Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0LR5KL_bnbNR4dQlatArZyj5XPU.cer
File: 0LR5KL_bnbNR4dQlatArZyj5XPU.cer (raw, json)
Hash identifier: ck8il6Z1eBx5vACyIwMQ/1ikpfEs1BLvCpf2i1fBKpE=
Subject key identifier: D0:B4:79:28:BF:DB:9D:B3:51:E1:D4:25:6A:D0:2B:67:28:F9:5C:F5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D408
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9174306/2B5AEC70A2EE11EEA6354F5EC4F9AE02/0LR5KL_bnbNR4dQlatArZyj5XPU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9174306/2B5AEC70A2EE11EEA6354F5EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 25 Dec 2023 06:23:57 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 152092
IP: 43.250.180.0/23
IP: 2001:df3:15c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 08:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119816 (0x1d408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 25 06:23:57 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9174306/serialNumber=D0B47928BFDB9DB351E1D4256AD02B6728F95CF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4f:89:34:16:0e:f7:7f:4d:15:44:26:0a:21:
a3:30:da:c7:44:72:68:96:26:78:6f:73:e2:92:f7:
06:e5:65:29:69:4a:9a:c8:18:16:0f:d7:36:ff:32:
1d:2e:d2:a0:01:8f:7e:95:9e:ce:39:0f:32:61:c1:
bf:43:f6:7d:4a:95:af:b2:bd:7f:cc:e0:1b:86:64:
1b:9d:99:84:0f:0d:d0:a3:22:c5:b2:c9:95:33:72:
28:44:ae:a1:24:91:b0:c5:e6:ce:ec:47:df:bd:94:
ff:07:38:f2:2c:56:9b:64:1c:da:c1:e0:20:5f:4e:
a6:c2:1a:59:2c:c7:de:80:a5:3a:4a:25:15:49:f1:
2d:0c:40:2b:2e:c0:b6:46:14:20:0e:3c:92:82:db:
f5:16:42:0a:3a:e3:7b:05:40:bf:99:e0:4c:2c:01:
ea:7e:15:7d:f1:9c:65:e1:f0:4a:67:6c:08:70:de:
e2:62:8e:43:b7:16:3d:86:44:d4:5d:4b:b0:e0:ec:
f3:8f:94:ae:0c:4b:d4:29:23:cf:cc:64:c1:be:29:
97:9a:70:08:0c:86:f2:68:c3:a5:f2:5f:84:f1:aa:
81:01:15:62:06:b8:fb:7a:af:4c:79:75:28:23:de:
90:8a:e2:a4:89:fc:62:5a:6b:07:f4:78:53:2c:47:
d7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:B4:79:28:BF:DB:9D:B3:51:E1:D4:25:6A:D0:2B:67:28:F9:5C:F5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9174306/2B5AEC70A2EE11EEA6354F5EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9174306/2B5AEC70A2EE11EEA6354F5EC4F9AE02/0LR5KL_bnbNR4dQlatArZyj5XPU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152092
sbgp-ipAddrBlock: critical
IPv4:
43.250.180.0/23
IPv6:
2001:df3:15c0::/48
Signature Algorithm: sha256WithRSAEncryption
67:d2:5f:0b:db:8e:71:b0:23:12:53:b0:5f:20:ac:1b:54:bd:
e6:fd:68:77:9d:6f:71:32:eb:71:93:bb:8e:ac:91:91:6d:30:
6a:9a:c1:aa:86:17:41:bb:9e:26:11:b1:e3:ae:63:83:00:2c:
9d:ed:0f:b4:f1:3b:70:7c:7e:6c:c2:9c:0d:bd:ab:72:79:93:
93:97:f5:c3:21:ec:cf:cc:7a:61:4e:ff:00:00:b9:b1:36:96:
9e:7f:66:49:29:15:6d:e4:df:fb:21:a2:5c:b7:79:58:82:af:
2a:a9:f9:b8:22:2f:06:9f:88:5d:a1:5b:04:2b:ab:5b:cf:31:
bd:59:e5:ec:bb:32:38:67:dc:e7:1c:ab:0d:59:b9:fe:7e:2b:
ad:84:64:06:29:9f:c7:22:fe:bd:ff:1a:03:37:2c:d6:6b:a7:
ef:b2:f1:3f:63:09:69:1c:08:25:48:8f:b8:b9:6a:eb:a1:ce:
e4:ed:c2:e1:c5:7a:5e:be:3d:f5:3d:55:be:dc:c2:ba:94:70:
42:b4:57:03:60:00:11:d6:1a:56:9c:91:8d:21:6d:c6:7f:5c:
9b:67:0f:93:7c:c7:f7:bb:6a:88:32:33:a3:9c:e9:6d:ba:0e:
19:9b:4f:e5:4a:96:8f:f9:e7:58:fd:6e:90:4a:e6:b8:c9:dc:
ad:79:4f:fe
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 08:52:08 2024 by rpki-client on console-fra.rpki-client.org