Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer
File: 4-j_B54D_aQzRoidk3ZblZ9uHVk.cer (raw, json)
Hash identifier: 6JnnUFY2JkBmn50ECkw8+kzMZ9F4TJTGc8W4a3Fg+bs=
Subject key identifier: E3:E8:FF:07:9E:03:FD:A4:33:46:88:9D:93:76:5B:95:9F:6E:1D:59
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020B75
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Sep 2024 03:14:06 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 140062
IP: 103.69.164.0/22
IP: 203.14.199.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134005 (0x20b75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 3 03:14:06 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91D09B8/serialNumber=E3E8FF079E03FDA43346889D93765B959F6E1D59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a4:9f:a0:0c:c0:87:db:dd:27:12:f4:d3:e5:
e0:82:88:01:fa:36:07:d8:8c:3d:01:a4:2c:c6:37:
ba:c2:f3:4a:88:7f:86:14:f7:b8:5f:f7:48:62:c3:
c9:f5:8c:a4:78:bf:0e:29:58:3a:13:8d:88:b3:ac:
d1:a3:10:d0:6b:e9:2f:dc:3a:23:c7:33:03:1b:f3:
32:92:2c:59:f3:eb:a9:65:40:23:d7:ed:45:f4:27:
9e:a0:b9:3e:49:41:97:06:5d:3c:49:96:5d:46:32:
66:04:3f:a9:69:7a:00:48:15:06:96:d1:42:97:7a:
dc:5a:0c:9e:d7:91:fe:04:db:8d:b5:0a:6b:be:fa:
c3:0c:39:4f:d4:3c:bf:aa:2a:be:31:5a:b7:06:23:
d1:90:07:1e:e7:83:8d:f2:97:a9:a6:88:17:c8:55:
75:18:18:45:06:a3:bb:98:68:6a:ef:e6:14:47:e5:
c3:a1:22:cb:96:9a:76:66:0f:b8:33:43:77:56:0e:
62:c7:9b:17:d3:1b:3e:7b:cc:6e:13:44:ec:ce:c3:
0b:02:a4:79:0d:7f:94:f7:ae:ee:98:db:4b:14:8e:
d9:74:78:4d:d1:ea:12:98:0f:9a:dd:fa:93:2a:bc:
1e:22:42:10:6d:4e:52:01:f0:21:21:61:5d:52:ec:
91:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E8:FF:07:9E:03:FD:A4:33:46:88:9D:93:76:5B:95:9F:6E:1D:59
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140062
sbgp-ipAddrBlock: critical
IPv4:
103.69.164.0/22
203.14.199.0/24
Signature Algorithm: sha256WithRSAEncryption
60:00:4b:3f:a3:44:ab:68:74:7c:b8:69:f1:5d:bc:85:eb:57:
48:d0:e1:d6:38:3f:f1:ac:52:11:48:d9:2e:9b:4e:a4:e9:62:
7c:9a:c5:7a:92:17:15:0c:cf:04:12:9f:8c:ec:25:61:f4:07:
7a:3d:58:8c:19:6a:a5:14:6a:77:fd:1e:57:58:d4:47:e5:29:
32:d2:b9:d5:31:c1:07:8f:93:44:b3:1b:a9:fe:b3:03:c1:9a:
8b:98:61:5f:1b:ab:2c:68:27:b6:3f:55:22:ab:8d:7c:e3:c4:
43:b5:d3:80:1d:18:90:17:26:23:a9:12:56:95:41:33:02:b2:
72:37:6a:89:85:88:4e:1c:1b:6f:82:23:76:ac:91:f2:75:02:
98:c1:97:b3:1b:8b:c6:8b:7d:a3:60:3a:16:f4:a2:d4:0a:0f:
93:5a:c4:60:01:61:86:3f:aa:60:46:f6:8d:16:bc:9a:cf:61:
98:57:39:97:3e:51:c0:b2:29:07:de:06:8e:66:b5:bb:09:c2:
7b:d2:ad:e9:23:f0:7d:c2:b1:3b:cb:bf:71:cf:5e:4f:52:d9:
09:db:9c:23:5b:ee:64:24:b4:eb:92:c8:95:87:3f:59:0a:16:
14:70:6d:cc:51:67:ca:17:f5:cf:7a:ea:ba:72:0b:83:5c:a1:
83:ec:ee:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:35 2024 by rpki-client on console.sobornost.net