Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer
File: nPBecCTUpIfgt54vV1Jb80XbU-w.cer (raw, json)
Hash identifier: T3WhfoUuRwBeJ1Rst41RsNU9Fy8Ruxs52e+brMEg+AQ=
Subject key identifier: 9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D11E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.mft
caRepository: rsync://rsync.rp.ki/repo/misakaio/0/
Notify URL: https://rrdp.rp.ki/notification.xml
Certificate not before: Mon 11 Dec 2023 12:53:07 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 23961
AS: 142616
AS: 152156
IP: 103.170.232.0/23
IP: 2407:b9c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:15:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119070 (0x1d11e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 11 12:53:07 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9121C330000/serialNumber=9CF05E7024D4A487E0B79E2F57525BF345DB53EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5f:a8:f2:41:13:f7:fe:64:79:53:52:ee:39:
f8:64:b5:b8:91:fc:ee:84:56:e2:7a:0e:c4:98:d7:
2b:58:38:ee:d2:62:a6:83:7a:3e:83:a1:b3:e4:85:
44:e3:15:33:b0:53:df:be:56:43:eb:be:39:d2:29:
35:ac:85:63:2e:50:8e:fe:16:97:41:b9:1f:af:73:
7a:ee:04:d8:79:8b:a5:7a:0f:83:7b:3d:5d:2e:3f:
7f:9c:ef:ef:26:50:e8:51:97:c7:b8:d3:dd:c2:08:
76:70:0c:ad:45:25:99:2b:69:85:12:ab:34:f6:8a:
3a:86:a2:fd:a9:f1:cd:8d:c7:cc:d0:99:3d:16:ce:
90:6b:d8:0c:ee:2d:17:66:a3:22:46:b7:91:dd:3b:
cb:d6:45:6f:ea:fb:0d:eb:dc:a4:49:be:70:1f:57:
55:12:55:67:42:d9:7b:b9:58:a5:96:66:12:28:58:
ed:ef:53:11:26:e9:87:c7:3f:f3:e7:9c:29:7b:7a:
b5:f1:5d:72:96:a2:02:12:73:a7:e8:d2:f3:af:ca:
47:b2:8e:96:3e:56:ef:42:3e:4f:94:7a:e9:58:14:
0b:94:c4:e8:15:5d:24:62:50:ae:96:d9:1c:e2:4a:
56:01:78:7d:88:ac:70:c8:f7:ce:52:cd:ba:e2:ac:
24:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rsync.rp.ki/repo/misakaio/0/
RPKI Manifest - URI:rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.mft
RPKI Notify - URI:https://rrdp.rp.ki/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23961
142616
152156
sbgp-ipAddrBlock: critical
IPv4:
103.170.232.0/23
IPv6:
2407:b9c0::/32
Signature Algorithm: sha256WithRSAEncryption
af:da:b7:a4:a4:91:b7:d7:4f:0b:ca:a7:51:df:4f:92:d1:1a:
98:13:77:05:f9:af:3e:34:3c:fb:e6:38:2d:62:cf:32:95:9f:
bc:80:cb:9f:75:a6:6c:a1:8d:a2:e4:dc:b0:be:03:6c:09:19:
ce:01:b4:eb:c9:c6:45:5c:6c:63:5f:2b:8b:40:a3:a1:9d:8c:
20:85:cc:a9:62:c8:76:86:33:79:8a:24:12:a3:1b:53:bd:e1:
87:6e:ad:d6:3a:38:44:e3:8c:9a:ab:1a:27:fc:82:66:ac:6a:
bc:2b:7d:b1:05:1f:0f:83:30:e8:19:dd:d5:9e:d5:6d:c8:c4:
2e:d6:00:09:dc:97:21:4f:98:93:58:33:79:27:86:bd:64:60:
94:73:aa:c0:27:51:93:7e:a9:f4:2a:02:9b:c2:9e:1e:de:33:
46:b8:9b:50:73:5a:61:fa:5e:af:50:a8:17:da:24:33:01:e6:
5d:78:f5:99:d6:2e:68:7d:9f:d7:92:66:bc:90:e9:f7:ad:47:
12:c7:8d:47:ff:a4:3c:1b:08:56:1f:87:ec:30:f6:b3:f9:a1:
0f:86:79:ab:78:fd:93:70:4f:67:79:02:49:70:9e:55:03:ac:
e5:bf:f1:4f:52:51:d6:e1:cf:3a:ed:ee:f8:a9:ff:65:60:ea:
23:5d:55:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 01:07:26 2024 by rpki-client on console-fra.rpki-client.org