Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer
File: 2kdUAUEh0yaH2X05LZBgSagU_MM.cer (raw, json)
Hash identifier: WZlpKLJCFLxvkqnIi344oTJuD1/tyj+KKu9/QNLaKSk=
Subject key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FF45
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Jul 2024 17:13:39 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 149428
IP: 103.190.58.0/23
IP: 2400:8e20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130885 (0x1ff45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 10 17:13:39 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:24:33:06:76:88:2c:df:a8:ff:ee:0c:ff:c0:
15:77:1d:af:d7:71:0c:57:d6:10:f6:e6:06:2f:02:
a3:be:99:25:b1:a4:e0:7b:06:55:70:36:a1:c2:3a:
ff:6b:79:5c:db:9d:95:42:30:2c:8f:49:d5:ed:ee:
c2:e3:f8:e7:43:20:79:a1:25:c3:ce:9f:ad:f4:4f:
d2:a3:36:2a:c6:e8:9f:e5:5b:28:34:76:56:27:48:
f9:95:cb:83:0a:a8:5f:7f:28:3e:3c:d7:d9:1d:49:
c7:61:c8:80:25:ab:ea:61:cc:b4:4e:f3:b3:f4:50:
6b:e4:87:62:3a:cc:76:2c:73:f5:49:d5:2d:0b:04:
0a:5d:7c:d6:84:fc:75:09:9d:14:75:8f:fc:3d:20:
55:f6:04:72:83:74:a0:63:67:16:34:38:32:90:18:
86:6f:c3:7a:86:0a:fc:1e:c2:fa:c1:e5:80:f3:e7:
cb:ff:9f:93:44:6e:ad:02:65:27:18:eb:bd:73:62:
76:27:a5:06:b2:81:d4:79:8f:88:3f:b2:1b:b6:2a:
5d:e3:75:39:ba:d4:33:ca:f3:7a:d5:03:89:ff:f1:
99:e6:98:1c:3f:af:7e:d2:a8:7e:75:97:ae:2c:15:
5d:6f:a9:9b:23:6e:f5:14:e5:ed:ec:75:e7:60:82:
d4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149428
sbgp-ipAddrBlock: critical
IPv4:
103.190.58.0/23
IPv6:
2400:8e20::/32
Signature Algorithm: sha256WithRSAEncryption
ae:8a:4c:ca:1b:cd:dd:0a:30:cf:dc:b3:f1:14:eb:65:13:9c:
45:b2:66:57:fd:d6:27:2e:d3:87:65:cc:57:85:31:6f:d1:83:
6a:57:dc:b2:cf:f7:4c:19:25:1e:dc:44:3c:4b:92:cd:07:f3:
a5:f5:ef:83:ad:60:43:38:53:19:fc:3a:0a:13:01:7f:27:d1:
0f:06:19:7f:9a:02:f7:20:6d:30:91:0d:bd:83:c8:98:d6:0a:
63:1a:b5:c3:9b:a7:3a:18:28:e3:0d:61:69:0c:68:7c:01:3d:
e4:b3:1b:ae:6e:ae:3b:1f:b3:e3:2e:9e:fb:e9:f3:3d:b4:3b:
ea:06:45:1d:aa:bf:fd:6c:59:97:56:5d:b2:66:34:10:4f:39:
39:3e:1a:4e:c2:43:1f:b0:52:bc:b9:6d:8c:2d:47:1d:ec:4a:
3e:f5:38:23:e7:29:1a:5c:9c:94:4b:3c:a5:dd:83:79:29:8a:
05:80:ad:e0:8e:0b:ae:e0:b7:c2:a9:6a:92:69:fb:92:bb:5b:
43:a9:5e:19:cb:6e:09:8a:ed:c7:2a:e2:06:f7:6a:3e:c8:fd:
89:2f:59:33:d2:35:b8:16:28:05:5a:91:c6:2f:c3:42:cb:ea:
fe:e4:c3:3b:4d:cf:e4:05:0c:ee:1a:3e:3a:0a:e6:8e:bc:9b:
94:08:ac:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:35 2024 by rpki-client on console.sobornost.net