Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cNfp3myIZlgnD6gpTHFoNMyrQE.cer
File: 1cNfp3myIZlgnD6gpTHFoNMyrQE.cer (raw, json)
Hash identifier: Cl1gWXQdB+TaslQ3+OOeNhDlPiUUs4LyCEt+dvovLpw=
Subject key identifier: D5:C3:5F:A7:79:B2:21:99:60:9C:3E:A0:A5:31:C5:A0:D3:32:AD:01
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F430
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 May 2024 13:40:28 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 151204
IP: 103.69.94.0/23
IP: 2001:df2:57c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128048 (0x1f430)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 28 13:40:28 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A912A8BC/serialNumber=D5C35FA779B22199609C3EA0A531C5A0D332AD01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3c:f6:28:09:ef:3d:c5:aa:ea:60:81:45:77:
ba:19:e4:ff:95:29:58:ab:39:6e:7f:53:20:57:49:
3d:25:20:cc:3d:ef:fa:41:0c:73:f5:9d:f8:b1:e5:
6d:77:a5:98:a6:63:40:9c:03:e5:f0:8e:9a:d4:23:
7d:b5:e3:52:49:ea:40:93:0b:55:c8:5d:d8:d2:77:
53:bd:a6:56:43:3a:43:e5:91:3a:8e:d9:a8:37:cc:
f6:e0:37:83:15:37:e3:3a:8c:c3:e6:56:7a:1e:14:
99:ef:b1:9c:24:dc:8c:b1:84:6c:bb:26:64:c1:df:
82:d3:a4:70:d1:f1:38:ae:9a:3c:49:ce:cf:ab:c4:
b3:ef:34:f5:77:a6:3c:d0:9c:59:6c:9a:4f:84:db:
18:62:d4:f9:53:4e:8b:24:82:7c:a2:72:dc:dd:0e:
bf:4f:cd:a2:9e:aa:fd:c3:1b:0b:99:2b:58:cb:3f:
3f:9b:93:49:98:44:9d:80:01:63:10:4e:4f:19:24:
bf:dc:10:dd:9f:c2:2a:c9:e2:a2:8c:9e:e3:2c:da:
d9:aa:d8:28:5d:f1:77:61:79:39:36:94:33:a1:9e:
41:61:32:79:ae:4f:89:63:25:b1:92:6b:98:bb:08:
af:21:1e:be:0b:21:73:b3:ca:39:ca:f0:7c:71:ec:
bf:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C3:5F:A7:79:B2:21:99:60:9C:3E:A0:A5:31:C5:A0:D3:32:AD:01
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151204
sbgp-ipAddrBlock: critical
IPv4:
103.69.94.0/23
IPv6:
2001:df2:57c0::/48
Signature Algorithm: sha256WithRSAEncryption
7c:b2:93:d9:9c:1c:8e:31:41:87:f4:34:64:91:dd:25:e9:86:
5a:24:c6:50:2c:97:2d:c5:02:d1:7a:da:5f:15:48:17:6f:98:
fe:b5:15:03:d0:92:42:d6:09:8e:55:7e:78:75:97:29:59:31:
33:b0:7c:7f:ec:95:aa:33:f3:b1:4b:b5:93:04:28:63:87:87:
d7:43:0a:24:e9:17:33:20:5f:6b:e0:79:3a:4b:4e:35:4b:d7:
bb:2d:33:83:e9:c3:98:1e:4c:4d:04:e6:d1:bd:74:14:a7:11:
1d:89:7c:3d:60:45:b3:8f:68:e8:0c:5a:56:f2:52:58:74:f1:
00:ac:0b:d4:cf:48:8f:ac:e7:87:7c:f7:2a:ba:b6:2e:0e:11:
e9:4d:2d:9a:62:ba:58:53:51:f9:16:7b:a1:9a:c4:5c:ce:a2:
aa:5f:df:10:77:79:fc:5c:e0:6e:a5:0a:f7:f8:8f:55:f8:e5:
cb:f5:9d:c3:d3:d6:93:32:03:e9:72:a4:21:b7:a2:42:8f:5c:
6f:4b:d6:0b:17:e9:fe:0e:bf:3d:fc:e5:fe:41:11:d0:30:00:
85:b3:55:95:e0:c0:e9:70:31:67:cb:90:2c:1d:cd:e4:13:ea:
39:55:86:2b:f5:02:90:5d:9b:d9:31:3b:8b:08:9b:e5:19:6d:
f4:b2:ba:02
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:34 2024 by rpki-client on console.sobornost.net