Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n0mgwprfTYMDB3M9LGCp2TEQogg.cer
File: n0mgwprfTYMDB3M9LGCp2TEQogg.cer (raw, json)
Hash identifier: XyfkQniXMIKDxe7eZPhcgkbMoDW2j/1oaoWP7MIhWaY=
Subject key identifier: 9F:49:A0:C2:9A:DF:4D:83:03:07:73:3D:2C:60:A9:D9:31:10:A2:08
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0219FE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919B393/326CBD58325711EDB88DFC2CC4F9AE02/n0mgwprfTYMDB3M9LGCp2TEQogg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919B393/326CBD58325711EDB88DFC2CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 17:12:37 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 137953
IP: 103.243.244.0/23
IP: 2001:df1:4440::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137726 (0x219fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 17:12:37 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A919B393/serialNumber=9F49A0C29ADF4D830307733D2C60A9D93110A208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:34:db:b7:5f:55:92:98:64:ba:53:ba:d3:97:
7d:e0:41:0b:2b:bd:0a:f6:e5:83:38:5f:be:d3:f0:
df:62:f2:3e:8b:b9:36:38:c9:56:f9:e0:ea:eb:27:
93:2d:ef:31:7e:4b:9d:08:e3:8a:db:94:37:a7:65:
2b:f7:04:d4:1b:ad:29:78:f4:0e:a7:2e:84:96:b7:
f4:68:fe:f6:01:10:24:b4:1e:c2:0d:88:d9:15:b5:
cb:53:38:17:18:27:a4:2e:5a:0d:74:49:84:ff:74:
79:f0:0e:48:c7:44:2f:b5:a4:f2:ea:d0:1a:b8:c9:
7a:94:ae:21:43:7f:40:25:62:be:dc:95:94:ff:35:
2e:e8:05:28:74:8d:25:8d:91:41:d8:70:63:8f:d0:
91:f1:71:e7:93:4d:37:f2:78:de:3a:2b:49:59:41:
0d:25:23:39:48:a5:55:3a:46:19:77:6a:92:e7:38:
f1:70:a3:e3:ff:0a:92:ee:cd:8d:9a:b7:c3:4b:f0:
47:27:28:34:ad:f0:f5:b0:35:f8:89:d0:26:7b:87:
a0:cd:3c:77:31:2e:54:6f:06:78:87:bc:c6:84:41:
96:e8:f4:32:4f:1e:d5:67:da:1d:ca:86:8a:4f:1c:
92:20:60:49:c7:56:69:7b:2a:30:ec:1d:25:c8:45:
07:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:49:A0:C2:9A:DF:4D:83:03:07:73:3D:2C:60:A9:D9:31:10:A2:08
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919B393/326CBD58325711EDB88DFC2CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919B393/326CBD58325711EDB88DFC2CC4F9AE02/n0mgwprfTYMDB3M9LGCp2TEQogg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137953
sbgp-ipAddrBlock: critical
IPv4:
103.243.244.0/23
IPv6:
2001:df1:4440::/48
Signature Algorithm: sha256WithRSAEncryption
87:ab:3d:db:6f:9c:2e:8f:7e:ad:5f:9a:c2:6c:ff:df:fb:48:
ec:4b:b5:e6:c3:3e:89:33:3f:39:f7:52:ff:19:8c:52:b5:33:
43:67:1b:82:75:1b:02:89:ff:bc:1a:42:5a:cd:89:e6:b1:a5:
4a:29:3c:a7:68:5f:a3:cb:d2:c4:71:ba:d4:dd:0a:18:7a:b1:
74:70:af:49:cc:a4:52:ed:0b:1c:8f:74:cf:20:37:6b:ac:83:
ad:d6:07:0f:c7:b8:33:f3:39:23:a0:06:50:1b:c1:13:56:f3:
76:39:b4:43:3d:9f:b2:e9:aa:0b:af:04:5b:90:d9:ff:7b:d9:
71:3f:12:90:b9:3f:cb:2c:10:35:db:25:99:72:2f:52:6a:3c:
1a:ef:ca:9d:cd:4a:00:5b:f2:89:25:a0:6d:a3:91:29:fe:d0:
02:e7:49:66:1a:c5:01:38:e9:90:04:5c:1b:93:06:1b:f6:68:
85:a4:0f:41:8e:4f:26:7e:e9:14:64:13:14:cc:bd:59:93:5c:
34:c5:09:e5:7f:24:51:8c:78:e1:ab:72:91:3a:ca:4f:8c:2c:
1c:14:14:d6:24:5d:44:ea:bb:4f:6c:6e:d5:56:bf:31:7b:a1:
9b:fa:b3:6c:76:14:45:48:3e:30:d0:8a:09:7d:24:79:38:08:
be:b4:da:c3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:46 2024 by rpki-client on console-ams.rpki-client.org