Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LUK_n_o04UF-5rzIl9pVQVPO6uU.cer
File: LUK_n_o04UF-5rzIl9pVQVPO6uU.cer (raw, json)
Hash identifier: dTEH1wVXsXSaVWgklMScuwkXvT4YchlDhXysuwKm93Q=
Subject key identifier: 2D:42:BF:9F:FA:34:E1:41:7E:E6:BC:C8:97:DA:55:41:53:CE:EA:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0206AF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915F0EF/740BE8447F1211E8A7A5D919C4F9AE02/LUK_n_o04UF-5rzIl9pVQVPO6uU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915F0EF/740BE8447F1211E8A7A5D919C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 14 Aug 2024 15:05:08 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 9751
IP: 103.117.168.0/22
IP: 2403:2140::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132783 (0x206af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 14 15:05:08 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A915F0EF/serialNumber=2D42BF9FFA34E1417EE6BCC897DA554153CEEAE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:bb:b7:96:e0:fe:ef:22:07:ab:0b:6e:62:05:
f0:e9:b5:b4:61:55:35:26:c4:81:c2:4b:39:2e:3b:
5c:eb:0c:44:d5:55:c8:66:51:58:1f:f1:b5:59:9e:
12:97:6c:01:87:43:4e:fb:36:03:d6:c6:7d:e3:d0:
c7:40:d1:74:65:28:ba:1b:74:09:02:d8:98:a3:07:
6d:2d:3b:72:71:87:df:ba:24:46:66:22:a7:73:e0:
21:6d:c9:25:dc:3b:cc:28:54:42:89:fd:3a:24:df:
2d:1f:ab:c4:51:65:21:31:d6:0c:4f:91:a5:55:28:
c8:a4:ed:5c:72:5a:5d:08:00:82:5b:c4:c9:a0:9b:
d8:41:83:06:db:ce:3a:0a:ae:21:11:3e:84:3f:89:
a3:b5:69:83:15:34:aa:c1:d4:e8:0b:64:5d:3c:a9:
55:fb:d7:a5:fe:a1:31:08:6d:27:dc:e2:f7:72:f4:
f2:f2:7a:98:8e:38:1a:6f:00:c7:45:92:3c:73:e5:
35:bd:8c:39:e2:4e:c1:3e:40:64:ed:bf:ec:0e:15:
08:ad:c1:6e:f8:ee:d2:9e:d8:d0:09:6e:a8:12:6f:
d5:c2:6f:de:20:76:9d:70:2a:9d:c0:56:bb:ce:73:
06:4c:49:e7:2f:7c:cd:50:64:e7:b5:54:3b:f7:3a:
77:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:42:BF:9F:FA:34:E1:41:7E:E6:BC:C8:97:DA:55:41:53:CE:EA:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915F0EF/740BE8447F1211E8A7A5D919C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915F0EF/740BE8447F1211E8A7A5D919C4F9AE02/LUK_n_o04UF-5rzIl9pVQVPO6uU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9751
sbgp-ipAddrBlock: critical
IPv4:
103.117.168.0/22
IPv6:
2403:2140::/32
Signature Algorithm: sha256WithRSAEncryption
08:98:e8:28:1d:42:23:e4:f3:d3:44:d8:62:af:d1:37:51:e4:
67:8e:a0:4a:ca:cf:9b:b8:75:cf:3b:54:fd:63:ae:6a:2a:04:
8d:ab:51:c2:87:bb:48:e8:69:13:0b:6c:b6:10:e7:44:2f:d1:
7e:0b:bb:8f:53:6d:f4:9b:18:0f:86:a0:92:bd:51:47:5d:3f:
7c:04:e0:4b:de:c8:0d:bc:2e:1c:b3:fd:b2:8c:b2:57:26:6e:
e1:81:26:ae:c0:22:07:af:d8:f0:73:9c:58:99:1c:1e:81:d8:
2f:5c:38:a0:08:c9:cb:bc:04:1c:9d:de:ce:3c:fa:8b:95:ef:
03:d2:1e:21:10:a7:3c:a6:13:95:10:71:11:74:56:00:e1:87:
c6:a8:1f:13:dc:6e:0d:d2:6e:ea:37:9b:c1:bd:ca:93:be:65:
1a:37:c7:d4:76:b7:f9:af:92:9c:dd:02:0b:5f:92:1c:29:2a:
35:f4:98:07:8d:3f:51:c3:42:4e:9f:75:bb:12:4f:ec:a7:4d:
ac:4f:70:ab:a8:32:2c:36:da:c1:88:8f:a7:be:bb:d7:53:67:
4e:ab:9f:4c:a5:04:37:5e:d0:94:e4:3a:01:9b:ff:09:5e:4d:
37:99:d0:32:47:c4:d8:d3:7c:e0:a8:40:b1:de:26:89:6d:42:
e4:44:c8:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:46 2024 by rpki-client on console.sobornost.net