Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nV_wyQJ28LyK2LDGbnkTbnqB5k.cer
File: 1nV_wyQJ28LyK2LDGbnkTbnqB5k.cer (raw, json)
Hash identifier: vho206Ts/iOuwaQdkRi2640WdsvbUwF4/TRLPV0T73U=
Subject key identifier: D6:75:7F:C3:24:09:DB:C2:F2:2B:62:C3:19:B9:E4:4D:B9:EA:07:99
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020A8E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/1nV_wyQJ28LyK2LDGbnkTbnqB5k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 31 Aug 2024 06:24:55 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 151650
IP: 103.249.198.0/23
IP: 2401:2260::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133774 (0x20a8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 31 06:24:55 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A911EA9E/serialNumber=D6757FC32409DBC2F22B62C319B9E44DB9EA0799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0b:1a:9a:e8:61:4f:56:8e:30:de:44:65:08:
2c:77:a7:3f:94:6a:c3:87:c1:a0:45:ff:5a:00:b4:
75:d8:96:f1:65:d5:8f:dd:59:bc:1b:1b:63:19:f8:
f0:03:e6:a4:ed:ff:1b:bd:12:71:b0:25:4d:f4:7c:
61:d3:4b:3b:ce:ea:ad:e5:4d:9b:be:8c:46:06:8a:
e7:5e:4b:c7:91:bf:e0:22:2b:18:b8:7b:62:65:f7:
d0:bb:8a:ad:c5:1b:0e:34:2f:4c:bc:f6:16:6c:2b:
61:83:16:27:5f:9c:57:13:55:f9:e9:61:4c:2f:48:
9e:52:34:42:50:03:a2:17:88:a3:83:9f:1e:ed:12:
63:6e:17:46:5e:1c:cd:50:82:aa:80:62:45:1b:b9:
a0:dc:b2:cb:17:b0:2d:df:9a:dc:e2:c5:5e:9d:9a:
81:02:b8:19:64:8f:fe:87:f1:c4:81:f8:4a:9c:a2:
71:4b:0d:14:5d:10:06:7c:4b:e7:1f:8c:e1:c6:6e:
b6:54:09:c6:e6:2d:59:3a:57:f8:e0:2d:92:d3:03:
1e:a1:9e:98:35:39:b4:9d:4c:60:5d:5a:4b:f4:1d:
38:ea:95:17:cf:17:60:77:d3:61:00:5d:1a:91:b3:
26:c8:c2:d5:96:40:7b:bc:eb:e6:28:06:04:24:cb:
0d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:75:7F:C3:24:09:DB:C2:F2:2B:62:C3:19:B9:E4:4D:B9:EA:07:99
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/1nV_wyQJ28LyK2LDGbnkTbnqB5k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151650
sbgp-ipAddrBlock: critical
IPv4:
103.249.198.0/23
IPv6:
2401:2260::/32
Signature Algorithm: sha256WithRSAEncryption
58:8c:b9:8b:0c:cf:d9:77:57:98:83:38:7e:16:04:e6:76:8c:
f4:4b:2e:3b:bc:7f:62:81:cb:84:2c:6d:6a:53:cb:17:40:49:
31:99:75:24:ea:3f:31:0e:ab:bf:bd:52:09:47:cc:a5:50:64:
e0:cf:a7:87:83:c1:bb:a5:a1:55:3a:c9:75:84:8f:5f:c0:19:
d9:95:0e:e6:8f:c1:8f:46:17:ad:a0:76:a2:e0:45:77:f3:10:
b4:69:1c:9c:14:0b:4a:6f:7e:a2:1a:1a:3c:38:20:8c:09:73:
60:67:aa:74:0a:72:6f:fc:f3:9c:f5:71:4c:a0:b1:be:51:87:
ac:33:db:21:8e:b0:f0:36:87:8e:af:f3:d8:8c:4a:fd:f0:b9:
b1:e7:d2:52:0a:8d:2e:0a:55:2f:fc:91:d5:96:d2:8d:20:3b:
4b:98:a8:9d:9f:d8:e8:96:1c:31:8c:78:42:0e:fe:e9:a9:cd:
55:e3:d1:99:3c:58:19:70:87:28:b0:ea:b0:7b:63:51:75:9a:
8f:25:79:56:7e:2f:73:fe:1b:18:05:d4:5a:e3:91:42:85:66:
19:50:b7:69:6f:95:e5:3f:96:38:74:56:e1:a8:4b:aa:cf:fa:
a1:0f:bd:cb:ec:f1:aa:a0:ad:c0:2f:d0:ce:02:2f:2a:de:31:
07:25:6f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:34 2024 by rpki-client on console.sobornost.net