Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer
File: -rpT9D2gDiGn6veS1I_bdpV6gLw.cer (raw, json)
Hash identifier: R+p3H5sYCGAwKedAuHOkZXU//W9RRxb5iaKB541rLZM=
Subject key identifier: FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FD6A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Jul 2024 23:24:57 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 103.26.148.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130410 (0x1fd6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 2 23:24:57 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91D25E5/serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1a:40:d5:7e:fa:90:1d:47:b7:55:0d:6c:8a:
0b:39:48:e9:b4:fe:24:d5:85:8c:d2:cd:71:2d:46:
3c:2d:52:a7:74:67:25:d1:8a:56:56:58:51:c6:b5:
55:91:8c:b2:e3:3b:ec:c2:3b:72:2c:51:b1:35:ba:
d3:74:05:97:2e:a1:9a:d5:15:4f:02:86:bc:7d:50:
23:ed:4b:b3:7d:9b:7e:93:00:f3:a6:64:af:45:28:
61:88:67:c5:2d:a4:de:77:2e:07:b5:ae:b1:bb:80:
57:c6:50:c7:80:5b:16:54:2c:d8:cb:c8:39:77:06:
11:8f:3c:f7:6a:25:ff:79:f7:9a:18:88:70:6b:b0:
32:31:da:52:55:53:1a:43:28:3b:41:25:5e:d4:82:
77:5b:4e:6d:0b:fc:0f:7c:ab:64:95:6b:1e:7d:d4:
b0:e8:87:25:52:11:6f:1a:7e:a8:fb:de:da:07:4c:
dd:58:0e:8a:47:3f:66:e8:a1:09:70:47:e5:1b:6f:
2f:41:f0:3e:8e:8b:79:9d:b3:9a:fe:bb:30:f8:ee:
98:9b:7e:ab:80:68:f6:f7:42:3c:0f:63:f9:60:ae:
0e:e5:b1:c2:23:a5:77:99:02:01:47:d8:1f:ab:c3:
88:9c:cf:0f:92:b6:d4:3d:b9:01:2d:0c:47:29:be:
5a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.26.148.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:6c:d1:06:5f:58:02:10:c1:48:5f:6d:b3:3e:5b:d3:bd:55:
af:36:1b:59:86:a8:67:20:27:1d:eb:4f:ae:5a:45:2c:0d:e4:
54:3b:4f:a2:d4:40:8d:46:9f:39:93:26:83:28:da:41:2d:2d:
9d:89:b0:fc:ee:1b:96:02:50:fb:74:e7:80:fb:c8:23:44:30:
66:21:3d:05:a2:6e:61:05:02:d4:90:dd:40:03:ef:60:b2:d3:
90:87:f0:51:02:39:28:c9:34:af:f3:a2:92:b3:0c:72:11:e9:
95:f9:61:f2:8c:2a:b7:ef:a2:6f:a4:37:6c:11:29:3a:dd:c0:
9d:63:8a:4d:cc:41:30:8c:df:1c:57:a7:96:76:65:c3:ad:af:
ff:bf:3b:06:ef:b9:57:2a:43:7c:37:ed:9b:ae:71:a2:bb:f2:
22:7a:06:42:bb:2b:af:6c:7b:e4:7f:b2:7f:ee:91:b0:13:39:
f2:b5:26:a5:b0:e3:cb:cf:c1:dd:4a:51:e2:6b:46:df:ad:b3:
98:6c:9b:e6:b7:00:f5:75:84:89:76:f9:f8:e2:34:00:b5:64:
5f:07:d6:45:b2:dd:1d:5c:22:b3:9a:6c:80:c5:be:d1:5a:ca:
67:5d:d8:60:30:f4:e2:0e:74:5f:9a:6f:3f:1b:60:a9:3d:86:
ff:34:ea:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:33 2024 by rpki-client on console.sobornost.net