Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer
File: xGfLLMucIacHtd-86roFTBkFI64.cer (raw, json)
Hash identifier: I+D71edDAE+6c9EvmVENO5S3XrsEdKl7Cg1GWqFXSEY=
Subject key identifier: C4:67:CB:2C:CB:9C:21:A7:07:B5:DF:BC:EA:BA:05:4C:19:05:23:AE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DF13
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 15 Feb 2024 18:22:36 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 134970
IP: 103.251.244.0/22
IP: 220.247.128.0/22
IP: 2407:7380::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122643 (0x1df13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 15 18:22:36 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A919C3BE/serialNumber=C467CB2CCB9C21A707B5DFBCEABA054C190523AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:09:f1:d0:0a:72:14:5d:70:cc:54:70:12:7d:
41:61:43:b3:99:4b:b8:20:32:3a:ae:e9:36:f2:50:
8e:ae:06:92:3f:ff:96:d7:06:71:33:3d:fe:2f:c9:
36:fb:05:ba:5f:81:7c:8f:f4:1f:ea:59:9c:6c:ab:
a5:e2:94:31:62:f7:d2:7e:25:05:fe:33:7c:bb:35:
43:04:d5:4f:e2:9e:4f:ca:49:10:a0:64:6f:1f:85:
fb:b9:d7:ee:58:be:f9:3b:27:9d:7b:31:10:c3:03:
eb:e7:7d:c6:b1:37:a1:9d:06:e7:ff:1c:0f:26:ac:
aa:0e:b8:ca:3b:2f:fa:5c:e9:0a:d3:f7:de:d4:15:
da:b8:f0:a8:a7:fa:5f:f1:34:b3:b4:de:bd:75:ee:
c9:41:2a:b5:6b:3c:bb:32:68:ec:a5:24:dd:8a:85:
be:d0:3a:f9:d4:f0:b2:80:9b:bd:30:3b:de:ee:6a:
bd:91:9e:6b:7a:4a:bb:43:5a:61:98:aa:d8:e0:ad:
55:28:cf:58:23:09:c1:fc:cc:7b:9c:57:7c:8e:1a:
f1:8f:27:e6:6f:68:d0:bb:6a:a2:34:93:1d:cb:3e:
95:c4:dc:78:7f:4b:fe:86:b7:d4:e7:41:f5:b0:a5:
e8:71:29:3c:7e:79:e2:dc:9f:35:66:fc:c5:bf:ae:
8a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:67:CB:2C:CB:9C:21:A7:07:B5:DF:BC:EA:BA:05:4C:19:05:23:AE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134970
sbgp-ipAddrBlock: critical
IPv4:
103.251.244.0/22
220.247.128.0/22
IPv6:
2407:7380::/32
Signature Algorithm: sha256WithRSAEncryption
11:9b:f6:a6:10:82:7c:b5:b0:e8:70:54:c2:5d:ec:06:b2:a3:
1b:b6:91:c7:8a:9a:83:3e:7b:5e:c5:e8:f2:db:fe:5a:56:31:
b0:46:2c:90:c4:61:3b:7d:74:09:df:c1:70:92:90:3c:c2:38:
f5:fb:73:fe:c5:85:4f:9b:26:ba:00:5c:fb:57:85:fd:75:fc:
46:0a:38:4b:48:02:8c:e2:60:12:28:7d:90:32:43:bd:5d:fc:
c1:28:38:df:66:99:b4:bf:f8:a9:2a:f3:ef:99:dd:ae:6c:cf:
37:39:03:7f:08:db:76:0b:99:88:e1:af:0a:63:56:80:4a:44:
6e:d6:e0:0c:a0:50:bf:5c:ee:29:d1:cc:f0:ad:2d:5d:61:36:
f8:30:56:1c:79:82:4d:16:7e:c9:87:2e:64:fa:56:94:bb:b1:
41:e7:8c:03:34:0f:70:77:d2:ca:96:d0:73:11:c4:be:48:c3:
4f:b4:8e:a4:a2:28:04:ca:b5:c1:cb:ad:b6:95:2c:ac:65:b7:
d2:ab:2f:e9:86:10:f8:1c:dc:46:3f:d0:1e:99:7e:13:77:b7:
71:dd:55:db:2c:c8:36:9d:e0:d8:bc:80:e0:cb:60:9b:2a:90:
87:c4:04:c2:91:e7:44:54:64:70:a3:1c:7a:15:20:58:01:cc:
90:c1:4c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:21:42 2024 by rpki-client on console-ams.rpki-client.org