Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqyUVBWKN8GhGJ1Gou4UU3UNqa8.cer
File: wqyUVBWKN8GhGJ1Gou4UU3UNqa8.cer (raw, json)
Hash identifier: sDwaq7h/K2fKhdqvPGMBqm8AP+b51Vx3X2CND8i04AM=
Subject key identifier: C2:AC:94:54:15:8A:37:C1:A1:18:9D:46:A2:EE:14:53:75:0D:A9:AF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D179
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912FF31/B56BB72413BC11EBBCFEB359C4F9AE02/wqyUVBWKN8GhGJ1Gou4UU3UNqa8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912FF31/B56BB72413BC11EBBCFEB359C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 12 Dec 2023 14:46:58 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 141355
IP: 103.157.85.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119161 (0x1d179)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 12 14:46:58 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A912FF31/serialNumber=C2AC9454158A37C1A1189D46A2EE1453750DA9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3b:8e:f7:0f:21:06:6f:2b:0d:f0:cf:aa:7b:
99:9a:d2:22:7d:e5:e6:15:3e:77:f8:86:b6:19:39:
af:84:73:87:67:b6:89:87:b5:ea:d5:cf:aa:4f:ba:
c8:ee:b5:fb:c6:d5:16:c7:c8:5c:9c:e7:09:36:17:
33:af:8c:0a:7a:9b:d8:f9:56:e6:48:ad:39:a4:5d:
2a:fe:d4:d6:c7:09:04:fb:4d:48:1f:2d:12:69:07:
4d:7a:4c:f4:34:de:76:0c:2e:a9:75:9b:05:de:4e:
35:43:25:35:e8:35:fa:db:19:f8:e3:54:3d:09:54:
f5:ba:9c:38:9a:04:5a:11:db:dd:40:0b:b4:74:d4:
6c:f2:8d:f4:68:97:0e:5b:80:be:aa:b2:26:9d:ee:
cb:68:83:6d:67:a4:7c:6a:54:7a:b3:74:68:f1:ea:
6f:e5:66:87:33:c4:d3:17:84:59:33:34:dd:0c:df:
63:01:e0:cb:7e:b1:f0:e3:ba:8c:f7:e0:f5:2c:2b:
93:36:f9:8c:10:52:44:d4:bc:9d:6b:32:6a:fa:83:
19:1c:3a:e4:64:c2:de:18:2f:de:a5:c0:8f:11:e1:
81:2b:ca:f0:8b:03:30:2c:a9:85:5c:be:dc:6e:24:
3c:ec:48:f7:26:1e:e5:3d:34:30:52:8a:ce:1f:03:
02:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AC:94:54:15:8A:37:C1:A1:18:9D:46:A2:EE:14:53:75:0D:A9:AF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912FF31/B56BB72413BC11EBBCFEB359C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912FF31/B56BB72413BC11EBBCFEB359C4F9AE02/wqyUVBWKN8GhGJ1Gou4UU3UNqa8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141355
sbgp-ipAddrBlock: critical
IPv4:
103.157.85.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:25:92:0e:ce:20:c2:30:73:4c:7b:37:37:dc:16:84:92:49:
05:67:3d:ec:d7:97:a1:59:fe:d7:43:72:f3:b2:ff:6f:bc:08:
5a:18:0e:05:49:d7:6d:25:3e:6c:6c:39:bb:3b:9f:f3:fb:e2:
18:ec:0b:ec:64:b6:a8:b1:77:89:3c:ce:4d:e3:3c:0d:8b:bb:
f1:45:79:84:6f:61:c3:de:d3:fc:9b:4c:10:69:47:bb:3f:0c:
62:93:ac:f5:de:ac:58:6b:75:fe:84:2b:c7:55:cb:ba:9f:ae:
15:59:5e:04:aa:46:f1:38:09:86:07:2a:27:62:e7:01:b8:3d:
cc:ce:ed:39:23:f4:49:0e:ab:21:f5:7d:54:e6:58:6f:22:34:
ca:a7:57:2b:ed:4f:66:4e:59:04:b7:1e:43:e8:96:0b:1f:8f:
89:1f:e5:7e:40:8b:da:00:b3:19:f4:f0:be:b6:2c:5d:30:c1:
4d:16:7f:3a:c0:01:9d:dc:14:c2:cf:62:be:97:93:85:86:2a:
70:0a:96:0e:eb:5c:aa:8f:b0:66:7c:2d:bc:20:89:32:d4:c6:
54:2e:16:26:3f:6b:f2:01:d1:1b:b4:9c:f7:ba:19:a6:53:2d:
77:e6:06:de:0b:b0:c9:68:49:03:57:36:1f:13:ad:d7:1d:7a:
0e:78:ab:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:39 2024 by rpki-client on console-fra.rpki-client.org