Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer
File: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer (raw, json)
Hash identifier: tC5bSvEZ0UwKWg384V/IhnunCSKtTIb8w/xu/HsjHuY=
Subject key identifier: C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020841
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 Aug 2024 20:07:35 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 132072
IP: 103.30.216.0/22
IP: 103.70.72.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133185 (0x20841)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 21 20:07:35 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91DF937/serialNumber=C49E5183EA2FC49B8A83C92052BCE2A8B6576C70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f0:ad:f6:86:c6:40:e9:6d:c4:ed:c2:df:e0:
95:19:e5:19:b4:e6:2d:c4:81:52:41:42:b0:00:ce:
40:b6:fc:47:49:5f:6f:e4:61:fa:f3:f2:ee:0d:31:
bf:c9:cf:1d:08:e6:83:6d:0f:1e:6a:14:ab:67:92:
b3:26:8c:be:f4:52:67:ec:4e:a5:96:80:99:ab:0c:
97:bf:e5:2f:dd:8b:64:8e:46:0a:d3:59:03:0d:79:
45:40:ec:46:76:b4:d4:af:5b:cd:72:15:28:67:3f:
5f:29:9f:3f:2c:fb:16:09:d6:34:a0:3f:6e:dd:5f:
32:2b:5f:67:b4:dd:35:63:35:e6:bb:9e:11:cb:cf:
d7:aa:ad:38:0c:cf:8f:ed:9f:5a:52:6b:90:e4:ff:
27:a3:5d:1a:53:3b:0e:27:f4:9f:c7:3f:76:38:bd:
f2:72:67:78:83:2e:74:de:7a:17:8d:c3:9d:9a:82:
d0:62:b3:ab:63:d2:7f:d9:a3:2c:2e:4c:97:f7:73:
54:4f:11:4a:67:df:1d:b7:9f:24:a1:f8:b3:3e:d8:
5e:c1:f8:87:3c:23:22:c7:ac:92:0a:1d:52:b7:34:
ca:63:2f:dc:38:f8:74:1e:92:19:52:a2:39:ec:f4:
9c:ed:b4:7a:c2:8b:94:4b:af:86:42:48:47:68:e1:
c4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132072
sbgp-ipAddrBlock: critical
IPv4:
103.30.216.0/22
103.70.72.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:7b:d0:f8:9f:29:4d:6f:64:1e:1b:0b:57:a8:de:a5:ba:07:
5d:25:cc:9f:14:8c:9d:33:08:89:4a:9e:24:85:8f:8d:32:c4:
ab:d0:70:b4:1f:22:1d:83:04:cc:c8:92:97:bd:7e:7b:e5:5e:
55:83:4d:7f:41:19:1a:6a:3b:de:86:15:b3:95:44:dd:c1:dc:
ca:52:70:d5:cb:49:88:f0:cb:47:14:a6:39:90:a0:ff:a5:52:
2a:01:16:e2:fb:55:44:15:e1:e7:15:d2:39:bc:3d:11:01:08:
88:f7:6f:8d:29:4d:04:50:31:53:84:66:54:cd:53:7d:84:85:
51:21:ce:ce:7d:f3:3c:0e:8b:af:e8:e6:85:ab:94:38:a5:74:
85:8c:ed:05:03:40:cb:ea:73:1e:a5:13:98:ef:15:fb:e7:ca:
c4:00:fd:8c:c5:4f:23:7b:75:d1:e2:7d:30:10:00:09:0b:57:
28:75:b9:31:12:02:d4:bb:04:2e:b9:48:02:5c:6e:43:46:5e:
78:ba:a1:a4:23:00:8f:06:d1:b3:2e:85:09:de:14:ee:fc:8e:
5a:1b:a0:da:f1:16:52:ca:92:87:a3:b3:12:19:13:7d:49:10:
c6:2f:58:f5:10:fe:c0:40:be:f6:17:75:03:d4:89:40:4c:ef:
02:87:ab:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:08:22 2024 by rpki-client on console-ams.rpki-client.org