Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer
File: Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer (raw, json)
Hash identifier: b8zUaXu/m7QBqBtbLnjkVrvSqt2YPDX48auYdINa/og=
Subject key identifier: 1A:0F:78:6F:11:B8:E1:7D:45:DE:1E:DC:E6:1E:16:00:DD:49:30:A4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FBC2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Jun 2024 18:22:15 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 151183
IP: 103.131.102.0/23
IP: 2001:df2:43c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129986 (0x1fbc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 27 18:22:15 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A917E951/serialNumber=1A0F786F11B8E17D45DE1EDCE61E1600DD4930A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c5:d8:e7:71:b3:d4:e9:3a:7e:3c:b7:39:96:
06:d8:97:de:2e:ff:31:d2:5b:34:07:97:ab:da:17:
74:f8:19:c7:f4:3a:7e:fe:30:95:37:38:d9:42:bb:
29:4e:08:7f:84:6b:0a:b6:49:03:11:a1:2e:d9:93:
88:34:34:87:1f:d9:48:47:09:95:2f:ab:60:c1:ff:
ad:cf:bf:a0:7a:8e:72:78:93:d1:68:f4:cb:0c:e0:
ed:39:91:32:e3:16:a2:42:56:60:8b:2d:24:f2:87:
f0:a9:60:52:1c:a1:2a:ce:71:fe:fb:c5:ff:7f:58:
28:6f:41:2c:dc:dd:e3:b4:94:ca:fc:30:b3:92:e6:
d0:a5:a2:0c:28:04:e6:0b:50:c4:e1:9b:d0:d6:e8:
44:ca:b1:5a:d3:23:c8:c6:46:bc:ae:3c:6b:6d:e6:
19:d9:37:8e:11:77:f7:59:cf:32:87:d6:ae:97:5d:
93:75:96:07:b8:76:c4:b2:9c:e9:f6:f3:c9:78:07:
bb:94:db:c3:2b:0f:6d:29:5e:9c:85:cf:49:d3:f3:
45:4b:fa:a4:07:9a:da:04:56:b1:03:cb:52:b8:5b:
ff:ba:37:e8:6e:ff:4e:a3:3c:c3:95:ef:dc:bf:86:
84:3a:56:e3:a2:2d:e0:ea:e9:dc:ab:c4:76:63:10:
6a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:0F:78:6F:11:B8:E1:7D:45:DE:1E:DC:E6:1E:16:00:DD:49:30:A4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151183
sbgp-ipAddrBlock: critical
IPv4:
103.131.102.0/23
IPv6:
2001:df2:43c0::/48
Signature Algorithm: sha256WithRSAEncryption
9c:cf:75:5e:58:04:67:0c:19:ca:1f:1a:96:2c:33:d2:05:85:
16:a7:2f:fc:fd:bf:9f:2c:44:f4:99:62:86:85:f9:48:8f:e9:
a9:b0:77:2f:85:83:17:71:ec:b1:95:44:60:81:94:5e:95:a8:
78:33:62:92:5f:51:67:fc:a1:02:1e:fd:7f:2c:bb:46:48:f2:
25:50:db:3a:bf:b9:24:ba:fd:aa:dc:fa:f0:77:74:b2:26:32:
b7:e6:64:a7:d0:7c:0d:e5:81:00:5f:9d:c4:30:f1:44:9c:43:
35:11:5c:1a:ec:dd:f7:26:a7:bb:c2:72:fc:09:4c:e1:22:c0:
6c:11:f8:72:19:1a:7b:3a:df:58:84:47:d8:a7:de:fa:a5:c3:
15:ad:66:dd:95:57:3f:92:1c:18:ae:26:01:46:79:c5:fd:95:
f3:12:eb:0c:1b:40:fe:17:2f:5c:3b:da:c9:cf:b5:f9:1f:a1:
2b:18:29:94:e3:ec:45:01:50:79:94:b9:fb:e3:e3:8e:13:72:
1e:9c:0f:d9:40:8b:74:1a:7d:bb:6a:99:7c:51:4b:26:ed:e3:
37:bd:82:84:6f:62:c6:09:ec:88:df:12:9a:97:4d:60:76:e2:
b5:a3:68:f5:ea:b1:e8:72:a6:74:61:07:04:f9:b3:df:0f:ab:
91:0f:85:67
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:43 2024 by rpki-client on console.sobornost.net