Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer
File: 7aOF1FcjseHfKXP2K10jovv9JoY.cer (raw, json)
Hash identifier: 3s9md8D38PVF3R1qRWQT1cX9plxpgZfcHeCm7HUxXfQ=
Subject key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020262
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 Jul 2024 21:16:37 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 135602
IP: 103.67.244.0/22
IP: 2001:df3:200::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131682 (0x20262)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 25 21:16:37 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d0:8e:6a:12:74:2f:d2:16:0a:6d:da:de:b4:
3c:d8:ff:13:e4:9a:4a:5c:95:31:67:02:7d:ed:13:
16:e3:21:65:30:22:4f:a4:2c:11:09:ae:34:1a:46:
6a:89:fd:ea:32:72:b3:dd:78:eb:71:a7:0b:c2:5c:
31:6f:ec:cd:b6:9b:5c:3e:b5:73:44:02:38:71:28:
26:05:60:1a:37:c0:a2:c5:e2:52:78:4e:26:8e:55:
18:e2:61:36:b6:0f:37:f5:56:69:8d:64:be:e7:fc:
e3:71:e6:a1:5e:6d:02:4a:98:9d:a3:47:d3:83:34:
19:55:fa:3b:75:ce:2e:92:a9:3b:ff:a3:2a:f2:e6:
5c:57:47:66:a0:5f:1c:21:5d:eb:05:d6:07:94:d1:
cd:e3:09:dc:f7:ec:29:8b:34:57:0e:68:08:9f:9d:
a4:39:43:42:63:2e:d6:f1:4e:77:05:6c:8d:4b:37:
59:63:42:56:e4:22:13:38:19:ef:e4:94:54:36:82:
e9:82:e8:67:64:4d:8a:32:5c:b2:e7:d1:e7:22:fc:
18:e3:fa:25:f2:a3:4f:19:56:ec:57:13:a8:ec:f2:
f9:e8:d2:74:f4:4b:d3:e9:b8:9d:6c:ce:cc:8e:ef:
9e:d0:5f:3e:de:28:b9:13:e6:db:c3:67:57:bd:7f:
03:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135602
sbgp-ipAddrBlock: critical
IPv4:
103.67.244.0/22
IPv6:
2001:df3:200::/48
Signature Algorithm: sha256WithRSAEncryption
52:98:dc:d9:95:86:f6:8f:e4:2b:51:1d:c5:f1:75:79:0e:da:
b1:78:24:d8:93:db:01:8a:11:e9:94:a0:e5:cc:18:13:49:b1:
3d:22:97:9f:3d:b9:d5:e4:e6:5c:6d:2b:ce:df:44:87:12:85:
6f:22:81:4e:2f:e2:8a:5e:10:d9:d6:1d:37:69:3d:16:e7:c3:
c8:78:a4:0d:04:a4:ba:2e:ba:ed:5c:7d:a2:df:13:45:4d:11:
e4:aa:15:d7:5d:84:52:82:27:7f:02:a0:13:da:57:7b:6e:40:
04:d1:f4:c7:03:bf:e5:11:64:03:f5:0f:51:7a:e3:a9:7a:46:
31:9e:a2:46:e7:b5:af:06:2d:13:5b:75:43:b0:c7:4c:cb:c7:
93:8c:95:9a:c4:52:66:4a:af:17:e4:1a:fc:11:e7:15:f0:60:
c8:66:23:de:7c:99:e4:ed:7a:85:58:40:e2:0c:bb:a5:c7:8c:
1b:5f:e9:34:f8:7a:15:a7:43:49:e2:61:15:12:ad:6b:1d:c4:
eb:50:6f:1d:c9:8b:41:c1:92:b5:25:bc:c1:57:21:00:ed:6f:
fa:cf:8e:e4:39:a6:b1:38:90:c8:43:c7:2e:a3:32:be:f6:f3:
38:6a:f0:fe:0d:7a:ca:3e:89:b6:6b:73:41:09:91:e9:ab:d2:
23:72:78:7e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:38 2024 by rpki-client on console.sobornost.net