Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer
File: 2kcnine73_Ktn5igEaKnoufNYNg.cer (raw, json)
Hash identifier: 7x1jWHWlmx+w7Cv0KTseWq4EUyhKOSFWnIdzaBh89c4=
Subject key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0204F0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 Aug 2024 02:36:12 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 132895
IP: 103.27.172.0/23
IP: 103.40.70.0/23
IP: 2401:5e80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132336 (0x204f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 5 02:36:12 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cf:d6:52:eb:68:62:f1:05:c0:30:45:5b:1f:
8a:06:bc:9a:35:a0:fc:04:a4:87:1d:81:af:95:f0:
c3:bb:69:77:2a:93:bb:28:56:93:16:ed:7a:b1:a4:
11:8f:31:66:60:e2:03:e6:56:c4:50:76:8b:fa:48:
14:54:5a:29:16:0c:5f:e8:ca:9c:20:6e:7c:e8:a0:
90:f9:43:a1:fc:24:12:21:ca:f0:7e:cd:4e:93:35:
2d:e2:7a:19:b9:10:f1:9a:71:45:d4:03:2b:d1:73:
74:40:58:ff:d3:73:8a:f8:cb:96:c3:74:68:bc:46:
ca:37:c0:46:bc:9c:2a:ca:cf:8f:ac:1e:94:b8:7b:
d6:66:f1:b2:65:49:ee:04:51:60:66:04:a8:06:21:
96:ff:fc:90:2b:9a:12:ce:13:bd:a0:1d:4a:e0:7f:
7a:16:94:d9:4b:4b:35:aa:b4:48:d8:6a:30:6c:20:
9b:90:00:69:13:06:e4:9b:2a:48:3a:b2:c8:25:ac:
5d:ef:ce:bb:db:7e:92:74:61:3a:33:bd:84:8b:88:
c4:49:ae:a1:05:1a:55:22:f8:af:f1:40:1d:03:ae:
24:c3:2a:72:0a:8b:29:71:3c:5c:97:87:6f:24:80:
5b:37:a9:f1:7a:a5:64:d3:6d:60:7c:e6:c2:77:4d:
30:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132895
sbgp-ipAddrBlock: critical
IPv4:
103.27.172.0/23
103.40.70.0/23
IPv6:
2401:5e80::/32
Signature Algorithm: sha256WithRSAEncryption
b3:0c:16:60:e4:bd:1d:d7:f0:ea:ba:1f:3b:ad:d9:8d:f4:ab:
56:9c:87:7d:42:c0:fc:e8:97:37:e5:c6:6b:ab:9c:f1:c0:4a:
4a:0b:b3:eb:06:e3:f9:74:04:d3:b0:a0:00:f3:7e:52:46:7f:
5d:21:83:16:92:54:78:30:a5:f4:85:7b:1a:e6:10:ec:c1:40:
17:a1:20:8e:5c:e2:f9:cf:29:83:8d:de:40:41:19:11:49:07:
52:bf:14:0d:f3:75:5b:c8:9a:82:10:c8:b7:06:97:ff:51:49:
03:6e:69:68:15:22:a0:83:1e:24:db:4f:79:38:33:75:5a:c1:
ba:63:bc:90:d9:0d:dd:e3:87:e0:c3:a4:ff:09:4a:69:03:bc:
5f:0b:36:0c:e9:f4:94:39:61:7d:cd:0f:8b:ac:17:b5:b5:7d:
59:67:ec:c7:b9:c8:14:19:70:d1:95:14:bc:f9:8b:1a:f5:47:
d9:c6:63:f4:b8:0b:45:43:6e:b4:13:b7:44:5f:dd:76:82:ef:
30:ba:46:74:f7:fc:20:e5:10:07:62:68:36:0b:bf:ae:6d:80:
fc:f6:c4:c9:4d:f7:f7:4a:f5:b7:9a:9a:05:91:d9:a9:2d:95:
ab:ea:e5:78:d7:22:5f:12:df:bd:a7:0f:06:17:55:86:e8:af:
73:ee:da:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:35 2024 by rpki-client on console.sobornost.net