Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer
File: nPBecCTUpIfgt54vV1Jb80XbU-w.cer (raw, json)
Hash identifier: L7EFWMYRNumW2I0mdu7SQ4P0WC+YTVk8K7vhkxurnXs=
Subject key identifier: 9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0211D9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.mft
caRepository: rsync://rsync.rp.ki/repo/misakaio/0/
Notify URL: https://rrdp.rp.ki/notification.xml
Certificate not before: Thu 03 Oct 2024 13:26:47 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 23961
AS: 142616
AS: 152156
IP: 103.170.232.0/23
IP: 2407:b9c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 02 Dec 2024 22:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135641 (0x211d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 3 13:26:47 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9121C330000/serialNumber=9CF05E7024D4A487E0B79E2F57525BF345DB53EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5f:a8:f2:41:13:f7:fe:64:79:53:52:ee:39:
f8:64:b5:b8:91:fc:ee:84:56:e2:7a:0e:c4:98:d7:
2b:58:38:ee:d2:62:a6:83:7a:3e:83:a1:b3:e4:85:
44:e3:15:33:b0:53:df:be:56:43:eb:be:39:d2:29:
35:ac:85:63:2e:50:8e:fe:16:97:41:b9:1f:af:73:
7a:ee:04:d8:79:8b:a5:7a:0f:83:7b:3d:5d:2e:3f:
7f:9c:ef:ef:26:50:e8:51:97:c7:b8:d3:dd:c2:08:
76:70:0c:ad:45:25:99:2b:69:85:12:ab:34:f6:8a:
3a:86:a2:fd:a9:f1:cd:8d:c7:cc:d0:99:3d:16:ce:
90:6b:d8:0c:ee:2d:17:66:a3:22:46:b7:91:dd:3b:
cb:d6:45:6f:ea:fb:0d:eb:dc:a4:49:be:70:1f:57:
55:12:55:67:42:d9:7b:b9:58:a5:96:66:12:28:58:
ed:ef:53:11:26:e9:87:c7:3f:f3:e7:9c:29:7b:7a:
b5:f1:5d:72:96:a2:02:12:73:a7:e8:d2:f3:af:ca:
47:b2:8e:96:3e:56:ef:42:3e:4f:94:7a:e9:58:14:
0b:94:c4:e8:15:5d:24:62:50:ae:96:d9:1c:e2:4a:
56:01:78:7d:88:ac:70:c8:f7:ce:52:cd:ba:e2:ac:
24:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rsync.rp.ki/repo/misakaio/0/
RPKI Manifest - URI:rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.mft
RPKI Notify - URI:https://rrdp.rp.ki/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23961
142616
152156
sbgp-ipAddrBlock: critical
IPv4:
103.170.232.0/23
IPv6:
2407:b9c0::/32
Signature Algorithm: sha256WithRSAEncryption
76:75:c9:07:53:19:c5:0f:13:19:75:16:c5:e8:59:1d:3d:2c:
a2:7a:e2:89:14:a1:a1:fc:dc:ec:a0:55:fe:95:1a:8b:8e:9f:
10:d8:e4:da:45:16:7c:39:53:14:de:00:64:49:76:9d:1b:c0:
cc:f8:00:39:bc:c1:43:70:67:1c:76:a4:55:c9:11:4e:3e:32:
23:18:89:41:71:4c:47:dd:35:56:25:95:5b:04:d3:c4:06:5c:
e8:cb:f2:23:cf:f8:18:b5:18:82:49:00:4d:24:dc:0e:1d:90:
8b:09:9a:07:39:65:c0:79:17:db:f1:dd:22:3a:33:8f:a5:08:
5d:93:20:a6:a5:0c:2b:fc:8c:f3:d6:af:ff:3d:b5:70:cb:01:
fd:ea:33:46:d0:be:34:a3:53:f5:9e:64:0e:19:1e:ed:dc:af:
5d:4b:e6:0f:42:39:49:c9:1a:50:e3:a6:33:de:86:78:43:0d:
13:59:72:93:3d:5f:a9:76:9b:49:c3:db:ae:48:fb:c2:dd:da:
f5:3b:a4:93:5b:dc:d5:e2:e5:5d:4d:93:2b:db:ce:ef:50:9c:
a9:08:f8:82:75:b4:53:1d:05:ee:d2:19:ee:40:74:ab:92:b1:
65:3b:58:f5:3d:7b:4f:03:d9:0c:a6:95:2d:fe:23:ff:13:7f:
0c:a9:c0:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 23:57:07 2024 by rpki-client on console-ams.rpki-client.org