Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer
File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer (raw, json)
Hash identifier: bmXNrOhG/cPS00pRKSXz6cMIE6RmJY0IikueySw3JBA=
Subject key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020C92
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Sep 2024 06:13:56 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 135335
IP: 103.154.46.0/23
IP: 2001:df4:6780::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134290 (0x20c92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 9 06:13:56 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dc:22:79:ce:ee:34:48:4f:6b:c5:82:86:ce:
b5:5b:08:61:96:07:8e:26:e9:99:4f:8c:4f:49:53:
00:14:a6:05:c8:f5:c7:9e:04:33:74:1e:f2:6f:6c:
99:30:e3:56:47:2c:3f:eb:7f:24:a0:9b:b9:39:95:
3d:fb:0d:f2:ac:87:cd:68:12:57:00:65:fe:d7:96:
ae:63:e7:ef:56:d8:ac:c1:1d:20:87:7c:10:4f:b2:
a3:20:03:70:05:1d:56:f8:40:0e:20:0f:04:f4:44:
29:22:b9:aa:17:08:84:71:56:6b:6a:b4:f4:0d:04:
6a:b4:6a:65:1c:70:aa:31:61:24:24:1b:64:e6:55:
d0:ee:49:d7:29:be:72:f7:1d:5f:0c:c7:f6:24:de:
99:bf:0f:1a:b2:55:e9:23:77:ce:20:e7:fa:02:20:
fb:67:35:1e:aa:4b:33:eb:4e:cb:89:ed:29:47:b1:
fd:42:a2:80:1e:52:72:4f:ab:91:80:c1:95:2e:f9:
ab:04:f8:4f:84:51:69:3a:42:7b:de:24:59:80:83:
2b:65:49:5e:26:ed:04:be:c0:e1:12:ac:e5:f9:7c:
09:36:8c:09:69:d4:de:bf:e2:9b:30:b5:61:a8:bc:
76:d5:41:69:17:40:6b:6a:a5:03:d7:4f:c1:9a:3d:
d0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135335
sbgp-ipAddrBlock: critical
IPv4:
103.154.46.0/23
IPv6:
2001:df4:6780::/48
Signature Algorithm: sha256WithRSAEncryption
20:0d:7e:40:d8:1a:42:e9:48:b9:e1:53:65:de:9e:75:dc:4a:
71:47:af:7b:25:ee:11:ed:49:47:ff:21:9c:32:60:22:a0:96:
22:b1:bf:25:9d:21:fa:9a:24:0c:8d:d4:4f:5e:ed:3c:4e:2c:
e0:80:05:9d:a8:dd:91:79:08:94:5a:54:af:63:50:3d:df:59:
b0:79:22:33:da:3a:f2:2f:6d:71:6b:7b:02:7c:7b:64:e9:c5:
5f:4a:07:b3:b6:45:2b:68:7a:30:61:cf:c5:5c:1d:98:b5:70:
61:81:c1:8b:27:81:ed:07:55:90:e1:6e:28:b2:97:e7:2d:39:
e0:ee:37:63:9c:d2:96:39:d1:62:a9:2f:94:6f:7e:55:70:06:
e4:15:56:47:24:73:ad:98:df:f0:9e:ce:10:08:a2:ad:3d:e0:
6a:1e:70:bf:28:88:51:0c:36:33:36:7f:97:0c:a1:f7:1e:16:
38:a4:ea:ef:98:53:a4:8b:f5:1f:46:d2:34:36:41:9c:d9:5b:
a1:85:d4:ff:e4:ec:97:d1:5d:c5:2b:c8:0c:7d:c7:ba:e1:b3:
96:28:49:41:2a:52:9d:67:27:b8:85:bb:f9:9a:b0:ef:f3:06:
4f:e9:cb:85:90:8c:5e:54:a6:88:89:49:c2:83:96:8a:12:ea:
97:5f:fe:2b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:42 2024 by rpki-client on console.sobornost.net