Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer
File: sb1NsCH1THJj88NTX4g2hJui5g4.cer (raw, json)
Hash identifier: b7unn/wsYu5xDQqVDK24iCYmPm2eF+PRiFfLEKUZ4ts=
Subject key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021CCA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 21 Nov 2024 14:59:55 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 137930
IP: 103.151.210.0/24
IP: 2001:df5:a900::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138442 (0x21cca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 21 14:59:55 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:37:e5:f2:38:14:bd:a5:79:b3:bb:a2:e1:93:
d3:a5:c4:b3:c6:c0:40:b9:5a:1c:3d:65:2f:04:8b:
af:ef:28:bb:53:20:7f:98:c6:d6:67:53:c8:68:fa:
60:4a:16:24:de:7d:a6:8e:95:c1:b3:63:68:fe:de:
7c:e0:86:1a:df:8d:4c:38:76:0b:bc:d2:e1:86:97:
9c:41:6c:bd:71:74:bc:b6:c6:87:cf:08:1b:cf:f5:
1d:e5:17:5a:3b:02:86:20:7e:63:17:a4:4e:b0:0d:
26:53:1b:82:bd:8c:58:0a:62:c2:67:ce:d8:08:98:
17:2f:f5:59:2e:59:2d:af:34:6c:72:55:68:c1:f6:
96:76:c3:47:a3:21:f1:16:94:f9:ef:29:8e:58:b9:
84:24:aa:b6:a1:3a:7e:33:78:20:d7:60:7d:17:5b:
6b:2b:47:3f:43:59:9b:51:44:96:f3:18:6d:73:ea:
f0:23:3c:34:a1:18:db:51:dd:a4:be:95:5f:57:25:
65:26:76:06:ac:1e:d5:cc:b3:d5:0f:94:cf:44:96:
9f:56:5b:fd:54:27:ac:33:a3:cb:9b:b9:26:cd:b5:
4c:9a:ad:4d:85:32:bd:37:10:75:5f:73:29:85:f4:
d6:3c:ed:95:93:b1:ed:d0:21:db:cf:37:69:07:30:
d4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137930
sbgp-ipAddrBlock: critical
IPv4:
103.151.210.0/24
IPv6:
2001:df5:a900::/48
Signature Algorithm: sha256WithRSAEncryption
40:20:49:40:0b:12:95:69:53:ea:5e:f7:cf:41:ae:a7:ce:82:
e7:68:15:47:7e:81:0c:25:18:ea:7a:bd:06:98:77:ff:ad:17:
4f:23:90:cd:ed:82:d4:1b:4e:81:0a:73:61:fa:28:e0:11:6a:
06:0c:35:38:98:94:19:19:91:c5:d3:78:f3:07:5e:8c:41:c9:
86:ab:76:1e:3d:4f:69:f7:de:8e:48:a2:8d:00:b5:c6:61:dc:
a0:02:4c:48:63:6a:32:b0:6d:f3:b2:9a:84:6e:f7:2a:5a:36:
ac:b6:32:8f:3c:64:d5:82:8a:19:a0:3b:1c:72:90:19:9d:54:
b9:7f:41:9d:29:15:aa:09:fc:a5:5d:60:8d:02:88:17:6f:b8:
7a:15:1a:10:5e:72:6e:96:d4:11:d0:23:f9:b2:dd:f0:59:1d:
4c:a0:28:22:c3:a5:d5:a4:44:72:c6:b8:8e:63:ce:d2:80:39:
0d:74:d0:3e:a9:23:cf:80:8b:e7:a1:74:a0:f3:5c:cb:25:66:
5f:47:e7:a2:5b:f3:8f:70:03:29:3a:de:60:02:15:53:bc:2d:
49:2a:4d:9d:7b:55:08:0e:43:92:ae:38:4f:a4:36:fc:52:8e:
e5:6e:16:fb:39:41:0d:15:44:9d:ae:66:e6:1c:00:55:7c:f2:
cf:fe:de:71
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:52 2024 by rpki-client on console-fra.rpki-client.org