Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer
File: NNe9YUOWrkRRcOBY4K7c661JQF8.cer (raw, json)
Hash identifier: mtOvZu2892AeEKYcG2VafwZPHA4dGQn2eWQ7SEMaKro=
Subject key identifier: 34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020DE2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 17 Sep 2024 03:40:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 135279
IP: 103.212.36.0/22
IP: 139.5.144.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134626 (0x20de2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 17 03:40:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A9133F6B/serialNumber=34D7BD614396AE445170E058E0AEDCEBAD49405F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:94:1c:29:fd:01:94:0a:32:a5:16:c0:fa:ac:
72:87:bf:54:59:88:30:2d:75:09:08:3e:c4:25:84:
01:74:53:89:c6:92:77:98:06:9d:e7:a8:78:c2:bb:
06:7e:2b:d6:49:b4:31:3a:be:b9:d4:b6:25:ec:bf:
68:f9:1b:82:18:8c:8d:3f:fc:0e:2b:4e:36:e4:bf:
5b:83:0b:d6:25:e8:65:2b:d7:58:fa:7e:64:b9:54:
62:9a:97:06:d1:ac:98:59:c4:a2:9b:51:a1:aa:22:
1e:90:57:58:d8:1c:83:12:28:b4:d0:b4:b4:d5:e9:
ee:d7:1f:cc:4b:86:c9:8a:e4:60:98:42:ff:0c:a4:
c8:5e:fe:ab:e1:c0:ad:bb:f8:c5:9e:4d:9e:cc:e1:
10:3e:35:87:5e:48:df:0b:92:e2:19:28:57:64:b3:
68:21:ec:8d:4a:74:0b:08:36:6e:22:72:3d:ba:9d:
34:95:8c:b1:92:8b:b5:d6:6d:c0:cb:8b:42:28:f8:
11:99:af:11:c6:9a:2e:a2:d7:a2:3e:c9:62:67:74:
c6:ec:93:47:56:26:df:c4:54:27:c1:11:06:72:4e:
ad:0b:43:7e:62:c5:24:da:69:8b:7b:56:4e:c4:fd:
53:15:b4:84:99:a3:7f:98:4b:bb:dd:fb:36:2a:e6:
bd:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135279
sbgp-ipAddrBlock: critical
IPv4:
103.212.36.0/22
139.5.144.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:92:db:53:d6:84:b9:b3:d2:55:a1:de:0d:85:08:80:16:0d:
5a:b5:66:46:a1:29:16:3d:88:15:ea:2e:8f:f2:01:ac:63:3c:
fa:5d:fe:f3:e2:e8:3f:04:08:4c:84:26:cf:fd:68:c0:37:b2:
12:d5:58:86:9c:8a:cd:16:c7:99:1d:a0:56:fa:f8:0a:23:61:
55:96:72:0f:c5:01:d2:f1:ab:5f:5d:17:6f:0e:e9:ed:48:c6:
4b:bf:ea:30:6b:e7:34:36:bc:ca:a1:be:9e:c6:bc:a8:e0:cf:
43:cc:e0:d1:47:2f:0d:74:9b:db:38:fe:80:67:1e:3f:4e:a3:
6c:50:1e:33:4a:3e:4a:c9:fb:08:b8:c0:3b:3f:d0:98:ad:85:
f4:13:4d:33:5a:52:47:13:c3:b6:96:72:ed:bb:0a:3c:cc:bf:
ea:34:0d:e9:92:4a:a4:d1:7c:55:64:a3:95:e2:ef:a7:cd:fa:
52:19:47:e7:25:a7:dd:7a:8a:73:9e:77:15:1b:f5:e1:d0:bb:
e5:3a:cb:e1:87:59:ab:8f:b7:1a:ee:14:7a:a0:35:5b:37:32:
ce:3e:a5:8e:db:ba:e9:58:f1:9b:0e:ce:32:58:29:9d:39:5d:
d1:3a:af:44:b4:74:25:9f:35:9d:f2:ba:8d:de:e0:67:22:91:
ea:67:72:33
-----BEGIN CERTIFICATE-----
MIIGIDCCBQigAwIBAgIDAg3iMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDkxNzAzNDAzOVoXDTI1MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzNGNkIxMTAvBgNVBAUTKDM0RDdCRDYxNDM5NkFFNDQ1MTcwRTA1
OEUwQUVEQ0VCQUQ0OTQwNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDalBwp/QGUCjKlFsD6rHKHv1RZiDAtdQkIPsQlhAF0U4nGkneYBp3nqHjCuwZ+
K9ZJtDE6vrnUtiXsv2j5G4IYjI0//A4rTjbkv1uDC9Yl6GUr11j6fmS5VGKalwbR
rJhZxKKbUaGqIh6QV1jYHIMSKLTQtLTV6e7XH8xLhsmK5GCYQv8MpMhe/qvhwK27
+MWeTZ7M4RA+NYdeSN8LkuIZKFdks2gh7I1KdAsINm4icj26nTSVjLGSi7XWbcDL
i0Io+BGZrxHGmi6i16I+yWJndMbsk0dWJt/EVCfBEQZyTq0LQ35ixSTaaYt7Vk7E
/VMVtISZo3+YS7vd+zYq5r0HAgMBAAGjggMVMIIDETAdBgNVHQ4EFgQUNNe9YUOW
rkRRcOBY4K7c661JQF8wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTMzRjZCLzk4NTI5MzNFNzRBNjExRUZBQjRCMDUzQ0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzM0Y2Qi85ODUyOTMzRTc0QTYxMUVGQUI0QjA1M0NDNEY5QUUwMi9OTmU5WVVP
V3JrUlJjT0JZNEs3YzY2MUpRRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhBvMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCZ9QkAwQCiwWQ
MA0GCSqGSIb3DQEBCwUAA4IBAQBdkttT1oS5s9JVod4NhQiAFg1atWZGoSkWPYgV
6i6P8gGsYzz6Xf7z4ug/BAhMhCbP/WjAN7IS1ViGnIrNFseZHaBW+vgKI2FVlnIP
xQHS8atfXRdvDuntSMZLv+owa+c0NrzKob6exryo4M9DzODRRy8NdJvbOP6AZx4/
TqNsUB4zSj5KyfsIuMA7P9CYrYX0E00zWlJHE8O2lnLtuwo8zL/qNA3pkkqk0XxV
ZKOV4u+nzfpSGUfnJafdeopznncVG/Xh0LvlOsvhh1mrj7ca7hR6oDVbNzLOPqWO
27rpWPGbDs4yWCmdOV3ROq9EtHQlnzWd8rqN3uBnIpHqZ3Iz
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:48 2024 by rpki-client on console.sobornost.net