Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/np0Olq5Cf2a1j2ayJKbvVmJ2Hks.cer
File: np0Olq5Cf2a1j2ayJKbvVmJ2Hks.cer (raw, json)
Hash identifier: viKVNIG8W/9zrfXq2U3UA6WwpY9vuIrbt/nDAfkyk9g=
Subject key identifier: 9E:9D:0E:96:AE:42:7F:66:B5:8F:66:B2:24:A6:EF:56:62:76:1E:4B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020FD7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9137E65/5ED05532D4D311EA97353944C4F9AE02/np0Olq5Cf2a1j2ayJKbvVmJ2Hks.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9137E65/5ED05532D4D311EA97353944C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 26 Sep 2024 20:58:08 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 140962
IP: 103.153.210.0/23
IP: 2406:4bc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135127 (0x20fd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 26 20:58:08 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9137E65/serialNumber=9E9D0E96AE427F66B58F66B224A6EF5662761E4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:32:b3:8f:c3:4b:9c:4e:41:02:cf:ee:88:b8:
4f:11:8b:dd:d0:ab:27:03:2a:83:0a:2b:67:6b:a5:
d6:cd:8c:ad:41:5f:2d:69:6d:59:63:0d:51:9e:aa:
16:09:e3:81:fb:ea:70:6b:3e:ef:b6:d2:c1:10:b9:
aa:d7:53:fe:1f:b0:b9:3c:99:eb:87:e9:54:d8:56:
7e:6c:1e:7f:75:33:ed:a8:e9:41:7c:90:ff:ff:71:
19:c3:5f:3d:75:b8:80:2d:0d:da:3d:8b:a6:02:42:
ec:83:be:3b:65:e6:cb:c0:05:49:c0:4a:63:61:c4:
6b:55:64:55:51:6b:14:84:ac:ad:68:ea:fe:a3:20:
d4:09:46:a8:1f:a4:54:3a:23:e0:eb:95:54:d8:f8:
d5:a1:4d:e4:7f:cc:f6:a2:30:f4:bf:18:08:c9:b0:
80:a2:f4:db:b3:86:c1:15:8e:00:2a:da:47:1e:8d:
75:ad:3c:9a:b2:53:eb:09:3b:5a:71:7d:7c:a6:82:
4a:13:a0:93:6b:e8:dc:f7:c3:10:11:7a:5f:d7:80:
fa:8d:c5:b4:55:a3:3c:ba:a0:46:60:a0:d2:54:38:
85:e7:45:b4:17:37:79:6a:de:c1:bf:cb:e9:1e:db:
a7:e8:72:7e:f5:fc:3c:cb:bd:a8:64:15:0a:cb:6e:
60:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:9D:0E:96:AE:42:7F:66:B5:8F:66:B2:24:A6:EF:56:62:76:1E:4B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9137E65/5ED05532D4D311EA97353944C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9137E65/5ED05532D4D311EA97353944C4F9AE02/np0Olq5Cf2a1j2ayJKbvVmJ2Hks.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140962
sbgp-ipAddrBlock: critical
IPv4:
103.153.210.0/23
IPv6:
2406:4bc0::/32
Signature Algorithm: sha256WithRSAEncryption
11:52:9d:1f:8e:61:07:17:6a:00:1e:55:07:c8:b7:b7:6e:f0:
45:97:20:7e:3e:51:5a:ed:65:a4:32:2a:7e:44:d8:10:69:4c:
e3:83:28:22:37:4a:55:29:2e:c8:79:16:94:f0:35:c0:8a:af:
b3:8a:fc:66:2b:c1:64:ac:54:5b:fa:b7:4c:49:c0:92:a7:10:
3c:cc:11:61:14:fd:17:c4:95:54:fc:9e:a4:b9:fb:3a:14:6c:
dd:0e:68:f5:9f:53:88:71:18:79:45:67:1a:eb:bb:94:1c:c6:
17:f9:e1:90:5d:f5:68:c4:8a:25:06:e3:8e:ad:c6:bf:d0:12:
67:1c:ea:56:d4:0c:c8:35:68:e7:89:c4:2b:a5:be:e5:47:9b:
d0:a9:e7:8e:78:1a:42:04:8b:cc:65:18:39:61:dd:e1:db:0c:
13:85:8d:b6:7d:f3:d2:95:c0:2d:5c:43:45:55:66:7c:3c:93:
f6:81:fd:7e:9b:8e:b4:e6:bc:99:63:28:96:7e:b0:94:14:06:
eb:87:d7:fe:f7:6f:33:c0:2b:99:36:f7:52:e3:d6:a4:3b:eb:
51:b6:76:4c:59:74:3e:eb:a4:d1:cc:69:48:a7:9e:4f:7c:72:
1c:c6:1e:69:c1:c5:14:ff:2a:0b:aa:79:f7:0f:d4:f7:ad:1f:
74:82:ae:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:07 2024 by rpki-client on console.sobornost.net