Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer
File: Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer (raw, json)
Hash identifier: L2pb03UzophLmd0g8/OC8G4+lM6sFtggex14QUpdhpQ=
Subject key identifier: 16:08:BF:46:24:A7:E1:B7:23:22:8B:46:61:DD:66:1E:70:AE:F3:F4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0209F8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 30 Aug 2024 14:38:53 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 142604
IP: 103.170.208.0/23
IP: 2001:df7:2a80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133624 (0x209f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 30 14:38:53 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91444E5/serialNumber=1608BF4624A7E1B723228B4661DD661E70AEF3F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:84:18:8f:d4:6a:ff:6b:71:de:68:64:08:f2:
8d:c8:9f:cc:a4:2f:3c:00:3e:67:95:2a:3b:13:06:
3c:fd:58:8b:e8:18:bc:d3:a7:bd:ab:e8:f5:3e:26:
48:8f:98:c9:0d:45:10:f6:66:05:b0:34:2d:b1:22:
47:f6:a2:4c:bf:7e:ba:45:90:e7:95:41:90:ca:d6:
ab:9c:67:5b:2d:46:f2:9a:df:b4:18:19:63:95:0a:
42:7f:fa:24:07:61:7a:35:5c:ae:ea:c4:63:db:af:
16:46:cc:36:a0:12:64:6a:c3:fd:d2:ff:fe:39:ac:
04:c2:04:c9:90:a0:cf:2d:94:77:b7:0f:be:70:96:
30:28:dc:97:f6:e6:5c:99:5d:b8:16:85:f0:ea:50:
be:6b:da:d6:b4:7d:dd:3a:88:8d:39:71:f6:ba:ec:
32:e8:77:45:f7:c6:89:ee:12:cf:bd:c9:12:58:c4:
1c:3c:41:95:02:89:bb:14:68:8a:0c:be:dd:f9:e4:
9c:09:28:b1:29:4d:fd:81:d3:c7:09:4f:28:5a:b1:
51:28:8f:91:e8:ea:e5:bf:22:ff:05:5d:81:c7:29:
b9:16:1b:ae:24:60:6f:a9:f5:9a:a2:8a:91:94:37:
72:69:8f:01:b9:4a:b5:18:2f:97:5a:62:bc:3c:35:
bc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:08:BF:46:24:A7:E1:B7:23:22:8B:46:61:DD:66:1E:70:AE:F3:F4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142604
sbgp-ipAddrBlock: critical
IPv4:
103.170.208.0/23
IPv6:
2001:df7:2a80::/48
Signature Algorithm: sha256WithRSAEncryption
2b:90:d1:5d:f1:37:ff:c3:b7:84:1b:ce:f9:fc:2a:7f:11:5d:
eb:92:1f:ff:3e:1d:48:81:a0:31:9f:db:54:91:b9:f1:63:49:
32:78:db:0c:07:bc:57:1f:91:0a:cd:98:6f:01:52:7d:7c:e7:
61:67:b0:71:55:db:5d:fb:e0:0d:e2:41:b2:2d:9f:d1:37:8f:
a4:98:ed:dd:5d:33:9c:f6:13:d2:ad:14:5b:6c:79:45:0f:83:
a5:85:06:b5:83:60:97:69:b0:1f:4d:8c:d7:56:51:dd:ee:fe:
14:92:b8:2b:28:e3:81:44:e3:00:2a:4b:bc:b6:9c:61:16:a7:
a0:96:bb:85:0b:08:dc:ab:7f:3e:0b:68:f6:c7:4c:51:b4:03:
f0:06:86:32:79:26:67:cc:f2:aa:fb:26:c3:88:5e:d7:0d:7b:
c4:14:4c:63:ea:e8:67:ae:5c:27:15:0c:fb:f5:06:3c:c5:22:
4c:68:b6:82:38:79:a5:d0:f3:b5:58:79:74:23:54:7f:f5:65:
9f:02:6f:1a:32:dc:b2:30:1c:12:98:65:8c:85:cf:38:b3:07:
e5:05:ef:27:32:fb:83:4c:e9:7b:5e:1b:48:32:d6:96:ae:27:
4e:df:38:b5:72:c1:09:ae:82:a2:b2:74:e8:7d:de:96:21:7c:
41:e0:99:27
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:43 2024 by rpki-client on console.sobornost.net