Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer
File: D0a9vHSQTl34KfAVlbUcqqIBuds.cer (raw, json)
Hash identifier: lP162peBfjuzPVwdLeQOrOaSniqpWLVNY8ZxfgqRBOw=
Subject key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F3E2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 27 May 2024 06:30:18 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 151318
IP: 103.137.230.0/23
IP: 2001:df2:66c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127970 (0x1f3e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 27 06:30:18 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:e2:5a:00:29:97:a8:af:ba:f9:e9:b7:4c:4d:
28:46:d9:e9:ca:5a:bc:40:55:84:77:25:54:cf:67:
06:13:88:15:4c:dc:bb:3b:f7:a0:57:6e:62:3a:97:
7d:f7:63:c2:9b:b2:b3:42:a9:ef:6d:86:b6:2f:ed:
6c:cb:09:b2:6a:11:a6:48:54:e1:5b:4a:2b:97:91:
32:32:9d:ee:08:c6:6f:01:8e:e5:4f:19:10:62:43:
e2:c5:81:03:ec:86:79:c2:0a:cd:a9:72:3e:67:0a:
cb:fd:5d:f2:9e:74:2e:d7:82:8b:bb:a4:30:08:9c:
46:ec:f7:40:ba:fa:d2:8e:d7:51:e6:69:19:c1:5b:
b6:93:5b:49:9b:3c:7a:cd:c1:ff:6e:c6:a2:c9:39:
01:1c:f8:9f:26:94:e6:49:86:16:4c:27:5f:eb:4b:
c0:6b:78:2d:0a:69:63:16:f5:87:05:38:a2:93:15:
e9:25:a1:7b:58:c2:ae:7a:f6:23:ee:d7:40:04:69:
d3:47:45:ee:b1:df:e0:50:73:5a:05:5b:18:04:2a:
aa:ac:1f:2c:cb:26:96:2e:86:78:5f:37:b2:76:c8:
c2:0f:a4:c0:ee:2a:36:b4:0e:69:4b:6b:91:23:13:
e6:c6:f4:58:38:1c:31:e7:d4:62:63:b2:34:90:86:
86:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151318
sbgp-ipAddrBlock: critical
IPv4:
103.137.230.0/23
IPv6:
2001:df2:66c0::/48
Signature Algorithm: sha256WithRSAEncryption
cf:7a:9d:84:36:d4:26:91:c8:17:44:42:6c:05:06:b8:70:d9:
79:a0:1f:a3:b6:cf:91:9e:c5:6f:77:3d:8b:c0:19:6e:95:0b:
b0:81:97:b2:7d:6e:1b:d2:b8:1f:3f:5c:7f:fe:21:ff:62:b9:
57:c4:fe:8b:d6:e8:6b:1e:d4:81:27:03:05:c5:45:65:d1:f8:
98:83:ea:0c:a5:07:c3:8a:32:4a:18:3b:4b:d3:42:e2:1a:cd:
22:8d:88:93:f7:ab:ab:03:ca:ca:48:b3:46:b2:5b:a3:ec:30:
9f:4d:1e:bf:be:58:60:90:98:89:95:8e:d1:54:01:81:cd:3b:
73:a3:45:ea:b9:90:b6:ce:8b:c0:bf:c4:d9:cd:3d:10:fe:41:
1f:ff:dc:dc:9c:ed:de:b9:8a:32:2b:56:50:70:94:b6:af:7d:
92:7e:29:d7:5b:57:93:10:e5:b7:57:9a:16:37:62:3b:1f:d8:
57:3d:59:91:eb:68:c9:82:e9:63:fa:48:8d:f1:4a:14:af:c9:
71:68:32:75:e5:88:a1:0a:9c:ad:69:9c:7c:c5:f9:bc:3d:4e:
8b:bd:6f:61:9b:a0:4b:19:9c:51:27:4d:bf:fe:ab:05:fe:73:
07:49:69:56:1a:a4:68:12:35:84:aa:af:da:3c:91:3c:61:e3:
92:13:db:19
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:41 2024 by rpki-client on console.sobornost.net