Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer
File: NAcahjo8bvLdNnlfRVQOL7aJUKA.cer (raw, json)
Hash identifier: lAVR9HygrQ/7hrZDTxFdwt85TsQ8t2NJrKt8TMC97js=
Subject key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DA28
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft
caRepository: rsync://rpki.owl.net/rrdp/owl/0/
Notify URL: https://rpki.owl.net/rrdp/notification.xml
Certificate not before: Wed 24 Jan 2024 08:54:19 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 23959
IP: 103.125.232.0/22
IP: 2403:fbc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 03:16:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121384 (0x1da28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 24 08:54:19 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:aa:3c:f4:dd:42:d0:04:c1:b3:5c:46:6a:32:
76:35:c5:02:2c:44:c5:79:8d:3c:b5:c0:8b:1e:2f:
3e:48:cc:fb:9a:ce:e2:7c:1e:2e:fa:09:47:31:08:
96:ca:2b:7f:80:7a:29:51:98:65:1c:48:7c:31:c4:
e4:e3:bd:f9:78:21:2e:c9:76:34:40:4e:48:d4:d1:
da:3b:ea:db:9e:7e:18:1a:15:46:e3:1d:c2:59:a3:
f9:dc:13:2b:19:8d:5c:2e:1d:c6:29:27:d3:53:36:
21:8b:22:3d:ec:31:6c:82:bb:d3:7f:70:b0:1e:78:
10:8e:8e:f5:52:64:d0:8c:50:a0:fc:17:81:a6:b6:
9b:ab:95:af:c3:a7:48:4d:b0:6f:1e:4d:17:42:29:
ad:31:20:73:33:82:d8:6f:5f:88:61:92:40:0f:e2:
e5:dc:c9:7b:9b:85:99:14:dd:24:2b:ac:05:17:ac:
1a:84:10:b7:1a:bc:12:bc:29:c4:83:e9:b5:2d:3f:
db:5e:11:c7:bb:86:f1:46:53:26:a1:74:16:58:a3:
1f:d9:13:21:d2:56:31:a3:53:1d:f2:b5:af:e3:49:
65:2e:51:e2:8d:fc:c2:3e:09:1b:9b:4a:f0:20:9c:
b9:be:63:e1:55:70:f2:01:9b:44:b9:7e:38:4c:ed:
5c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.owl.net/rrdp/owl/0/
RPKI Manifest - URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft
RPKI Notify - URI:https://rpki.owl.net/rrdp/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23959
sbgp-ipAddrBlock: critical
IPv4:
103.125.232.0/22
IPv6:
2403:fbc0::/32
Signature Algorithm: sha256WithRSAEncryption
2e:e2:91:7f:a6:f3:8b:3c:4c:de:36:9a:98:b2:31:85:6d:e2:
cb:1a:26:81:68:2f:24:cb:b6:d9:28:af:90:c9:73:9a:63:cf:
9c:33:81:56:22:2b:b7:a7:f4:1f:84:c0:af:c7:ec:5f:d0:1b:
f1:ff:b4:d1:99:24:18:8b:b7:8e:da:ec:f4:9a:34:f8:9c:be:
ac:6b:31:c2:e9:21:38:e0:7d:70:f7:8d:c4:44:98:5a:08:c0:
32:d2:d7:24:82:f9:14:35:fa:c5:db:17:1c:54:d1:c5:13:98:
9b:7e:60:c2:34:38:37:1a:24:8a:7d:a6:46:ce:d6:5b:8a:42:
d7:02:2b:fc:e3:c8:71:85:29:02:c5:70:32:cc:be:86:1c:b4:
ad:a8:39:78:31:da:e7:80:a6:cd:f6:a1:dc:2d:f8:bf:1c:3d:
aa:f8:ff:f7:2f:4b:c4:f0:ee:21:12:db:fc:d4:9d:7a:dd:5e:
03:0e:98:d9:f7:40:18:15:a5:81:40:64:cd:72:98:09:05:c4:
1b:f8:89:33:a4:5e:dc:c5:21:f2:26:ed:58:7a:72:2e:65:03:
85:c2:13:c3:d2:ed:f5:7c:b1:a9:83:13:e9:e6:9c:61:3c:7d:
e8:db:2d:2c:d8:11:b2:5e:e0:9c:2a:d9:79:88:f4:41:14:cf:
28:da:1a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 04:07:01 2024 by rpki-client on console-ams.rpki-client.org