Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FYY6ic_QLS8aF4piH4gUIPEkKY.cer
File: 9FYY6ic_QLS8aF4piH4gUIPEkKY.cer (raw, json)
Hash identifier: h62t8lT4DgCm8YDmcO4vrSUqNB9uKWvKipifvzBZKp0=
Subject key identifier: F4:56:18:EA:27:3F:40:B4:BC:68:5E:29:88:7E:20:50:83:C4:90:A6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F873
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/9FYY6ic_QLS8aF4piH4gUIPEkKY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 11 Jun 2024 06:55:40 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 151324
IP: 103.196.176.0/23
IP: 2001:df2:6c40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129139 (0x1f873)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 11 06:55:40 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91C3E37/serialNumber=F45618EA273F40B4BC685E29887E205083C490A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e3:24:5b:61:c1:25:b3:d2:36:88:85:e2:26:
ef:67:c7:63:94:73:88:06:c1:ee:83:d2:ee:d9:a6:
2c:e2:1f:67:34:68:5b:d9:e8:3f:63:ef:cd:9e:c0:
7e:3c:69:48:a9:1a:c0:10:72:05:76:f1:a2:07:e4:
2d:bc:b9:52:66:3b:dd:ea:d8:de:23:f7:d2:d2:e9:
1a:83:60:04:4d:53:72:6c:f8:92:74:cf:bd:e1:cc:
85:1f:ed:14:11:3f:77:a6:b0:16:bf:17:b0:38:0e:
df:e2:3d:f9:d6:0c:dd:fc:51:6e:c0:55:9e:9f:f3:
cc:ad:0d:14:99:40:07:94:d1:1f:aa:a2:56:79:74:
ae:68:c2:6c:ca:2b:50:d2:61:19:b3:33:2e:bc:39:
31:4f:53:2d:ed:52:e0:4c:c9:bb:a0:04:7d:21:31:
04:77:09:9e:ca:48:97:20:44:71:2f:4b:16:85:41:
c4:c6:f5:e4:57:b9:a6:2f:eb:3b:1a:1d:f4:38:47:
85:80:5c:52:22:46:50:bc:b2:50:60:8f:af:e0:f4:
fc:a0:50:b7:a0:45:52:ff:dc:da:24:d4:76:f2:3f:
7a:0a:81:4a:41:7f:7e:10:db:78:2f:c6:02:57:d6:
71:a0:71:21:51:36:32:ef:8c:7f:a0:d3:a0:78:0f:
35:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:56:18:EA:27:3F:40:B4:BC:68:5E:29:88:7E:20:50:83:C4:90:A6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/9FYY6ic_QLS8aF4piH4gUIPEkKY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151324
sbgp-ipAddrBlock: critical
IPv4:
103.196.176.0/23
IPv6:
2001:df2:6c40::/48
Signature Algorithm: sha256WithRSAEncryption
05:59:be:ce:8a:b4:e2:d5:22:e5:cb:cd:15:58:29:26:fa:6a:
b7:5a:ec:88:88:c4:d3:85:75:c7:92:ba:be:3e:19:1e:ae:6c:
a4:64:dd:37:5e:73:d3:c4:90:81:08:5b:65:10:53:e1:fa:8a:
b0:35:88:59:7f:54:6e:b7:ab:5d:33:cb:7e:71:26:6b:cd:c2:
a2:46:1b:62:07:a7:ca:a5:ba:bc:6a:53:92:b2:54:0b:1c:c5:
ca:2f:f8:21:6c:b2:7d:1c:2e:47:75:50:cb:90:f4:74:18:46:
ba:59:bd:35:20:85:9c:e3:b2:77:73:e2:af:ae:25:fa:b2:c4:
76:16:c0:61:52:9a:8c:95:2f:ec:d0:03:f5:41:05:2c:75:5e:
08:21:2a:ba:b1:67:1c:f7:60:2d:c6:22:f1:ef:bf:1d:73:ef:
e3:12:7e:99:93:f6:4a:07:b8:32:af:c4:2e:f7:a2:bb:65:57:
0c:5b:fe:46:0d:ae:b8:1d:4e:6a:4c:08:47:7a:5c:75:1c:55:
59:02:a9:67:e3:8f:ec:86:c4:7f:66:5c:c9:f6:e6:1f:9d:5d:
3e:4b:94:76:6a:3c:78:77:dd:e0:8d:1f:cc:fe:c8:c8:80:c0:
5d:16:66:bf:29:f7:b6:b2:0b:91:22:02:9c:9a:4e:b3:c9:50:
db:34:c1:6a
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAfhzMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDYxMTA2NTU0MFoXDTI1MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQzNFMzcxMTAvBgNVBAUTKEY0NTYxOEVBMjczRjQwQjRCQzY4NUUy
OTg4N0UyMDUwODNDNDkwQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDS4yRbYcEls9I2iIXiJu9nx2OUc4gGwe6D0u7ZpiziH2c0aFvZ6D9j782ewH48
aUipGsAQcgV28aIH5C28uVJmO93q2N4j99LS6RqDYARNU3Js+JJ0z73hzIUf7RQR
P3emsBa/F7A4Dt/iPfnWDN38UW7AVZ6f88ytDRSZQAeU0R+qolZ5dK5owmzKK1DS
YRmzMy68OTFPUy3tUuBMybugBH0hMQR3CZ7KSJcgRHEvSxaFQcTG9eRXuaYv6zsa
HfQ4R4WAXFIiRlC8slBgj6/g9PygULegRVL/3Nok1HbyP3oKgUpBf34Q23gvxgJX
1nGgcSFRNjLvjH+g06B4DzUzAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU9FYY6ic/
QLS8aF4piH4gUIPEkKYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUMzRTM3L0I0NDU1M0Q4RjA5RjExRUQ5QjRBMDczNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDM0UzNy9CNDQ1NTNEOEYwOUYxMUVEOUI0QTA3MzRDNEY5QUUwMi85RllZNmlj
X1FMUzhhRjRwaUg0Z1VJUEVrS1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAk8cMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ8SwMA8EAgAC
MAkDBwAgAQ3ybEAwDQYJKoZIhvcNAQELBQADggEBAAVZvs6KtOLVIuXLzRVYKSb6
arda7IiIxNOFdceSur4+GR6ubKRk3Tdec9PEkIEIW2UQU+H6irA1iFl/VG63q10z
y35xJmvNwqJGG2IHp8qlurxqU5KyVAscxcov+CFssn0cLkd1UMuQ9HQYRrpZvTUg
hZzjsndz4q+uJfqyxHYWwGFSmoyVL+zQA/VBBSx1XgghKrqxZxz3YC3GIvHvvx1z
7+MSfpmT9koHuDKvxC73ortlVwxb/kYNrrgdTmpMCEd6XHUcVVkCqWfjj+yGxH9m
XMn25h+dXT5LlHZqPHh33eCNH8z+yMiAwF0WZr8p97ayC5EiApyaTrPJUNs0wWo=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:39 2024 by rpki-client on console.sobornost.net