Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer
File: Ntd-kkOrui_VSWopGDC304sLy8Q.cer (raw, json)
Hash identifier: /d8ol0knOD4KJSASKM6mjTXFnXZFP3YQoIalShnCF28=
Subject key identifier: 36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C863
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Nov 2023 15:08:38 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 133115
IP: 43.249.28.0/22
IP: 45.249.92.0/22
IP: 103.43.160.0/22
IP: 103.80.24.0/22
IP: 103.97.0.0/22
IP: 103.210.236.0/22
IP: 103.218.0.0/22
IP: 103.243.180.0/22
IP: 160.20.56.0/22
IP: 202.3.134.0/24
IP: 202.43.232.0/21
IP: 202.52.144.0/24
IP: 202.58.101.0/24
IP: 202.94.68.0/24
IP: 2400:51c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116835 (0x1c863)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 15:08:38 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:29:94:96:f8:36:d2:36:24:16:d8:ea:ed:b1:
5e:47:73:f6:a9:9c:5c:80:b7:cb:c0:d5:b0:8c:4d:
82:45:e3:d2:36:6e:6d:eb:66:89:c5:1f:b5:45:cd:
e3:31:da:e3:6e:bc:c3:91:7c:e3:ed:59:60:b8:76:
62:13:10:2e:1e:dd:29:82:bd:f5:61:4a:3e:98:17:
0d:d6:1f:db:f5:5a:82:96:78:e2:0c:b1:3b:15:a2:
a8:54:b8:cd:25:82:e4:37:8b:2f:c9:0f:40:d1:02:
03:50:02:54:c1:1f:94:61:ce:62:9f:5a:74:0c:ce:
ad:6e:bc:d7:b6:9f:42:bb:d4:39:30:07:ab:83:7e:
cc:dd:67:20:50:91:d4:91:c7:71:b9:ee:b9:a0:0e:
71:3e:7a:51:ae:44:ba:96:5d:56:fa:77:87:88:d5:
82:27:3c:b3:a0:37:eb:4b:1f:3a:d3:99:5e:b2:91:
f7:09:d5:32:4f:5b:7b:0f:a3:7c:da:78:2c:a1:f3:
70:3c:71:58:3d:c8:87:80:1c:de:ee:dd:b1:f7:1b:
4f:a7:14:68:18:47:26:76:77:58:73:0a:d5:29:1c:
9a:63:2d:2c:99:2f:d2:4e:aa:49:71:ba:84:ea:97:
0a:00:9a:c4:fc:e5:45:5a:32:be:b1:fe:67:bf:12:
a7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133115
sbgp-ipAddrBlock: critical
IPv4:
43.249.28.0/22
45.249.92.0/22
103.43.160.0/22
103.80.24.0/22
103.97.0.0/22
103.210.236.0/22
103.218.0.0/22
103.243.180.0/22
160.20.56.0/22
202.3.134.0/24
202.43.232.0/21
202.52.144.0/24
202.58.101.0/24
202.94.68.0/24
IPv6:
2400:51c0::/32
Signature Algorithm: sha256WithRSAEncryption
cc:1c:c4:5c:61:9b:34:9e:eb:f7:d5:4b:e4:2b:79:66:39:58:
ad:71:7b:85:e8:7b:7a:f8:fe:9a:32:c4:18:eb:bf:90:c0:cf:
95:59:83:b6:26:bb:55:e4:f6:8c:39:16:55:7c:d8:49:ee:33:
22:2e:31:07:8d:ff:e6:ee:a3:d3:b1:32:19:96:af:41:d4:29:
1d:34:39:32:eb:1a:58:07:1f:54:01:c1:70:4e:aa:71:cb:82:
61:22:62:38:d7:d9:4c:20:91:1d:ba:2e:00:01:ae:26:87:c1:
5a:d1:26:81:3f:13:6f:48:1a:23:71:bc:af:2b:7b:a4:23:3e:
bb:08:a0:16:fc:31:05:4d:eb:7c:93:bc:2e:b2:6e:58:f4:a0:
64:83:40:b6:06:69:24:da:03:35:a0:56:eb:ff:4a:9b:47:24:
2f:41:d8:8c:71:ee:2a:2b:79:47:e0:b5:e8:5b:74:c5:d9:5f:
b4:7b:b9:7a:89:21:48:6c:bb:a1:8c:0b:1d:c1:0f:74:7f:79:
4e:97:54:88:f6:ce:9e:a4:e5:7c:4e:f7:64:46:a0:a7:7e:db:
87:75:b7:ac:d4:fc:c4:3e:76:33:62:a2:9e:e9:df:e5:8b:8a:
d2:60:19:8f:89:f5:15:44:fa:2c:b0:72:0d:45:12:5e:5e:6e:
a7:90:e3:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:10:39 2024 by rpki-client on console-ams.rpki-client.org