Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JdCLlAQBtJgHYWlAXlTJrr-c4g.cer
File: -JdCLlAQBtJgHYWlAXlTJrr-c4g.cer (raw, json)
Hash identifier: 2lo+i353h5zVUQoyBWr6Gri+Pg3fHmdl6lDcblw2NVQ=
Subject key identifier: F8:97:42:2E:50:10:06:D2:60:1D:85:A5:01:79:53:26:BA:FE:73:88
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0208A1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/-JdCLlAQBtJgHYWlAXlTJrr-c4g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 23 Aug 2024 16:28:32 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 137427
IP: 103.151.172.0/23
IP: 2001:df3:cd80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133281 (0x208a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 23 16:28:32 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9170829/serialNumber=F897422E501006D2601D85A501795326BAFE7388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c3:5e:5d:dd:9d:c0:42:a8:f2:13:a8:98:8f:
57:11:27:09:ee:ac:0c:dd:62:d0:53:a6:5e:d6:d2:
49:b3:e1:c3:7d:b8:8a:e0:c4:c5:7a:f6:ab:0e:23:
42:cc:ec:02:94:c0:31:ef:ea:01:a0:78:76:01:e4:
a0:e1:c8:9d:f9:f0:4c:81:af:f2:74:00:f0:4c:bd:
33:f7:0b:42:2e:80:c9:98:17:9e:9d:17:c1:a4:72:
80:16:ac:fb:79:dd:ad:4b:0b:34:cf:c1:11:6b:f7:
a9:71:3b:c4:c4:e1:95:4b:fb:9a:f0:a4:9f:45:d2:
9f:5c:59:b2:33:54:ca:0f:34:f3:8d:79:59:9e:2a:
e2:0a:79:8d:af:14:fd:03:c9:b8:e5:19:86:7a:c9:
52:a5:ba:88:0c:e1:f8:83:d8:68:87:1c:e3:67:49:
b6:cf:4b:63:ce:55:4b:f1:7a:6c:20:ac:df:4f:c8:
8f:74:e9:9e:65:44:26:06:68:09:87:55:f2:01:63:
93:87:d8:62:c2:ff:f8:d1:1a:58:87:da:b8:d9:55:
78:5b:8f:89:3c:da:ba:62:e2:ba:b1:89:67:4a:a5:
a6:b5:21:ad:c8:2c:41:1d:c1:3a:48:00:99:1f:d1:
85:61:69:6b:fb:48:23:03:42:d0:ff:f3:ed:53:59:
42:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:97:42:2E:50:10:06:D2:60:1D:85:A5:01:79:53:26:BA:FE:73:88
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/-JdCLlAQBtJgHYWlAXlTJrr-c4g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137427
sbgp-ipAddrBlock: critical
IPv4:
103.151.172.0/23
IPv6:
2001:df3:cd80::/48
Signature Algorithm: sha256WithRSAEncryption
02:24:05:72:93:72:26:9e:bc:09:d9:40:c6:7b:ea:35:13:0c:
88:74:a8:4c:54:38:b7:5c:61:58:9b:d9:57:c3:f0:50:fb:6f:
d2:01:a4:31:31:05:1c:7e:87:e0:4e:bb:1a:6a:a1:87:85:c4:
13:eb:19:ff:77:bc:45:88:21:0d:c3:9e:e9:c0:90:68:8c:8b:
e3:3d:4f:7f:ec:f9:8f:03:75:c1:ff:12:6f:a8:ff:42:cb:9e:
3b:fb:f3:c7:7e:60:e2:dc:dd:41:5a:2a:9d:7c:a9:b0:a0:5c:
ab:0e:21:1f:e1:56:f8:ff:cd:14:27:d0:68:15:b1:43:68:ff:
fd:7e:b2:d5:eb:fc:59:29:00:94:af:7a:59:0e:cf:a8:2e:be:
57:b0:b4:30:78:5b:4d:e6:8b:4a:20:7f:a7:96:91:09:56:66:
b8:9e:7e:d5:e4:4d:96:70:57:32:72:77:46:b7:ce:ea:da:97:
6b:61:9c:82:35:39:b1:9b:0e:e9:49:96:7d:67:6b:b3:ac:6c:
99:1d:6c:51:e8:d4:0a:89:2e:38:2d:e4:a2:0f:1d:b1:fa:34:
e2:37:79:5c:65:e3:52:ae:e1:bb:d3:1b:19:d6:9e:03:e8:7b:
d8:ff:f0:5a:ba:13:3b:ea:ab:1f:53:c1:c6:ba:90:91:d9:31:
08:d4:b8:b3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:33 2024 by rpki-client on console.sobornost.net