Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SQy2K1rs-npllWAu8bSIhkHs_c.cer
File: 3SQy2K1rs-npllWAu8bSIhkHs_c.cer (raw, json)
Hash identifier: ZiYRQtNsLb2aCwuGXj8AQAMUej9+Q1aVWR8pGfiVVX8=
Subject key identifier: DD:24:32:D8:AD:6B:B3:E9:E9:96:55:80:BB:C6:D2:22:19:07:B3:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020B5A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AAE2E/E71A0BBCF21711EEBCCC3120C4F9AE02/3SQy2K1rs-npllWAu8bSIhkHs_c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AAE2E/E71A0BBCF21711EEBCCC3120C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Sep 2024 00:39:51 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 64015
IP: 103.192.240.0/22
IP: 2402:a480::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133978 (0x20b5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 3 00:39:51 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91AAE2E/serialNumber=DD2432D8AD6BB3E9E9965580BBC6D2221907B3F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:57:8a:4d:23:f0:03:7a:6e:a1:af:e3:6a:d8:
30:28:ba:7a:7c:fe:84:04:f1:70:f3:b6:bc:28:25:
91:3a:51:d2:b5:3b:57:27:95:4a:1b:13:1e:6a:98:
56:12:44:f2:55:bb:be:6b:9a:87:34:ea:e9:48:3f:
16:5f:8f:0b:14:e3:76:77:42:77:79:f9:35:57:1d:
37:56:c5:59:73:4d:b9:04:43:fd:17:dd:55:ba:ca:
3f:ae:e1:8f:21:2a:d9:20:28:f5:91:a6:a1:65:77:
2b:a3:85:51:04:b7:22:cc:43:56:4e:a7:2a:c7:64:
bc:ec:f5:84:d1:2d:50:5a:67:96:c7:30:97:a3:5d:
9b:e2:7b:15:6f:5a:c0:17:45:55:ba:19:69:3a:c1:
9a:42:33:6b:1c:c3:38:0a:30:e8:37:16:70:56:f1:
9a:62:4f:83:46:ba:04:2e:e8:06:f6:41:87:a6:74:
1f:96:59:01:2d:f1:19:9c:b5:9d:50:e0:51:00:6e:
c3:5f:e7:e0:53:10:a9:3c:ce:0a:8d:1a:b8:15:d8:
d3:40:36:89:40:43:25:6e:7b:5c:13:f9:66:2a:35:
b4:e2:ae:9f:d7:d1:97:5d:ed:19:8b:d5:f1:2c:4c:
7a:4b:a6:66:dc:85:0d:3d:66:05:b3:f2:b9:e0:bd:
ab:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:24:32:D8:AD:6B:B3:E9:E9:96:55:80:BB:C6:D2:22:19:07:B3:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AAE2E/E71A0BBCF21711EEBCCC3120C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AAE2E/E71A0BBCF21711EEBCCC3120C4F9AE02/3SQy2K1rs-npllWAu8bSIhkHs_c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
64015
sbgp-ipAddrBlock: critical
IPv4:
103.192.240.0/22
IPv6:
2402:a480::/32
Signature Algorithm: sha256WithRSAEncryption
2a:10:27:50:72:29:cf:0d:5a:d5:c9:06:52:13:c3:24:80:cc:
67:ef:c1:61:64:7e:70:73:42:42:d1:5f:2f:d6:1f:9b:34:fb:
95:ee:a3:51:9b:00:05:10:c3:c3:6e:c4:ae:36:66:7b:6f:61:
3a:ad:ec:73:f7:07:05:83:bf:2a:b1:f8:8b:5d:00:a9:85:f2:
b6:ed:56:19:0b:fd:6f:4c:45:d1:4c:50:12:f7:03:4a:51:fd:
f9:4f:d0:6d:92:2a:fa:71:68:5a:7e:68:5c:bf:f4:1b:ff:69:
60:d0:dc:6a:c4:cb:f5:ba:6d:1a:74:b8:9c:39:c6:7d:61:41:
3a:9b:83:67:a8:9c:1a:e1:d4:be:fa:af:58:0e:a2:cd:0b:df:
19:c4:30:7b:11:14:ea:6c:a6:f8:d0:ac:68:41:22:cf:37:57:
cb:6a:3d:72:97:e6:c1:e6:da:d6:8a:30:2f:57:6d:d0:f8:2f:
f3:e7:fd:63:e5:a4:e5:ac:54:eb:8a:2b:7f:45:d0:b9:19:55:
90:51:81:19:a0:2c:29:10:4b:16:f7:66:5b:b4:d3:d5:13:6f:
d5:d1:fb:96:17:0f:cb:af:a3:c4:4b:fe:fe:bd:f8:26:65:28:
dc:c5:c0:d9:8a:76:46:ac:9c:72:02:9d:50:6b:c1:33:33:bb:
72:ff:8d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:35 2024 by rpki-client on console.sobornost.net