Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/156odshIAT1wTjIDr31ghtsCx50.cer
File: 156odshIAT1wTjIDr31ghtsCx50.cer (raw, json)
Hash identifier: NEs6Eb/Ibc4cYAm0qhkhLctS2k+5aVHQGW8QDDc8AEc=
Subject key identifier: D7:9E:A8:76:C8:48:01:3D:70:4E:32:03:AF:7D:60:86:DB:02:C7:9D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020236
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EB7B8/4DE16CE4D81811ECB6493D5AC4F9AE02/156odshIAT1wTjIDr31ghtsCx50.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EB7B8/4DE16CE4D81811ECB6493D5AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 Jul 2024 02:52:03 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 149833
IP: 103.187.140.0/23
IP: 2400:7da0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131638 (0x20236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 25 02:52:03 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91EB7B8/serialNumber=D79EA876C848013D704E3203AF7D6086DB02C79D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9d:d4:e3:62:2f:50:52:07:fe:26:b4:45:9f:
fd:d1:ff:5a:0b:b2:30:53:3a:dc:ae:f2:95:ff:d6:
74:5b:d6:e2:c6:fa:69:28:33:62:ab:67:ed:95:da:
35:c3:ee:da:95:31:a7:0e:6d:a1:fb:5a:53:78:57:
60:4f:13:cc:8b:5d:6d:79:c5:d1:db:69:aa:5c:fa:
83:3d:ef:aa:29:bd:1e:88:3c:c2:0e:45:bd:9a:1f:
37:af:dc:7e:a2:d3:88:e3:e2:a9:69:c1:29:b3:5c:
a0:a7:c2:e2:fe:aa:7e:f0:1e:54:4f:ba:d6:99:ce:
97:c8:38:27:d6:08:a0:db:e7:eb:6d:4e:33:1e:75:
38:1b:d8:37:83:2d:58:34:28:b0:f2:6d:25:e9:c7:
5f:c7:c5:f9:41:86:d4:cb:12:b5:b1:9e:aa:7e:aa:
a3:91:34:80:a6:1b:a6:48:d7:64:0e:67:70:67:aa:
5a:ff:33:c8:26:2b:f0:8b:49:b9:fe:82:34:ed:fc:
69:d6:db:72:a3:3b:6e:89:65:4e:2f:b7:6a:c1:ba:
b6:2e:e9:6e:75:fb:c4:46:9c:e8:54:e4:62:9e:34:
5c:c1:15:9d:ce:3a:7b:73:28:6f:63:ca:79:c2:18:
3f:67:ec:d9:4b:b3:8b:60:06:25:02:45:24:5e:9c:
55:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:9E:A8:76:C8:48:01:3D:70:4E:32:03:AF:7D:60:86:DB:02:C7:9D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EB7B8/4DE16CE4D81811ECB6493D5AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EB7B8/4DE16CE4D81811ECB6493D5AC4F9AE02/156odshIAT1wTjIDr31ghtsCx50.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149833
sbgp-ipAddrBlock: critical
IPv4:
103.187.140.0/23
IPv6:
2400:7da0::/32
Signature Algorithm: sha256WithRSAEncryption
62:b5:4a:c3:de:6b:cc:f2:ab:9d:c5:3f:54:bd:50:57:cb:db:
1c:61:6d:15:31:e4:8e:82:f5:1c:e6:c5:f6:49:0f:0b:98:52:
37:d4:1b:e1:fd:e8:af:0e:cd:45:8e:4a:2f:cb:f6:c0:a0:07:
a3:27:06:5c:65:63:2a:06:b5:8c:65:15:b8:ba:40:be:50:8e:
d6:2a:4d:63:74:df:92:38:1f:1b:e2:95:87:90:55:e1:2d:f1:
81:43:32:c4:ec:fd:b9:52:0e:75:0b:21:df:22:37:08:74:4b:
be:29:48:cd:ad:4d:d0:67:fc:2f:06:0a:e7:5d:e2:bf:e4:98:
1d:80:93:89:34:20:d5:d0:79:83:ef:30:a7:09:b2:80:04:d9:
b1:e4:a8:53:24:2a:f4:32:b9:fa:19:82:26:c5:37:20:73:2c:
d4:ae:c9:51:3b:50:3a:a9:f6:1b:4d:3c:07:2c:a7:81:b3:57:
93:40:f1:33:0e:4f:a9:ec:14:2e:f4:82:a7:32:47:ad:90:72:
a7:49:5d:71:9f:7f:bf:9c:c7:21:fd:82:34:59:09:b7:f8:88:
f0:88:66:82:cb:92:f6:99:77:f1:55:83:7d:80:dc:36:f5:48:
52:ca:1e:20:77:1a:4b:2f:12:24:2b:32:2a:57:73:21:cf:66:
ec:9e:50:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:34 2024 by rpki-client on console.sobornost.net