Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZIUoK3iNSkzeSFihbucXj4PXW8.cer
File: 7ZIUoK3iNSkzeSFihbucXj4PXW8.cer (raw, json)
Hash identifier: xSsRMOAJLYJJE8mRCTkmMwZESsK+L320iub0qHV/o+E=
Subject key identifier: ED:92:14:A0:AD:E2:35:29:33:79:21:62:85:BB:9C:5E:3E:0F:5D:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020445
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9183587/1A6979E2C60711EC9ECB5E67C4F9AE02/7ZIUoK3iNSkzeSFihbucXj4PXW8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9183587/1A6979E2C60711EC9ECB5E67C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Aug 2024 18:04:21 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 134361
IP: 45.121.80.0/22
IP: 103.61.168.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132165 (0x20445)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 1 18:04:21 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9183587/serialNumber=ED9214A0ADE235293379216285BB9C5E3E0F5D6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8e:2f:a7:9b:0b:00:df:d9:51:e9:fa:41:af:
03:51:36:3e:72:16:e6:f4:c0:2b:58:6c:e6:43:85:
9a:20:41:b6:58:b8:42:a7:da:f8:e1:81:54:63:c4:
87:57:9c:57:75:14:27:73:c6:a4:10:a1:18:bc:57:
de:3d:e1:80:0f:e0:8c:f7:28:51:95:f0:85:01:95:
3b:c5:d6:e8:88:ff:fa:d2:27:a7:b8:87:51:82:9d:
59:4a:c5:39:89:f7:9f:3c:d6:b8:72:41:f9:52:b0:
2f:37:8b:a7:df:82:3d:38:41:20:e4:a4:43:ad:a6:
21:4e:2d:a8:07:80:7a:69:3b:cf:e7:b0:04:3f:c0:
70:a4:ca:03:a8:35:75:ae:a6:80:2a:8a:4e:3a:74:
48:25:ea:2f:30:8c:b7:9c:9c:af:34:ad:4b:f3:97:
d1:bb:0e:6e:ea:49:72:44:53:9e:88:69:4b:82:7f:
f9:da:31:01:37:18:72:13:15:e2:2e:59:95:aa:6a:
20:51:f5:25:3d:8a:6c:a1:5e:9d:46:94:98:c2:a2:
c8:0d:ac:0a:9d:5b:2a:45:2c:8d:1b:40:47:a3:a9:
d0:44:99:1e:36:f2:90:d4:a4:61:5f:b3:0f:54:f2:
10:db:2e:36:45:fd:38:7a:a8:9c:49:43:59:26:4b:
d9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:92:14:A0:AD:E2:35:29:33:79:21:62:85:BB:9C:5E:3E:0F:5D:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9183587/1A6979E2C60711EC9ECB5E67C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9183587/1A6979E2C60711EC9ECB5E67C4F9AE02/7ZIUoK3iNSkzeSFihbucXj4PXW8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134361
sbgp-ipAddrBlock: critical
IPv4:
45.121.80.0/22
103.61.168.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:dc:cf:e7:d4:8a:d0:25:32:6c:44:e1:48:58:95:f6:54:be:
ae:4f:f4:98:7a:86:ee:5b:ea:af:c5:23:0a:7e:71:fe:25:d2:
7a:62:0f:95:c7:da:c5:61:7d:9b:e3:79:89:b5:17:c1:a5:6c:
51:77:fe:db:92:8c:05:49:a3:78:e3:07:59:48:a0:81:30:72:
74:2e:de:f3:3c:a8:eb:17:34:a5:5a:d9:f3:c1:a0:03:83:d8:
d0:a1:2e:22:3c:20:9d:35:5b:33:3c:4d:64:b8:8a:57:98:b1:
6b:60:65:7d:8e:c3:dd:e8:c5:70:b4:29:a1:7f:93:ee:2f:24:
5e:41:43:cf:17:1a:9c:ef:c4:0e:30:f8:97:a8:a5:5d:dc:05:
39:68:5c:3b:83:05:8d:51:61:a1:20:64:ae:96:b0:1c:26:a2:
51:b1:ac:91:74:56:b4:5f:cd:b1:d0:f4:b4:75:f9:1e:bf:0f:
8f:0b:80:de:9c:8b:51:29:ea:17:46:3d:06:7a:2e:ca:ae:22:
a4:8c:e2:d6:b4:fc:73:b1:7b:a9:a5:54:97:a6:1a:5c:6f:27:
71:dd:c5:70:7d:7c:2b:5e:e9:6e:11:93:9b:42:fd:eb:ae:9a:
94:2c:c3:fb:9c:be:14:45:81:a5:65:31:e6:31:0f:e9:b0:02:
ef:ab:e3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:38 2024 by rpki-client on console.sobornost.net