Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer
File: JhOQ197eXRxAsfPigPOKCNqv3N4.cer (raw, json)
Hash identifier: hkCzx0gmvu873iPUjNii0OXGJb0x3A/ZsW2xDOQVQcw=
Subject key identifier: 26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02023A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 Jul 2024 04:34:58 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 103.189.88.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131642 (0x2023a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 25 04:34:58 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A912E367/serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:63:02:b9:1b:0e:c1:ed:2f:a4:d3:ae:63:cb:
d9:33:47:3a:c8:7b:d1:de:b2:84:8c:fa:07:9d:aa:
a7:dc:1d:12:14:cf:e8:97:55:3c:ec:d5:4e:79:16:
82:27:44:c4:69:a6:a9:e8:c8:f5:4f:c9:e0:17:d2:
77:b9:3e:2a:45:f4:c6:1b:a9:7c:6b:67:db:57:e6:
3b:c1:2f:02:a1:cd:c8:1f:bd:18:7a:de:15:ad:71:
8a:af:23:f4:31:5c:8d:05:40:d8:f6:e0:49:b2:be:
3c:52:bf:0e:b6:7e:2a:4d:83:7c:a0:8d:be:35:6e:
c0:32:17:20:b8:23:c7:ed:76:b0:6a:fd:a8:69:7f:
75:0c:3a:1e:a9:21:0d:4b:14:fa:90:07:cc:b2:d3:
c0:e7:12:0b:9a:1b:81:e9:9f:75:69:dd:5e:bb:07:
ed:ea:b7:ba:74:c8:50:38:3b:b5:d2:05:7d:64:ca:
db:66:f8:10:70:16:35:52:3d:e2:4a:31:89:ac:32:
9b:e5:46:db:81:8e:ad:a7:dd:40:8d:f9:b3:3e:03:
0d:2a:98:3a:4f:be:73:07:b6:6c:a7:8f:2a:41:fc:
83:41:59:68:f0:0f:83:52:d5:bc:05:0d:1c:b2:22:
34:2b:11:3e:42:1f:9b:63:43:17:ca:33:f9:65:15:
83:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.189.88.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:83:53:4d:f6:aa:d6:e5:c7:7b:39:97:c5:1d:55:93:8f:2b:
d8:52:2f:34:56:87:57:3a:95:fb:e1:f6:ee:9d:35:f1:1f:9d:
fd:f1:0e:4a:8e:1e:bb:3e:b4:81:50:0d:7c:6a:91:4e:58:f0:
3a:1f:86:53:25:75:2b:c8:d2:d8:86:5a:77:51:55:be:c3:6c:
79:72:b1:72:aa:8e:d2:55:a2:7f:63:51:c2:a2:8e:ea:5c:05:
ac:64:99:5f:10:a9:af:22:f5:2d:69:f0:45:d5:b4:ca:cc:b8:
d6:83:e3:fb:92:70:f7:33:5a:03:91:a1:33:bc:60:66:59:b2:
8f:75:f1:4d:79:a5:94:f6:3f:ec:e1:53:42:ce:a0:b4:0c:ca:
f3:f1:de:9c:aa:04:ef:5c:09:e8:a4:0b:47:35:4e:36:8c:82:
3e:db:e3:71:5a:df:9c:76:14:01:c0:8b:20:d8:05:b0:f4:f5:
3c:1d:60:4d:8c:83:7e:e3:29:2f:49:56:5d:4a:eb:4d:07:8b:
83:97:44:6d:00:a2:02:d8:cd:7b:af:20:7f:95:2a:92:ed:7e:
c0:e9:b9:b3:5c:17:ea:89:60:2e:c3:db:21:9e:88:85:51:4b:
09:62:ed:6a:03:53:63:f9:3d:7e:24:b5:36:27:c8:5c:0b:d8:
58:75:54:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:45 2024 by rpki-client on console.sobornost.net