Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer
File: NAcoRkbqh4WDwlsPqefW7aCRMpg.cer (raw, json)
Hash identifier: ByvMJI90vSWKFnutRuuR3h0cw/Chl49TFk/5+xoEQeI=
Subject key identifier: 34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E982
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Apr 2024 22:46:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 140552
IP: 103.150.78.0/23
IP: 2001:df3:6180::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125314 (0x1e982)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 3 22:46:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A919C318/serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e0:b1:92:e0:6f:40:36:36:a3:4a:9c:2a:9d:
9d:94:96:03:cc:a2:97:b4:c0:b3:0d:45:37:d1:cc:
77:fb:2d:13:36:88:63:04:68:54:f8:21:3d:21:23:
8f:30:37:3c:59:43:7b:c0:b6:aa:75:56:22:78:76:
c0:36:6e:72:2b:7d:ff:77:49:d1:42:97:63:44:cd:
fe:38:e1:aa:77:fc:85:c6:2e:fb:56:f0:de:ff:9e:
2a:ae:7a:72:22:d1:e7:1f:53:fb:fb:76:a9:75:a3:
0a:44:dc:51:68:80:5d:bf:44:7a:b6:be:c6:52:8f:
35:7f:54:61:c3:52:7c:fb:13:5a:1b:24:c7:57:22:
94:61:45:9d:c9:13:e1:b2:c1:c5:55:5b:be:8f:4c:
84:16:d0:6b:5e:fb:6e:54:26:51:86:63:66:c7:16:
d8:74:24:e8:b9:0d:db:e2:a0:23:2d:b5:c3:b1:d0:
6c:a6:3a:4b:b1:d6:10:ac:cf:ea:32:cc:6d:8d:0d:
9d:f6:e2:b5:f3:05:2a:f4:7a:ba:68:5c:09:98:e7:
72:d6:8c:55:11:52:87:a7:50:48:80:a6:ff:1d:bc:
e7:56:d9:d8:ed:d7:45:d2:db:77:b0:88:b3:02:62:
49:18:d6:cb:85:0f:74:b3:d3:e1:da:ad:8e:f0:b2:
fd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140552
sbgp-ipAddrBlock: critical
IPv4:
103.150.78.0/23
IPv6:
2001:df3:6180::/48
Signature Algorithm: sha256WithRSAEncryption
6a:ee:42:65:c9:e9:ec:fe:a4:ef:ad:a9:88:79:27:6f:70:59:
eb:3f:b2:b4:c7:21:ff:c0:d0:29:4d:35:78:0f:1f:fb:f3:d2:
0b:af:ad:ad:e7:27:08:2d:b6:af:49:d4:ba:3a:6d:8a:45:df:
8d:2f:87:02:93:37:dc:64:17:0b:f9:57:22:b8:64:ed:aa:96:
bd:0b:41:0a:7b:db:40:dd:8f:f0:3a:74:74:7e:4f:1b:c6:1a:
51:ad:79:20:9f:9a:2b:c5:00:b1:64:bb:17:c4:23:f9:b7:60:
be:d0:e0:87:34:f1:f1:10:d4:c4:a9:d8:06:35:86:89:0e:01:
24:26:2f:d5:2e:0a:8a:73:21:c7:44:ac:e4:e4:12:f9:d0:bc:
58:23:4d:19:24:ef:33:e9:b3:9f:08:2e:a5:38:ae:fe:2f:11:
14:b5:6d:8c:63:fe:3f:1f:5e:2a:47:cf:f3:ce:98:19:3e:da:
16:cf:e0:0b:51:f8:78:6e:89:31:3c:8d:83:0b:5e:d6:c4:19:
14:57:e3:15:18:5a:bf:30:8b:6a:e7:a5:11:40:fc:30:ab:a4:
14:2e:75:0a:56:be:00:76:08:96:e7:94:c3:ab:87:df:f2:1d:
c2:13:cc:06:d3:e2:e4:70:88:d4:7e:39:af:95:0c:96:20:86:
39:40:f4:a6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 8 21:04:31 2024 by rpki-client on console-fra.rpki-client.org