Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer
File: NZYOHhaeA_Rvr5H04_8TUUamMTo.cer (raw, json)
Hash identifier: mat7PQLV5RqBibpA0eV3U1zYyV/0NjqPUAZ9noM5hco=
Subject key identifier: 35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020905
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 Aug 2024 17:22:07 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 103.120.137.0/24
IP: 2001:df6:1b00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133381 (0x20905)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 26 17:22:07 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7a:b8:89:41:22:af:d3:1f:f2:55:85:07:78:
b1:99:a7:7e:a6:9a:12:5e:a0:05:aa:e3:18:f3:ad:
7e:70:bc:22:89:b0:47:89:57:39:db:91:c3:62:fa:
1e:e3:e3:5d:b5:aa:d6:e1:f3:6a:24:84:a1:6c:45:
28:b7:1d:86:44:be:53:38:59:4d:56:c1:8f:91:d2:
eb:8d:4a:83:59:83:be:89:85:14:eb:35:f0:78:9d:
ba:be:50:63:fb:22:2d:67:68:a9:90:24:9b:4d:d4:
9a:67:aa:a2:0b:dc:9b:29:f3:72:70:b1:86:4a:05:
ac:12:16:d2:09:9b:2d:1d:e5:c4:ca:12:66:f6:23:
39:41:90:5b:13:63:b6:36:9f:4f:25:15:ca:62:a1:
12:3a:ae:f8:23:35:77:eb:6a:50:92:84:54:2a:b0:
e5:44:94:e8:93:99:c5:25:46:c2:dc:98:31:b5:c6:
ef:07:24:a2:6a:73:b8:60:73:3f:d4:bc:c5:6e:4a:
69:97:1a:01:7a:0b:c5:e8:ed:93:2a:c4:5e:c5:84:
0a:2a:12:eb:7c:a4:6a:d5:b4:f4:13:af:bf:86:4c:
25:8d:aa:7f:b3:43:f9:2d:70:34:84:fd:70:b1:9c:
88:e2:99:81:51:8c:2d:ec:47:9c:f6:81:4c:b7:00:
d7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.120.137.0/24
IPv6:
2001:df6:1b00::/48
Signature Algorithm: sha256WithRSAEncryption
8f:97:10:95:a3:39:95:8e:63:76:7a:00:6b:b8:10:cf:9a:96:
ff:b0:58:c4:24:a8:f3:40:70:02:10:c7:91:2f:90:ae:b6:8c:
57:55:b4:ae:d0:62:ff:34:88:b3:15:d3:68:1f:23:2a:fa:a6:
54:be:5f:e0:0c:27:18:a2:4d:54:d6:ad:7b:a1:70:f5:23:43:
17:d3:43:15:64:d1:55:74:6d:ec:4d:58:a3:7e:8f:49:c6:c2:
6e:9c:3e:e8:dd:53:1d:cb:58:6b:1f:a0:ae:54:59:0a:f2:d8:
d5:67:bb:ba:41:02:51:f4:16:7e:60:a3:0e:3a:ed:7b:76:78:
d2:ad:3a:7b:b1:a6:a4:ed:15:d2:51:d5:b1:b1:82:31:62:09:
49:e2:46:7a:67:e8:c7:20:30:ed:33:ed:3d:61:9b:1d:26:97:
48:8b:18:19:46:9d:45:72:17:84:31:b2:de:f8:8c:3d:60:5d:
d1:8f:06:14:ce:55:c7:63:25:67:25:10:f5:db:37:35:79:01:
20:6c:14:ec:f8:12:e5:6b:ae:78:55:c7:cf:3b:16:1e:d7:b6:
dc:35:d3:8f:00:cc:0d:2d:20:7d:90:72:2c:93:6a:25:a6:7f:
60:5e:68:cd:59:d6:79:cf:19:d4:8a:00:1d:44:df:ef:f7:c6:
fc:04:2a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:38 2024 by rpki-client on console-ams.rpki-client.org