Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HC-QzT9RuKzQAhDjV96agctF0XE.cer
File: HC-QzT9RuKzQAhDjV96agctF0XE.cer (raw, json)
Hash identifier: hKpEKdz1gPWRYEdE/OcfORozLRpNlnsG4nyHC7iHJMA=
Subject key identifier: 1C:2F:90:CD:3F:51:B8:AC:D0:02:10:E3:57:DE:9A:81:CB:45:D1:71
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02012E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915B01D/2192951695C311E6855A3E1CC4F9AE02/HC-QzT9RuKzQAhDjV96agctF0XE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915B01D/2192951695C311E6855A3E1CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Jul 2024 15:05:11 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 135408
IP: 103.217.248.0/24
IP: 2001:df2:e00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131374 (0x2012e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 18 15:05:11 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A915B01D/serialNumber=1C2F90CD3F51B8ACD00210E357DE9A81CB45D171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7c:74:39:ba:33:b7:df:72:06:97:f1:41:d9:
2f:6c:40:1f:54:47:94:25:f7:58:7a:c8:4b:ec:d2:
b8:87:82:89:81:89:5b:24:81:08:c4:2e:a6:cc:51:
58:b9:4b:d3:c5:f0:88:42:a2:7e:be:bf:67:8f:a6:
25:54:1a:23:bf:08:40:b8:86:b7:be:58:29:19:10:
21:55:e5:c5:e5:9e:ff:93:a3:f0:76:33:98:2b:02:
4c:78:1b:11:ac:e3:79:84:3b:6a:8b:07:32:d6:e6:
8c:ea:7c:e3:04:b8:97:0b:d3:6f:4a:74:9f:69:c8:
04:75:64:6f:73:bf:f3:29:37:26:aa:ab:0b:c0:c7:
f0:8f:72:5b:5c:77:55:e7:43:5a:d7:bc:71:af:95:
fb:97:f4:4b:ca:27:37:15:f8:db:90:81:ae:4a:1b:
5b:91:e4:ee:35:b2:10:25:33:2a:86:26:58:00:4d:
0e:12:13:a5:a1:c7:12:91:77:b7:01:a3:78:9e:a6:
d0:a8:93:2d:f6:67:8a:7e:c5:db:b3:c6:c8:9a:f7:
14:09:9e:28:86:02:f1:28:e6:50:8d:01:15:ee:fe:
07:ca:97:0b:f3:64:47:62:b1:df:c6:bb:0d:d8:14:
c5:8c:29:14:f5:e6:9e:89:4a:56:12:d1:55:e0:28:
13:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:2F:90:CD:3F:51:B8:AC:D0:02:10:E3:57:DE:9A:81:CB:45:D1:71
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915B01D/2192951695C311E6855A3E1CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915B01D/2192951695C311E6855A3E1CC4F9AE02/HC-QzT9RuKzQAhDjV96agctF0XE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135408
sbgp-ipAddrBlock: critical
IPv4:
103.217.248.0/24
IPv6:
2001:df2:e00::/48
Signature Algorithm: sha256WithRSAEncryption
d1:2d:68:de:93:32:81:1d:f0:ae:04:06:dc:e4:3d:dd:a6:ef:
7f:33:3d:40:b3:9a:b2:5d:62:5c:45:18:bc:a8:11:ae:be:a7:
55:1b:6a:b5:57:10:3a:74:0b:d7:a5:6e:7b:06:14:0d:2c:27:
47:df:e2:1d:17:ce:68:9b:61:92:e7:3a:01:11:6a:01:70:07:
f5:94:d7:69:e1:86:4c:bc:df:be:85:f7:3f:f7:19:94:35:1e:
47:b0:9b:49:3a:cb:b8:cc:39:26:bc:27:27:92:d7:31:e4:e6:
22:97:c5:93:77:47:f7:91:5d:bd:4b:e0:cd:cd:c6:9f:85:e4:
06:39:98:95:1e:fb:ad:7d:29:18:43:f7:64:89:72:b4:6f:78:
9b:0d:b7:c8:4d:f2:ae:d4:83:64:55:ea:7d:cc:6d:1c:1b:6d:
4d:e1:01:c3:83:e2:e8:18:c9:d3:0e:08:b9:38:69:2a:5c:15:
52:01:7f:37:92:54:c5:67:ca:6c:f8:2b:0a:52:fa:5b:d5:d4:
48:77:40:ce:3f:30:66:10:6a:3d:81:2b:66:df:57:55:2b:30:
a4:8a:a8:5e:a1:28:c9:1d:33:3d:85:5c:c9:d9:2d:bb:15:34:
27:41:98:29:47:b8:67:b9:4f:0f:7b:28:86:e0:ad:73:de:c7:
a0:5c:21:70
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:44 2024 by rpki-client on console.sobornost.net