Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer
File: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer (raw, json)
Hash identifier: iX4+4rS3yGkrR/qyZgoeWphJFtyEUJZJpsRONopXSTs=
Subject key identifier: C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CF2C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Dec 2023 15:37:18 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 134791
IP: 103.12.159.0/24
IP: 103.134.53.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118572 (0x1cf2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 2 15:37:18 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A914D05C/serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c0:55:5d:40:51:ef:45:f1:d2:39:00:41:79:
4f:6b:40:80:4a:07:b3:e1:9e:d4:38:22:e8:87:ac:
9f:d8:7d:2d:ba:d9:66:3c:49:14:db:d4:76:ed:c9:
23:41:12:d2:47:18:9a:d8:83:ac:b5:0e:cc:97:3c:
f7:5a:cf:af:53:6f:89:77:90:0f:a4:7a:d3:48:74:
9f:51:d8:50:6d:5e:dd:78:23:04:ac:0f:4a:2f:9f:
d5:b1:8b:28:a9:41:de:2f:bd:35:82:9c:57:e6:c9:
d8:ad:94:61:5b:b6:27:b9:71:0b:7c:3f:f1:b7:92:
5a:f7:45:01:63:b8:47:69:b9:e8:80:1f:d1:30:08:
ae:88:80:48:27:28:41:39:b1:d5:98:93:ee:9c:8f:
8a:21:1e:c7:5a:54:46:2a:95:6d:94:86:78:bf:47:
a0:e2:29:47:91:28:e5:16:82:d0:9b:2c:48:17:94:
21:17:3f:2a:5b:16:68:ab:bf:3e:ac:27:da:1f:5f:
bb:61:ed:ca:ea:cf:6b:bc:c3:81:1d:ec:3d:39:28:
0e:d4:13:38:3a:b1:c5:61:a3:1e:d9:9e:a1:62:05:
bc:8b:c4:9c:3c:2f:e3:4d:12:30:50:c9:0d:6b:28:
67:99:8d:6e:79:cf:52:d1:cf:94:ba:0a:b9:ab:80:
f1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134791
sbgp-ipAddrBlock: critical
IPv4:
103.12.159.0/24
103.134.53.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ff:dc:e2:96:77:57:0b:1d:46:54:02:51:af:07:ac:4f:ab:
6f:4b:97:df:bf:f4:2b:37:20:e8:21:77:47:a7:6f:92:56:b0:
f8:da:d4:c3:eb:a5:f5:32:5a:4d:f3:8a:3f:e1:b3:1f:3e:ac:
24:f2:1c:7d:d4:b7:49:64:c0:eb:da:20:61:36:9d:35:01:f7:
6b:60:83:d4:b5:5c:8d:5b:48:dd:58:e5:8f:d6:65:bd:63:8e:
a2:0d:d7:bb:3d:b4:18:95:29:6c:0b:64:d9:b3:8d:cc:96:c5:
b4:3f:10:81:f6:c3:ea:7d:b2:04:f5:15:8d:56:ba:fc:16:cc:
10:07:b3:cd:0b:1e:35:29:9c:3b:eb:ef:71:7a:41:0e:a6:2d:
77:28:ec:bd:b0:6e:bb:3d:ac:eb:4d:ed:cb:2a:33:27:c5:ac:
59:20:bd:0f:17:ef:38:f4:05:d0:ce:d4:03:b4:63:fa:67:8c:
7c:45:ba:f2:36:ee:7d:21:0e:e3:72:85:36:98:5b:89:99:4a:
2b:21:d8:c1:ab:50:25:ac:c5:e0:38:3e:c7:4c:7b:3c:05:1e:
25:41:3f:12:d5:63:56:ea:f2:d4:e5:76:3d:07:fb:0d:3d:99:
d3:5b:fe:aa:8a:9e:e0:9d:ba:7a:95:1c:93:c7:e0:7b:65:88:
52:6a:95:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:04:11 2024 by rpki-client on console-fra.rpki-client.org