Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zpBWtMZd44V9TQ4dsAI9YLb30ww.cer
File: zpBWtMZd44V9TQ4dsAI9YLb30ww.cer (raw, json)
Hash identifier: mrzaSrlfLpjx+c7he/f69cd0MnD9YVQ3Cg/QtrE6XJE=
Subject key identifier: CE:90:56:B4:C6:5D:E3:85:7D:4D:0E:1D:B0:02:3D:60:B6:F7:D3:0C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E11A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/zpBWtMZd44V9TQ4dsAI9YLb30ww.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 27 Feb 2024 23:43:35 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 136620
IP: 103.105.48.0/22
IP: 2402:28c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 14:41:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123162 (0x1e11a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 23:43:35 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91DD125/serialNumber=CE9056B4C65DE3857D4D0E1DB0023D60B6F7D30C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:40:10:0d:d0:7a:dd:13:38:bb:46:d4:b7:ed:
10:48:cc:56:80:d8:47:bf:66:84:32:e0:16:d8:3b:
c4:4c:ba:77:d7:db:17:e6:07:87:53:d6:59:4a:15:
14:b3:a0:1c:cb:15:66:38:c6:b3:3f:55:da:b0:d2:
c7:30:d0:01:75:5f:1d:3d:75:e2:f8:56:3f:21:21:
e8:ed:97:04:2b:1b:97:9f:0d:13:a2:b8:04:4b:b9:
fe:49:17:c1:83:77:e4:0c:f8:ec:73:53:31:bf:3e:
4e:11:c5:e3:1d:02:2b:bc:8f:da:c4:81:28:b7:b8:
88:c9:f6:c1:0b:3a:f0:1e:3e:7c:03:19:81:7d:b2:
66:2a:0b:25:ad:5e:5c:a4:93:9b:8f:7d:d7:47:75:
c0:d1:46:35:f4:49:36:19:2e:fb:f9:f8:29:4a:f0:
1e:75:3a:a1:fe:2b:b4:fb:d3:f7:ea:22:5e:d2:65:
d6:63:65:61:86:80:c0:62:08:01:4a:1e:c2:89:0c:
25:ab:67:e2:54:92:a6:73:0b:32:b2:33:92:92:b4:
d8:c9:a5:e1:c1:f6:01:ca:55:24:a6:ff:6e:bc:3e:
3e:0f:c2:23:0c:b9:a0:f2:db:3b:3e:cd:d6:10:15:
f9:46:2b:7d:6b:39:a9:b6:0c:18:aa:02:7f:96:00:
b7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:90:56:B4:C6:5D:E3:85:7D:4D:0E:1D:B0:02:3D:60:B6:F7:D3:0C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/zpBWtMZd44V9TQ4dsAI9YLb30ww.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136620
sbgp-ipAddrBlock: critical
IPv4:
103.105.48.0/22
IPv6:
2402:28c0::/32
Signature Algorithm: sha256WithRSAEncryption
92:ca:24:62:ce:8d:cb:0e:81:61:01:4a:ee:86:69:dd:bc:85:
6a:4b:e2:55:ab:25:8c:1a:80:04:c2:99:7e:26:62:20:d4:45:
33:13:ef:d1:aa:a6:a1:3d:21:23:f1:f8:a8:c2:e4:8b:80:09:
ab:06:2b:d7:67:e4:d7:fd:7e:67:81:9f:2b:12:6d:25:3d:d8:
03:01:1f:28:48:97:aa:b8:b7:a1:99:63:f8:eb:38:7a:5c:2a:
6b:48:d1:29:1d:35:a4:ad:8f:fc:44:b0:76:0c:e6:93:0b:a2:
4f:5e:a2:08:bd:a1:46:ea:e8:7b:5f:b4:01:58:63:83:f0:13:
1a:54:e1:3e:67:ba:9a:c7:ff:5e:73:87:80:61:20:9b:22:09:
af:7d:b8:d2:1d:1b:0d:6d:cd:41:b1:8e:7e:8e:91:31:5b:d4:
04:f8:a5:b5:1c:61:40:0c:65:1b:40:16:5c:46:63:9a:7f:42:
dc:04:85:6d:9b:d0:51:99:17:90:53:ad:d3:f2:55:3e:22:8d:
2c:09:7e:e9:ed:56:04:c3:53:ef:20:ad:d8:b5:69:f8:79:5a:
cb:bb:f2:5a:a9:fe:0b:d2:34:ef:6c:a5:bc:1e:a1:5d:20:d2:
f6:cb:0f:28:64:f3:cd:44:0b:82:d1:44:8c:05:d2:5b:a7:52:
65:df:b3:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:26:52 2024 by rpki-client on console-fra.rpki-client.org