Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer
File: NZYOHhaeA_Rvr5H04_8TUUamMTo.cer (raw, json)
Hash identifier: xxggjWuHvPK22NVsHpb6Wv/InMmEiHy4+ImWfNMW+8g=
Subject key identifier: 35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B7FA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 21 Aug 2023 19:18:27 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 103.120.137.0/24
IP: 2001:df6:1b00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Apr 2024 17:07:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112634 (0x1b7fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 21 19:18:27 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7a:b8:89:41:22:af:d3:1f:f2:55:85:07:78:
b1:99:a7:7e:a6:9a:12:5e:a0:05:aa:e3:18:f3:ad:
7e:70:bc:22:89:b0:47:89:57:39:db:91:c3:62:fa:
1e:e3:e3:5d:b5:aa:d6:e1:f3:6a:24:84:a1:6c:45:
28:b7:1d:86:44:be:53:38:59:4d:56:c1:8f:91:d2:
eb:8d:4a:83:59:83:be:89:85:14:eb:35:f0:78:9d:
ba:be:50:63:fb:22:2d:67:68:a9:90:24:9b:4d:d4:
9a:67:aa:a2:0b:dc:9b:29:f3:72:70:b1:86:4a:05:
ac:12:16:d2:09:9b:2d:1d:e5:c4:ca:12:66:f6:23:
39:41:90:5b:13:63:b6:36:9f:4f:25:15:ca:62:a1:
12:3a:ae:f8:23:35:77:eb:6a:50:92:84:54:2a:b0:
e5:44:94:e8:93:99:c5:25:46:c2:dc:98:31:b5:c6:
ef:07:24:a2:6a:73:b8:60:73:3f:d4:bc:c5:6e:4a:
69:97:1a:01:7a:0b:c5:e8:ed:93:2a:c4:5e:c5:84:
0a:2a:12:eb:7c:a4:6a:d5:b4:f4:13:af:bf:86:4c:
25:8d:aa:7f:b3:43:f9:2d:70:34:84:fd:70:b1:9c:
88:e2:99:81:51:8c:2d:ec:47:9c:f6:81:4c:b7:00:
d7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.120.137.0/24
IPv6:
2001:df6:1b00::/48
Signature Algorithm: sha256WithRSAEncryption
8e:60:42:f6:16:16:ba:7c:fa:cf:31:92:3d:a9:04:cc:20:80:
21:64:1d:3a:e2:60:32:85:bc:47:4f:f9:68:d1:ca:04:a6:6a:
d4:e6:28:34:a7:74:d1:9a:62:18:17:d4:29:8a:f9:b5:9f:27:
89:85:f4:b8:f3:79:47:ac:c6:70:22:c5:2f:ad:08:66:00:6d:
07:28:61:9b:ab:2a:9a:0f:4d:89:dd:89:69:72:03:71:72:5c:
d9:6d:de:39:25:73:f8:fb:3e:8c:74:39:25:57:b0:e4:8f:26:
0b:1d:6d:0b:79:2a:36:d0:65:2a:30:af:a0:a4:0d:bd:de:ec:
79:6a:c4:28:91:22:d1:2c:d5:ea:56:95:08:2d:ec:2c:68:b2:
aa:9b:6b:3f:be:a6:96:44:b3:c2:73:8e:7e:54:a9:d9:5f:2e:
54:56:ea:80:17:43:ea:9f:0b:bb:69:ac:73:3d:0b:a8:de:ba:
27:ef:73:e1:5d:1a:7f:7c:42:73:56:f2:2c:d6:36:a5:71:d1:
40:ce:6a:61:63:04:32:62:d8:14:4b:ac:18:db:5e:22:d5:cf:
de:ad:2a:14:0c:2d:4f:59:c3:3f:a5:3d:bc:92:51:29:0c:43:
ad:57:9a:fe:ca:c2:ea:5c:ce:17:39:b1:f5:6e:1d:91:1a:27:
b0:96:3d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 18:45:34 2024 by rpki-client on console-ams.rpki-client.org