Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer
File: 2DkrDZFbmsH00jv5hBlxQG-2GsY.cer (raw, json)
Hash identifier: BD0jLCMZmIFmsoizftoGoAaRuiz3W6HZRAMV4AhpD/0=
Subject key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020D90
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 14 Sep 2024 17:05:31 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 58883
AS: 58985
AS: 135056
AS: 140996
IP: 103.142.8.0/23
IP: 103.207.164.0/22
IP: 2001:df1:2380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134544 (0x20d90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 14 17:05:31 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ef:cb:4c:ae:4d:7b:e9:0f:d1:05:16:aa:dc:
e9:77:02:f7:de:c1:7b:e6:af:6c:2b:99:ab:d5:1a:
b8:10:81:b7:d2:76:ed:96:f8:dc:f2:99:37:f1:8c:
af:c3:c2:fd:c7:59:39:e4:bc:a7:dd:94:d4:62:49:
46:97:df:f0:3b:cc:ac:0a:ff:ec:ee:46:36:a9:8d:
48:22:2e:7f:bd:00:4b:3f:3d:24:43:58:06:d6:f1:
8c:1e:4c:d5:04:84:8a:4c:b7:80:52:9a:e9:cf:76:
e4:18:da:ae:d7:b6:c7:d9:57:59:69:f8:a7:3c:5b:
9e:16:ce:56:64:0c:ba:9e:55:bf:7b:85:c2:0e:38:
31:44:99:58:d9:ce:71:df:bd:be:c9:82:c7:42:fa:
13:43:7a:90:2d:81:85:e2:3d:17:d2:63:db:79:5b:
67:fb:2e:af:34:30:b4:1a:20:c6:6c:2b:d3:22:9c:
6a:53:f9:5a:0c:61:ca:00:8c:80:f9:81:22:b5:2c:
6d:88:2b:66:40:06:54:3e:7c:96:c1:28:88:1d:4a:
5d:74:0d:27:6f:59:54:ee:e7:25:e1:89:7f:fe:ee:
5e:de:da:60:03:24:cf:3e:82:1c:c3:d1:a1:9e:8d:
39:06:be:3b:e9:36:cb:0c:64:ab:bb:83:e2:e1:e1:
03:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58883
58985
135056
140996
sbgp-ipAddrBlock: critical
IPv4:
103.142.8.0/23
103.207.164.0/22
IPv6:
2001:df1:2380::/48
Signature Algorithm: sha256WithRSAEncryption
58:e1:9b:17:5d:0c:9c:22:4f:49:e5:1c:c2:8a:26:ce:06:91:
4b:08:6f:b9:02:f5:11:72:e6:d9:68:5c:0c:7c:89:4f:83:d8:
01:b8:e7:11:c9:50:de:22:4c:81:07:94:7e:b9:1f:9c:c6:46:
8a:89:b7:20:7a:4b:6c:09:a8:c6:d6:0b:10:e8:1a:25:2b:f8:
55:a3:33:84:de:8c:3b:69:73:57:ac:61:dc:5d:33:a7:59:fe:
1c:07:90:98:24:91:10:6a:50:52:a6:c3:1f:13:ae:89:76:d3:
08:6f:8c:d0:77:55:70:48:a5:3d:28:34:1b:65:2a:f4:96:39:
59:a8:79:84:9f:00:8f:1e:62:e3:2a:8e:61:33:79:d2:7c:da:
b1:de:62:06:81:cc:63:fe:08:65:1d:ac:c9:a1:56:11:d5:b9:
56:e1:5d:18:48:5a:b9:99:56:98:8f:b9:10:8f:d8:e8:46:cd:
26:aa:fa:60:26:ab:81:b6:48:5c:45:7b:09:ff:36:64:c8:87:
9c:ec:70:69:93:eb:6b:57:78:7d:b7:fd:1d:f3:fe:f2:d5:fd:
d9:84:f2:e1:ed:fa:a8:72:49:41:21:ae:46:e1:9b:21:b5:e2:
fd:55:93:f4:0e:cd:f3:99:0b:44:1a:cd:5e:24:07:3d:ba:d7:
fe:a2:91:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:35 2024 by rpki-client on console.sobornost.net