Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer
File: nL-xN0vpMpetwbIdvTeY0VvSdN8.cer (raw, json)
Hash identifier: SG1U6/qQthwiDUn9Gz81JFOYQfogJVhqpsz8njMzyu4=
Subject key identifier: 9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F23D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 16 May 2024 14:25:58 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 137467
IP: 103.244.184.0/22
IP: 2402:c6c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127549 (0x1f23d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 16 14:25:58 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:1a:e9:f9:3d:7b:d5:93:50:1e:e8:ec:44:99:
86:fe:91:0c:ce:eb:4b:d0:4e:4b:41:64:6f:30:c4:
13:e8:4f:7e:9c:87:5a:77:fc:e1:d7:db:aa:a7:a3:
59:7d:39:39:99:b5:e0:72:3c:dc:a8:80:19:1e:d4:
43:4c:47:81:9f:a7:d6:77:aa:4d:7a:eb:69:5f:f4:
93:55:b2:ab:d4:14:50:e6:b8:cd:ce:f0:95:34:b4:
d3:18:df:93:05:f1:f0:6d:16:a0:f0:0b:3d:0f:63:
b2:ba:b2:f0:b7:0b:83:2c:d3:fa:f3:4a:1d:b8:01:
ab:99:d4:a2:ef:a1:24:42:52:c0:8b:54:43:36:ba:
d6:1f:c7:29:94:ee:53:1c:26:d2:dc:be:26:68:4a:
e2:cf:de:27:e0:53:46:4e:aa:f1:09:4b:91:81:32:
29:54:af:26:fa:e4:37:11:7f:e2:af:5d:bf:94:a6:
95:df:d3:1f:1f:05:1e:30:ac:c2:92:50:aa:da:0e:
d7:89:54:62:95:d7:39:92:c1:48:19:3f:a0:0b:d3:
e1:6f:a5:bc:a9:cc:53:eb:3e:8e:40:62:e8:93:2e:
80:aa:11:c8:a8:3d:2d:f6:67:8f:89:1c:67:82:10:
a4:d3:1b:0c:76:b7:74:a5:1c:47:67:2b:29:e2:59:
85:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137467
sbgp-ipAddrBlock: critical
IPv4:
103.244.184.0/22
IPv6:
2402:c6c0::/32
Signature Algorithm: sha256WithRSAEncryption
0c:1f:ce:87:fc:7f:33:7e:ba:90:d0:e6:68:e8:45:27:1d:67:
ab:9f:48:a1:23:d3:2b:67:b2:4c:2a:1a:ba:13:45:8b:45:52:
7b:ff:d9:f8:57:2a:7e:2d:85:bf:ab:69:22:41:95:44:f6:2c:
8c:c5:45:51:9e:4b:f4:07:83:78:08:52:a0:e1:7d:c8:e4:8d:
f8:df:8d:58:ef:d6:29:6e:58:90:91:99:e8:33:fc:15:13:d8:
40:70:83:97:00:9f:49:95:97:1e:c2:ff:f4:69:ed:ad:15:b9:
bd:54:71:3c:c3:e4:71:48:e8:ec:0d:40:2b:e6:4c:f0:bc:b7:
f0:e4:45:5d:1b:64:e5:93:ef:1a:d5:40:0c:b3:c5:1f:7a:e0:
ca:38:42:f4:a8:6c:3a:51:be:db:2f:7e:bf:11:fa:5d:61:2d:
2c:7c:72:23:2d:2d:32:a5:f6:1e:5a:af:6d:ce:08:ff:ed:28:
29:bf:13:ee:ff:ac:eb:5b:0a:8c:93:8f:f7:85:ef:28:13:eb:
10:f5:ef:13:2c:4d:73:64:a7:f3:58:3a:a9:5d:4c:8d:d2:b9:
c3:37:98:bb:8f:b8:ba:34:67:80:28:1e:50:5c:01:c4:87:5a:
a3:83:62:e3:43:e2:04:91:c2:4f:23:02:25:e7:1f:ca:ad:9d:
58:54:39:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:07 2024 by rpki-client on console.sobornost.net