2:8380::/48
Signature Algorithm: sha256WithRSAEncryption
04:e8:82:f7:b0:4d:47:8b:54:b6:69:ba:64:4c:d8:56:06:0a:
47:83:7f:91:d2:fb:8c:94:39:3c:be:bb:8b:61:da:63:66:e8:
e6:ce:4b:48:31:5f:e1:c2:2a:89:c2:1e:e3:1e:40:d5:b1:65:
25:c4:ec:c5:57:0c:5a:41:1c:0c:2c:56:b2:ec:de:37:75:c3:
8e:fc:a0:da:2e:7b:fe:20:4d:a3:93:a1:f3:16:fb:5b:43:53:
92:37:53:a0:11:67:02:44:2f:ab:8d:c6:b2:b1:04:64:89:c0:
61:38:18:e6:80:09:ff:fc:b5:52:8b:24:6c:cc:96:fb:cc:2b:
9e:cd:56:d6:82:58:3e:ce:f5:69:56:2e:6b:59:cb:89:a6:3f:
35:6a:98:c5:8a:ec:bb:e1:bc:f7:dc:50:9a:c5:2e:71:e5:6e:
60:9a:8b:bf:44:18:8f:bd:66:02:b1:d7:fc:28:d5:dd:44:4a:
3a:12:8c:f7:ce:19:c5:3c:ef:a7:b2:bf:c0:e9:53:b0:4a:19:
b3:d2:9a:96:b3:56:0d:71:2b:a2:bd:9d:51:b1:c0:42:35:56:
8b:60:95:3e:26:a6:28:a0:c0:ff:70:18:08:e0:7f:d4:a0:a6:
30:42:92:18:4b:b1:ff:93:e3:d5:83:8c:a4:82:a6:83:8c:ea:
d4:8e:3f:bd
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 14:23:06 2024 by rpki-client on console-fra.rpki-client.org