Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer
File: nlcX9fFLsp9ntXrX2dXweRWunEM.cer (raw, json)
Hash identifier: 7HpoQZsrnwXzik8VpDpqtFhOWXKx1Zh9aPg6SH2iHco=
Subject key identifier: 9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020506
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 Aug 2024 15:10:20 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 136803
IP: 103.95.148.0/22
IP: 2401:5c40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132358 (0x20506)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 5 15:10:20 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A914E01E/serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a7:c1:94:67:db:f2:5a:38:9b:e6:bb:f0:69:
79:e2:60:e9:b2:c9:09:49:4a:bb:39:b0:44:5c:d4:
4b:7a:40:15:2f:a6:d7:a0:9f:77:c7:1e:74:90:de:
93:65:85:b1:e8:61:ea:f7:50:87:5b:17:9f:be:70:
d4:c7:2f:33:22:3c:f8:ff:d3:e6:7b:b2:7b:62:cf:
10:15:3a:8c:33:c6:66:89:e8:d2:fb:97:cd:df:7f:
a2:e8:ce:4a:87:61:1f:17:67:51:85:34:13:6f:16:
23:9a:3d:a1:73:3e:a9:95:ea:c5:a2:a7:76:d3:ab:
11:ed:d4:fc:01:7e:7b:ec:76:89:75:3d:0b:3c:9e:
ab:26:1c:51:94:8a:01:cf:87:54:d7:a3:c0:2a:a3:
e5:45:85:e2:e4:db:b0:11:7e:8a:6e:5e:9f:62:66:
c8:66:02:7d:6d:ee:01:cc:eb:4c:fc:cf:0d:c0:c1:
fa:4c:d2:97:5f:b7:42:c4:45:16:d6:fb:33:90:89:
34:0b:04:19:25:1e:aa:25:0d:76:47:45:8c:57:02:
37:5e:b6:f8:a1:f5:96:b7:17:51:a8:6d:c0:0d:0e:
45:d0:83:b8:48:aa:f1:67:bb:93:9c:2f:42:12:5c:
ec:44:52:99:fc:4d:6d:36:4b:2a:0a:fa:22:3c:dd:
2c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136803
sbgp-ipAddrBlock: critical
IPv4:
103.95.148.0/22
IPv6:
2401:5c40::/32
Signature Algorithm: sha256WithRSAEncryption
23:e5:ce:48:fc:c5:e2:22:6b:26:6d:22:55:52:09:55:0a:ec:
6f:64:0c:76:69:2f:bf:07:b1:dd:78:47:f9:b1:51:a1:51:dd:
54:df:ab:2d:1c:73:4b:01:6b:6b:37:a8:22:a6:c7:c2:d5:e6:
e4:df:ed:ff:7f:e4:23:99:e8:66:93:35:6b:8e:32:6c:e5:f0:
11:d1:0c:0d:f8:81:aa:9f:b6:f1:b2:50:52:3a:d2:f6:71:59:
d3:c9:6d:c0:5b:d4:0c:9c:f8:ba:73:95:8c:70:48:82:d0:87:
2a:d0:ca:d1:7c:0f:c9:bd:08:23:19:20:b4:80:5e:d5:20:4e:
3a:64:93:6b:54:49:17:6c:d9:6d:69:2d:d6:45:8e:18:42:0d:
f9:e4:b3:cf:05:7b:c3:61:a7:9a:20:f3:74:93:f0:81:9b:74:
a1:7a:65:de:d3:45:8d:23:51:ce:97:d0:94:17:94:e6:87:9f:
37:4d:0b:4a:e1:37:ef:bf:6d:ed:f4:e4:4e:3b:9d:53:2a:ff:
fb:c4:ba:c7:97:7f:8b:53:b8:cb:62:cd:83:33:f5:0c:4e:fe:
cf:3d:3e:77:d2:64:e8:6e:6f:68:80:a5:bb:3e:11:48:57:17:
d6:43:61:00:55:54:0a:a8:41:9e:17:c3:d3:18:51:79:62:68:
a5:7a:3f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:07 2024 by rpki-client on console.sobornost.net