Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer
File: NebIf2uhtlE6EnD23BNt23ETZFc.cer (raw, json)
Hash identifier: aFIPvlCXOb++X2Oawr6tq6aJSgnU50ijkJ60Y2r2RMc=
Subject key identifier: 35:E6:C8:7F:6B:A1:B6:51:3A:12:70:F6:DC:13:6D:DB:71:13:64:57
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020C8A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Sep 2024 03:50:29 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 141200
IP: 103.154.232.0/24
IP: 2001:df4:a480::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134282 (0x20c8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 9 03:50:29 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91F9749/serialNumber=35E6C87F6BA1B6513A1270F6DC136DDB71136457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:96:82:fe:af:46:cd:38:c0:e4:7e:31:a1:ac:
7e:b0:77:48:a8:ff:87:fd:e6:e2:0a:72:52:2e:67:
81:d6:76:4b:32:38:01:b0:2b:f4:97:6a:08:93:b5:
bd:72:b7:2d:fa:57:a7:2a:3a:77:d5:d1:ce:05:78:
33:3d:a1:a1:9d:4e:f2:37:2e:e6:34:c3:94:d6:5e:
3f:75:0a:65:aa:f3:d9:a0:ca:19:9c:2b:fb:76:c9:
b2:1f:c7:cf:c4:aa:80:ff:64:3f:05:8b:0e:8c:8e:
c8:6f:86:77:e1:52:43:53:c6:a5:34:0f:08:89:11:
c9:05:0b:a1:ce:f4:a9:1a:dd:c0:00:ef:12:18:82:
0b:a8:d0:53:e0:8e:0a:43:94:9f:30:9b:77:85:3b:
b0:87:89:e7:0d:5c:b1:2c:d3:73:13:08:8f:80:f1:
fd:8e:fe:3c:c4:39:c5:88:6b:54:84:c0:7f:1f:9a:
dc:ae:ec:b3:e8:45:8d:a4:84:c2:95:e9:75:4b:d2:
7e:2e:4b:89:ad:30:59:99:04:10:ca:1f:34:78:e9:
81:38:2c:58:a0:54:c5:dc:e5:c5:17:ec:86:fa:ea:
a7:08:de:6f:29:5d:67:57:e7:b3:39:97:ae:ed:7c:
5a:b7:6d:90:61:83:03:c0:41:70:6f:69:33:60:fd:
5a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:E6:C8:7F:6B:A1:B6:51:3A:12:70:F6:DC:13:6D:DB:71:13:64:57
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141200
sbgp-ipAddrBlock: critical
IPv4:
103.154.232.0/24
IPv6:
2001:df4:a480::/48
Signature Algorithm: sha256WithRSAEncryption
12:08:cb:0e:65:7c:ab:8c:7f:bb:fe:28:a9:2f:6d:12:bb:56:
28:e1:b2:99:43:a5:0a:26:99:4c:65:24:48:68:b3:ce:fe:57:
82:e9:59:d3:71:fe:9c:0d:a0:b5:f4:05:42:54:af:82:3b:f8:
00:6c:83:40:bf:56:d9:d2:23:86:4a:e8:2e:07:8b:06:af:79:
cc:10:0e:f5:29:c8:2c:a9:28:70:2f:a3:4f:67:86:47:b3:41:
c9:00:76:67:e6:50:21:50:2a:8d:4a:f6:52:3f:90:6f:11:f5:
ad:33:ea:b3:2a:2b:01:30:20:5b:3d:89:78:c6:02:23:3c:a0:
11:c6:38:12:57:6a:73:50:48:37:89:2b:1d:6e:c9:a6:35:bb:
8f:04:f4:8a:35:f0:45:0b:99:3a:32:7c:ee:4f:dd:32:54:d6:
97:c3:2b:89:5c:ba:0a:d1:a6:df:ba:7e:ad:3c:ac:ae:25:c1:
3d:44:c3:c3:b4:81:54:ae:4e:04:7d:f0:5c:51:9d:7b:05:d9:
cc:76:47:7d:a7:6c:1f:f8:22:95:80:c7:33:c3:f2:f5:e4:64:
39:0a:d0:b4:f0:6d:dc:b0:cf:5b:16:11:93:09:8e:ef:cb:d8:
01:21:36:3d:8a:96:d9:fe:62:1d:3c:00:7b:5e:be:19:26:f8:
34:cd:e8:99
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:48 2024 by rpki-client on console.sobornost.net