Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSOs4W_v3mI54mjE4Ea2yMX2GWU.cer
File: JSOs4W_v3mI54mjE4Ea2yMX2GWU.cer (raw, json)
Hash identifier: Kdbw2qZIwCCxrIIRja9yLIiKBBTT0e4YyMuZAmiiGJA=
Subject key identifier: 25:23:AC:E1:6F:EF:DE:62:39:E2:68:C4:E0:46:B6:C8:C5:F6:19:65
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020479
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/JSOs4W_v3mI54mjE4Ea2yMX2GWU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Aug 2024 13:17:29 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 103.140.138.0/23
IP: 2001:df0:c380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132217 (0x20479)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 13:17:29 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A912A9B1/serialNumber=2523ACE16FEFDE6239E268C4E046B6C8C5F61965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:01:f4:5d:8b:3f:b0:92:c7:ac:59:53:1f:7b:
b2:2c:8d:61:16:e8:07:e2:04:7e:27:79:11:9e:9c:
6d:60:3a:85:30:af:19:cd:8b:4f:c9:64:8d:42:ba:
20:e4:1f:ff:df:cb:02:20:33:42:b7:ad:6a:83:99:
ba:08:b3:6c:91:c2:ed:58:be:bb:1b:19:a6:a0:fa:
cf:2a:be:ec:b0:3b:cd:1f:d6:7f:b4:d7:5a:87:ab:
5a:22:19:c7:64:80:47:e9:c4:e0:b4:d5:64:cd:a6:
e6:97:50:d6:09:13:92:a3:b0:bc:b7:76:b1:0c:99:
c8:ef:ce:f4:0a:6c:23:7d:04:f4:fd:8b:d5:84:74:
1c:63:f9:4e:dd:eb:24:49:87:29:03:15:b4:95:63:
65:4f:b8:4b:76:e7:5d:47:c5:1b:c5:71:8d:88:2b:
ca:d1:b6:07:e6:34:0e:60:4f:83:6b:e1:47:b4:85:
97:cb:e7:0a:0b:62:8a:47:31:7f:9a:e9:9c:44:91:
c1:53:8e:ea:e4:65:90:99:c6:8c:e6:80:02:ca:bd:
12:9b:a8:a8:0a:93:75:07:2e:58:b0:09:6f:4c:cd:
bd:c2:07:f9:36:67:e6:23:af:b1:be:20:38:32:94:
97:7a:3f:d6:3a:3f:9f:3b:e2:85:f7:35:d6:b1:0d:
eb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:23:AC:E1:6F:EF:DE:62:39:E2:68:C4:E0:46:B6:C8:C5:F6:19:65
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/JSOs4W_v3mI54mjE4Ea2yMX2GWU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.140.138.0/23
IPv6:
2001:df0:c380::/48
Signature Algorithm: sha256WithRSAEncryption
3e:83:f9:8b:91:e5:6a:bc:41:ab:33:3d:b5:4c:5f:76:33:97:
aa:2c:6e:4b:25:e7:7c:17:96:6f:5e:3c:7c:b3:f9:20:f1:be:
34:61:43:3c:3f:8e:eb:b0:8f:2a:9d:a0:a6:7c:8e:1c:6d:d7:
84:ab:79:cc:ad:aa:f3:c9:a2:7e:34:d5:f2:3c:e8:c3:6d:f7:
b8:f6:13:a9:51:0e:d8:03:9d:7c:05:e0:56:a0:b4:ff:1b:09:
f4:6d:64:93:c4:6a:e5:3f:e8:63:81:00:4c:ff:75:6b:ff:0c:
dd:c9:2a:82:e4:1e:1c:ba:6c:35:66:9b:f8:bd:e0:b7:4e:8d:
f3:4f:ba:ed:3c:68:dd:61:24:ad:94:7b:fc:9b:07:93:12:20:
bd:47:32:f2:50:32:92:8e:9f:54:43:40:33:39:fe:d4:60:fe:
1e:3f:95:92:f5:b9:6e:6e:01:65:6f:a9:f2:51:57:5b:90:01:
27:6a:c0:34:e2:6e:3f:a0:c9:14:4d:8d:5e:10:f3:5a:a7:35:
57:70:d5:75:3b:6d:83:bd:d4:81:8d:52:35:1f:96:2d:31:50:
e2:f4:de:b7:67:0c:47:23:c2:75:6e:a1:71:e4:52:cf:41:1e:
18:09:0d:ad:ed:0f:fe:21:3e:7c:9c:6c:d4:2b:a1:a1:a8:8c:
32:e2:36:ee
-----BEGIN CERTIFICATE-----
MIIGDzCCBPegAwIBAgIDAgR5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgwMjEzMTcyOVoXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMkE5QjExMTAvBgNVBAUTKDI1MjNBQ0UxNkZFRkRFNjIzOUUyNjhD
NEUwNDZCNkM4QzVGNjE5NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCbAfRdiz+wksesWVMfe7IsjWEW6AfiBH4neRGenG1gOoUwrxnNi0/JZI1CuiDk
H//fywIgM0K3rWqDmboIs2yRwu1YvrsbGaag+s8qvuywO80f1n+011qHq1oiGcdk
gEfpxOC01WTNpuaXUNYJE5KjsLy3drEMmcjvzvQKbCN9BPT9i9WEdBxj+U7d6yRJ
hykDFbSVY2VPuEt2511HxRvFcY2IK8rRtgfmNA5gT4Nr4Ue0hZfL5woLYopHMX+a
6ZxEkcFTjurkZZCZxozmgALKvRKbqKgKk3UHLliwCW9Mzb3CB/k2Z+Yjr7G+IDgy
lJd6P9Y6P5874oX3NdaxDeu/AgMBAAGjggMEMIIDADAdBgNVHQ4EFgQUJSOs4W/v
3mI54mjE4Ea2yMX2GWUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTJBOUIxLzVDQUNGNkE4QjkyNjExRTk5NzUyODkyMkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyQTlCMS81Q0FDRjZBOEI5MjYxMUU5OTc1Mjg5MjJDNEY5QUUwMi9KU09zNFdf
djNtSTU0bWpFNEVhMnlNWDJHV1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8EITAf
MAwEAgABMAYDBAFnjIowDwQCAAIwCQMHACABDfDDgDANBgkqhkiG9w0BAQsFAAOC
AQEAPoP5i5HlarxBqzM9tUxfdjOXqixuSyXnfBeWb148fLP5IPG+NGFDPD+O67CP
Kp2gpnyOHG3XhKt5zK2q88mifjTV8jzow233uPYTqVEO2AOdfAXgVqC0/xsJ9G1k
k8Rq5T/oY4EATP91a/8M3ckqguQeHLpsNWab+L3gt06N80+67Txo3WEkrZR7/JsH
kxIgvUcy8lAyko6fVENAMzn+1GD+Hj+VkvW5bm4BZW+p8lFXW5ABJ2rANOJuP6DJ
FE2NXhDzWqc1V3DVdTttg73UgY1SNR+WLTFQ4vTet2cMRyPCdW6hceRSz0EeGAkN
re0P/iE+fJxs1CuhoaiMMuI27g==
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:45 2024 by rpki-client on console.sobornost.net