Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer
File: HteCvmLXEBdmiyijJonkcO2iAfg.cer (raw, json)
Hash identifier: EVCIEXzn5VvHEH9Kq/pFerkgxtzoemw9r6JG0+armu8=
Subject key identifier: 1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02132E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 09 Oct 2024 20:28:50 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 141216
IP: 103.156.154.0/23
IP: 2407:d3c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135982 (0x2132e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 9 20:28:50 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91E1257/serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:10:bd:1d:5b:3e:b8:ee:7b:3d:40:cb:eb:38:
ba:f9:b5:ae:24:e4:d1:83:18:14:87:de:45:01:2e:
4e:f3:af:02:cb:50:86:a4:02:cb:25:9b:b5:68:8d:
46:4b:1f:42:8e:ab:6e:e5:95:4d:b5:69:f6:2b:89:
5e:b4:7c:19:5c:b3:3a:a8:2d:10:c5:2e:9c:01:27:
f7:8c:fb:06:48:56:6c:40:e0:70:79:e3:8d:30:42:
04:5e:b4:68:c7:a5:2b:be:af:6b:74:14:01:24:44:
fa:48:cd:d5:f4:a8:5e:6f:f8:b5:fc:08:22:3d:f7:
8b:69:af:a3:20:86:02:eb:62:54:7b:9c:8f:ac:a9:
83:c8:f7:d0:3f:a3:e5:4d:4e:10:19:4f:42:1c:47:
ae:86:a5:ec:18:4b:b2:15:5c:8c:a9:d3:36:ab:2e:
df:a5:41:17:88:a4:a5:26:91:52:84:81:ae:c1:ab:
10:6b:88:3b:39:11:a6:d3:28:a5:4a:91:98:f2:09:
fa:ed:39:48:d9:87:00:31:e3:25:11:c5:c7:ba:e3:
d3:98:1e:1f:4b:60:33:1d:8f:73:d7:5d:28:a5:39:
7e:0e:b5:15:36:cd:e0:5b:36:a8:e5:e6:a2:20:a0:
77:0d:45:72:75:24:24:82:ac:5b:81:29:a8:7f:41:
57:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141216
sbgp-ipAddrBlock: critical
IPv4:
103.156.154.0/23
IPv6:
2407:d3c0::/32
Signature Algorithm: sha256WithRSAEncryption
5e:50:ee:96:90:11:81:83:67:f9:df:c0:37:7f:0a:a0:00:b1:
f7:99:02:cc:3f:dd:1e:40:95:9a:6b:dd:ec:f8:59:ef:18:ab:
09:01:55:e5:2c:e8:be:4d:b3:12:bb:47:b1:4b:07:8a:34:d3:
a9:a1:e4:46:45:9f:6d:2e:e3:c9:85:e1:93:eb:c0:bb:ad:37:
3c:41:35:f3:1c:b6:60:9a:4d:65:04:d9:e4:fe:2f:7e:a0:f6:
8e:e2:55:8f:61:47:48:6f:c2:2b:ff:c6:a7:38:5c:de:2d:bf:
e6:d1:0a:50:b9:92:9e:7b:96:c2:d7:65:8c:01:6c:e7:d1:77:
7d:12:e7:c9:30:95:65:1a:da:9c:e6:19:5d:21:c8:25:d2:81:
57:24:94:9d:61:2a:48:cd:b4:79:f4:df:71:66:2e:c3:f9:54:
64:df:1f:95:89:81:88:f5:cf:99:98:98:ac:ab:90:aa:51:83:
d6:b2:10:37:4f:c9:bb:ef:ff:a2:95:8d:39:a6:b8:0c:7b:73:
74:8b:6c:53:c0:0c:84:7b:86:46:b8:94:c3:9a:ac:5e:05:ac:
6b:e6:ae:0c:89:04:fd:6f:23:4d:86:fb:a8:7e:71:cf:cb:c6:
a5:06:a1:cc:ba:ed:24:4c:09:35:a2:dc:02:77:99:3c:f2:04:
26:84:9d:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:44 2024 by rpki-client on console.sobornost.net