Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nhu6lAj6GbXpfYLN2_-y55u7oz8.cer
File: Nhu6lAj6GbXpfYLN2_-y55u7oz8.cer (raw, json)
Hash identifier: V0M11CzPMeg104+ls6Utm9Bb6QYayOK4zrHNnSfn70M=
Subject key identifier: 36:1B:BA:94:08:FA:19:B5:E9:7D:82:CD:DB:FF:B2:E7:9B:BB:A3:3F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D0C3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919D656/93CB77AE6ACB11ED9B633B39C4F9AE02/Nhu6lAj6GbXpfYLN2_-y55u7oz8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919D656/93CB77AE6ACB11ED9B633B39C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Dec 2023 18:28:51 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 135668
IP: 103.78.136.0/24
IP: 203.0.27.0/24
IP: 2001:df6:3a00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118979 (0x1d0c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 8 18:28:51 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A919D656/serialNumber=361BBA9408FA19B5E97D82CDDBFFB2E79BBBA33F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:60:ae:5a:94:67:7d:c0:73:ee:e9:0c:85:09:
8b:9c:98:f9:90:64:d9:e3:3a:ae:77:a5:77:c2:51:
53:2e:db:89:6a:35:86:92:ef:69:53:5d:68:06:2c:
b0:96:47:f7:d9:60:a7:46:5b:de:37:fe:80:36:ff:
a4:c8:42:72:4b:51:43:fe:33:7b:01:ea:f8:23:42:
dc:48:d5:00:61:81:48:7d:7b:0f:31:d0:26:12:9c:
b5:58:31:3b:25:95:c9:36:34:18:23:91:5f:eb:7e:
0c:30:4e:2a:72:6b:a7:2a:ac:f0:c2:d8:dc:4c:7e:
27:99:73:9c:c3:ff:04:b0:3e:c2:d1:da:ac:7c:1a:
bb:da:b0:2f:e6:09:30:9e:59:55:15:a7:30:b5:49:
0a:16:b4:c2:08:a0:76:b2:1b:c2:03:66:ae:78:5c:
f9:00:e8:1d:d3:60:d2:f6:ad:ab:a2:43:a6:43:e1:
6c:29:9e:e1:67:a1:e9:68:8f:89:5e:a3:a1:0c:d2:
80:a1:36:01:e0:35:3a:29:ed:73:79:90:88:31:05:
31:03:db:fd:20:52:05:ce:e0:c2:0a:06:05:76:a9:
0d:89:8f:1c:5e:af:54:e4:d9:34:51:62:b6:73:10:
3e:1a:c8:e0:ed:cc:af:a2:d0:b9:2a:58:db:d8:69:
c0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:1B:BA:94:08:FA:19:B5:E9:7D:82:CD:DB:FF:B2:E7:9B:BB:A3:3F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919D656/93CB77AE6ACB11ED9B633B39C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919D656/93CB77AE6ACB11ED9B633B39C4F9AE02/Nhu6lAj6GbXpfYLN2_-y55u7oz8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135668
sbgp-ipAddrBlock: critical
IPv4:
103.78.136.0/24
203.0.27.0/24
IPv6:
2001:df6:3a00::/48
Signature Algorithm: sha256WithRSAEncryption
b5:5b:0c:e7:fc:a1:75:fc:f4:a4:ef:28:ee:50:47:f3:31:51:
95:ff:48:b0:b6:91:c9:46:e6:1e:e6:2f:ad:5d:1f:50:c5:77:
55:cc:e1:71:b5:3e:fe:1c:3c:af:81:0f:ef:bf:3d:60:65:5c:
41:35:2f:e0:93:f6:f5:2f:96:5e:09:5c:d9:ef:40:3e:e5:77:
1f:98:db:f0:ba:86:61:94:61:f6:40:67:fc:3a:d6:06:75:7d:
05:e1:68:f5:f1:63:3c:c1:df:84:a1:3f:ec:03:64:3b:5c:66:
89:12:ed:ce:8c:aa:7b:1b:e5:73:c3:38:24:43:56:b7:70:e5:
09:62:e6:d9:bf:ea:11:83:36:be:9d:fc:51:ca:bb:4e:c8:a4:
82:74:29:32:a7:f4:0e:53:2e:2c:93:e7:66:a0:34:d0:8d:af:
28:dd:97:43:ca:d3:e9:80:06:55:53:fd:ca:90:62:e2:22:f2:
f6:7b:89:98:3c:e9:37:21:5f:c0:35:3c:d4:7a:2e:13:fa:d0:
65:dc:b3:02:1c:70:90:d1:81:01:38:3b:4e:e4:ef:26:2b:2f:
53:5f:09:66:3c:0a:33:6c:7f:2d:9e:8d:5f:2b:6a:b9:99:0c:
77:ce:3d:90:11:5c:1a:25:f0:8f:9e:7f:b5:dd:b5:6e:99:2f:
3e:c3:1f:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 07:42:55 2024 by rpki-client on console-fra.rpki-client.org