Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91FDq1voML6TvNd20zKw_Vt4fjs.cer
File: 91FDq1voML6TvNd20zKw_Vt4fjs.cer (raw, json)
Hash identifier: 1YrpgbpzmLeJ4ROpRmPVRsCbgLVtPk1UEzknXiUic50=
Subject key identifier: F7:51:43:AB:5B:E8:30:BE:93:BC:D7:76:D3:32:B0:FD:5B:78:7E:3B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02049C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91717C0/018EBE58F31A11EABC00CC5CC4F9AE02/91FDq1voML6TvNd20zKw_Vt4fjs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91717C0/018EBE58F31A11EABC00CC5CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Aug 2024 17:28:12 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 9241
IP: 202.170.32.0/20
IP: 2407:800::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132252 (0x2049c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 17:28:12 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91717C0/serialNumber=F75143AB5BE830BE93BCD776D332B0FD5B787E3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c0:c9:a6:91:f1:6a:17:09:59:14:ed:0e:db:
0b:20:a3:8f:49:25:98:7e:72:5e:46:0b:90:cc:a1:
a2:ab:7f:da:e0:59:8a:9a:9b:00:fb:c4:e0:10:2b:
c6:a3:ed:96:d9:ac:54:d7:cf:5f:1e:7b:c0:5b:58:
9f:5b:8a:be:ae:85:77:62:96:42:fb:64:5a:47:eb:
01:47:e7:09:74:bb:a9:56:aa:16:3e:ce:93:aa:8a:
d4:d0:58:c7:09:5b:b5:b6:e4:26:93:8a:18:86:25:
41:5e:72:4b:07:f9:14:a2:7d:8e:fd:ba:7e:38:0c:
b1:27:50:61:09:25:af:45:12:a2:02:34:ce:c9:86:
a6:90:b2:b1:ea:8c:d3:71:66:72:cd:69:fa:38:37:
47:f7:75:71:60:1f:47:93:3a:b2:0a:93:ec:a4:0e:
f6:e3:73:8f:b6:5d:22:22:60:01:20:12:3a:6b:41:
42:3b:c9:86:c4:b0:e1:2f:79:25:ec:ba:b2:79:a8:
da:f7:52:0f:28:20:56:1e:f3:50:cc:d0:a0:7a:9a:
e2:d8:6d:46:5a:da:76:f8:5b:72:b4:e5:5e:38:87:
01:03:35:3e:28:e2:8d:f4:90:ef:8a:b2:a1:86:36:
d2:5d:37:89:69:fe:3d:15:30:4a:d6:2e:d9:8b:3b:
ba:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:51:43:AB:5B:E8:30:BE:93:BC:D7:76:D3:32:B0:FD:5B:78:7E:3B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91717C0/018EBE58F31A11EABC00CC5CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91717C0/018EBE58F31A11EABC00CC5CC4F9AE02/91FDq1voML6TvNd20zKw_Vt4fjs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9241
sbgp-ipAddrBlock: critical
IPv4:
202.170.32.0/20
IPv6:
2407:800::/32
Signature Algorithm: sha256WithRSAEncryption
50:e8:4e:cf:35:33:00:7c:e1:40:14:cd:90:04:e8:50:91:00:
03:4f:2e:cc:f2:ea:85:ec:63:f7:51:37:30:26:01:12:17:8a:
64:8b:a0:55:f7:c3:92:8b:4e:4f:21:2c:14:54:00:02:59:df:
dc:ce:92:8e:2e:d0:d4:33:d4:b0:3d:d3:4d:25:69:fb:45:f5:
e7:7b:bb:77:bf:46:79:eb:c1:27:b4:c7:6b:4e:eb:0b:24:d2:
a8:7f:01:f8:a0:cb:b0:12:46:d8:04:ea:76:24:34:9e:64:66:
12:01:37:70:f9:e4:3e:c1:30:54:1d:83:dd:59:2a:8e:22:b6:
79:28:53:14:b7:72:62:88:b8:cf:c0:d8:1b:38:1d:40:4e:23:
12:85:c1:40:f6:c2:c2:a1:a2:c0:1f:7b:07:d4:d3:2a:ed:32:
89:27:7e:24:37:85:28:f3:a4:9c:89:bf:81:b1:ed:8a:40:2a:
11:a0:6f:72:21:39:5f:94:59:f2:50:91:d9:eb:f0:89:c3:87:
77:a9:8e:35:77:71:b0:10:b8:37:29:00:b7:5f:b3:1d:51:b3:
c2:38:1e:91:20:93:00:07:c0:d9:d9:7e:db:2e:b9:11:7f:a0:
97:37:d0:50:91:1a:4c:ac:37:d9:65:e1:50:4b:b9:f1:2c:7d:
52:00:70:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:39 2024 by rpki-client on console.sobornost.net