Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JLEMMdaR-EX86uP-MjG-VgArrGo.cer
File: JLEMMdaR-EX86uP-MjG-VgArrGo.cer (raw, json)
Hash identifier: cle9U08ZRNfMsqpy1AUfOetEBYM1Py/BAXAdK2QBtnE=
Subject key identifier: 24:B1:0C:31:D6:91:F8:45:FC:EA:E3:FE:32:31:BE:56:00:2B:AC:6A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0206D2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919C7B4/1F320CFC55F011EF99EBD820C4F9AE02/JLEMMdaR-EX86uP-MjG-VgArrGo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919C7B4/1F320CFC55F011EF99EBD820C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 15 Aug 2024 07:41:01 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 138027
IP: 103.142.3.0/24
IP: 2001:df1:2180::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132818 (0x206d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 15 07:41:01 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A919C7B4/serialNumber=24B10C31D691F845FCEAE3FE3231BE56002BAC6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7d:50:e6:ad:71:47:f0:e4:f4:d6:ee:43:a3:
ee:c4:59:32:56:82:43:bf:bf:d1:c6:6d:67:e4:31:
04:0c:77:7f:c3:4d:8d:21:87:d5:18:2b:06:23:0e:
93:da:6b:1b:b8:00:e9:96:4d:0a:82:cf:74:cd:55:
47:a9:11:a7:c6:c0:90:02:62:14:3c:9f:73:4b:55:
68:51:b4:ed:0e:3b:6d:24:63:b0:58:b0:1a:4c:ed:
35:a6:6d:4b:6c:73:e2:72:7d:46:42:25:5b:f7:81:
c3:14:fc:f5:97:2c:c8:32:f4:f5:73:e3:fd:f0:94:
09:3a:a6:98:c8:59:7a:c6:76:f9:38:31:4c:89:d5:
7e:92:f9:f9:92:99:83:c5:ef:c9:46:ed:8a:1c:42:
b5:d0:dc:f8:cf:8f:fc:3c:a8:3b:1f:9c:f8:fd:57:
9a:9d:b3:4a:66:ab:57:69:af:dd:67:d4:84:31:52:
ef:8e:b8:45:bd:a6:89:0f:7f:b1:46:5d:ac:b3:c8:
16:9e:f0:96:52:6f:82:70:7e:c8:48:15:0d:0f:93:
55:57:e4:dc:e1:e0:b7:0c:cd:6b:7f:fd:03:99:44:
6f:8a:13:9c:9a:a4:7f:e1:8b:9b:34:69:4f:72:d3:
99:81:be:a9:53:57:c8:30:08:34:e1:9d:74:d8:a1:
41:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:B1:0C:31:D6:91:F8:45:FC:EA:E3:FE:32:31:BE:56:00:2B:AC:6A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919C7B4/1F320CFC55F011EF99EBD820C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919C7B4/1F320CFC55F011EF99EBD820C4F9AE02/JLEMMdaR-EX86uP-MjG-VgArrGo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138027
sbgp-ipAddrBlock: critical
IPv4:
103.142.3.0/24
IPv6:
2001:df1:2180::/48
Signature Algorithm: sha256WithRSAEncryption
ab:23:c8:e3:74:99:cb:af:be:e1:83:7c:f3:81:ef:5b:d5:12:
a3:c4:40:34:83:2b:00:3d:12:84:cc:36:ce:bf:db:b7:78:4b:
58:1c:af:85:c1:da:e5:58:d9:7b:9f:59:c4:61:68:a0:f9:f6:
98:5f:76:7a:a2:47:7f:9d:6b:7d:bc:a1:bb:fa:57:96:eb:e1:
95:fd:4a:72:ef:75:13:38:2e:b6:02:49:8f:ec:19:ee:f4:14:
59:db:ef:67:a6:e0:24:53:9b:71:ee:4d:7f:6f:47:46:cf:fb:
c3:c3:8c:a6:2c:43:74:58:83:61:69:ac:69:9a:b7:ab:b9:29:
b8:94:b8:c5:c6:0d:2a:83:11:a3:c8:95:74:da:c9:f7:22:f3:
ae:14:53:e1:17:b9:99:21:95:3c:91:d5:c9:a1:8f:b6:14:ef:
5c:e1:0d:bf:43:d9:15:bb:11:aa:df:4a:43:e2:a3:6d:16:4e:
d9:a7:8b:88:23:a1:3c:e5:d7:2b:37:40:83:80:58:f5:89:f3:
ad:a6:a4:5b:3c:fb:b4:8a:27:f9:81:00:da:b3:76:c7:2c:11:
bf:a8:9a:af:a5:ce:af:1e:11:f3:64:08:e5:93:6e:df:7a:10:
1f:97:f1:f7:44:67:bf:4a:9b:89:4d:0c:8b:f1:79:5f:af:96:
bd:c9:10:8f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:45 2024 by rpki-client on console.sobornost.net