Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer
File: 1gA1BzfqQktAGySBBT0rwpFsutE.cer (raw, json)
Hash identifier: ItYS42L1vwG4oyq9Eu2r7CrjqlFLvOHTxKydnego24M=
Subject key identifier: D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020857
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Aug 2024 09:41:11 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 103.224.19.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133207 (0x20857)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 22 09:41:11 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9154973/serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b9:f9:3c:64:c3:86:0b:01:7d:27:83:9d:39:
d2:42:e0:8d:fa:b7:2f:0d:b0:0d:8c:bb:5b:ac:8c:
62:ae:5a:8b:6d:75:29:f6:00:e3:3d:b1:20:bd:ca:
61:8e:77:7c:8c:ef:a2:7c:ed:b3:a0:6e:44:64:df:
b7:84:43:bf:f4:0b:53:8f:fb:0e:23:66:43:d0:42:
46:6a:6e:9e:bc:36:5e:78:34:27:e1:0f:6d:e5:13:
7a:06:3e:bb:47:5b:df:05:56:9f:7f:83:0f:23:a6:
25:1f:59:e5:15:02:cf:dc:76:bd:a0:67:f9:03:d5:
f0:ff:b6:69:d4:03:df:ad:83:f4:e6:89:c8:19:af:
71:b4:cd:01:11:e1:1e:93:65:9a:c1:d7:fc:41:80:
85:18:8e:f3:2d:c3:db:da:d2:6d:3e:00:12:47:41:
e0:bc:4f:d5:9c:25:12:5a:5c:b2:db:ae:c2:44:58:
11:4e:5d:22:77:c9:52:22:98:97:fa:78:38:f4:29:
90:b6:be:0f:73:3c:98:e4:86:28:2d:3a:33:64:0a:
00:35:b7:00:00:60:4e:dd:03:ae:1e:55:9a:fa:aa:
d7:75:15:51:94:c2:3c:28:b3:90:18:28:4f:04:5e:
6c:2a:67:23:83:8b:07:13:e2:6b:50:26:4e:a5:09:
39:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.19.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:54:9f:11:e0:e3:c9:58:fd:09:6d:20:02:60:fe:c7:b5:4b:
2b:01:5a:8b:ea:f5:4c:99:36:b3:f6:93:23:52:5a:38:2b:19:
f1:0d:67:dd:10:91:27:c6:35:f9:81:1d:ce:98:bb:3c:18:90:
b4:95:c9:84:c3:9e:54:2a:df:8c:32:c7:39:d5:e6:05:91:e6:
81:c9:85:c3:93:96:8c:40:25:2b:ff:3f:d1:7e:89:f7:0a:b8:
4a:56:0c:a9:be:1f:91:07:ff:a9:df:c7:fb:1e:73:1b:f4:3d:
18:b7:55:1c:c1:a4:82:1f:4b:cf:86:f7:0c:d1:85:bf:51:da:
6c:44:32:ea:be:c2:84:3b:04:79:cf:1a:12:5c:95:50:b3:c7:
c6:b5:5d:f7:97:c9:99:84:ea:cb:35:63:e5:9e:9e:62:54:0b:
6d:6d:54:65:f7:71:dc:26:fe:af:a6:76:84:3e:83:13:62:b1:
19:bd:61:e2:3f:13:6b:19:38:ae:f9:2c:e7:ad:fc:98:17:a5:
05:11:4a:30:52:91:fa:42:e6:15:a5:0e:39:67:1b:ee:2f:12:
ea:5a:00:2d:39:05:42:0d:f5:8f:1c:a8:87:bd:96:5a:7a:7d:
a6:40:51:78:95:1d:2b:da:e8:28:05:fc:d1:66:a1:92:62:34:
d2:9a:3d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:34 2024 by rpki-client on console.sobornost.net