Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer
File: JzQEfW6XjVCbqKUabxBkh49Hddo.cer (raw, json)
Hash identifier: M++xGjlPFj6je23Anv1D0t2mLjUNkIwc57V87S1MMhs=
Subject key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020754
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 Aug 2024 16:23:54 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 4638
IP: 45.112.224.0/22
IP: 103.52.88.0/22
IP: 119.235.64.0 -- 119.235.103.255
IP: 202.62.118.0 -- 202.62.127.255
IP: 210.7.0.0/19
IP: 2403:4600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132948 (0x20754)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 16 16:23:54 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:0b:ed:c2:e9:2e:de:bd:38:73:fd:5f:bc:aa:
6e:93:b7:80:fb:1e:7b:93:81:47:67:28:3a:7a:37:
4b:a6:a1:30:e8:aa:31:49:66:2c:8d:e1:fe:25:be:
f3:0f:22:98:4e:cc:d3:e8:b4:48:74:9a:45:1f:dd:
f2:bb:00:a7:47:77:47:a1:7d:f0:96:a0:7a:b7:bd:
41:86:a0:2f:9c:2e:31:2d:83:01:f8:6b:f3:1e:56:
b4:ee:1f:5e:61:ee:69:87:75:c5:56:89:15:e6:94:
a4:43:74:fa:5b:d0:43:5f:86:c2:4e:74:ae:a4:2c:
4e:2e:5c:b3:9e:c8:4a:a8:56:f5:3f:e0:89:df:18:
42:f3:c4:77:59:1d:bd:fd:3e:cb:b1:07:c9:c7:2e:
43:af:99:0f:df:fd:65:18:7a:81:5b:f1:48:bf:cb:
4c:6b:34:d3:d6:37:9a:95:45:d1:91:f3:ea:62:1f:
64:cc:14:70:43:e3:a2:28:82:65:19:d3:6c:e0:83:
07:bd:40:42:2c:00:81:d1:85:14:09:ec:da:43:b9:
55:1b:50:d1:b1:b8:99:7a:86:5e:93:8d:da:19:95:
0b:21:02:92:93:ba:6f:fe:bc:e4:c7:1a:68:78:7d:
a2:bb:5f:96:55:8e:cb:78:f4:9f:99:0e:f3:bb:72:
b4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4638
sbgp-ipAddrBlock: critical
IPv4:
45.112.224.0/22
103.52.88.0/22
119.235.64.0-119.235.103.255
202.62.118.0-202.62.127.255
210.7.0.0/19
IPv6:
2403:4600::/32
Signature Algorithm: sha256WithRSAEncryption
a1:3b:bd:59:7f:32:85:e5:39:fe:95:bf:ce:7e:6a:d3:0d:32:
30:46:82:62:11:dc:24:3b:e6:14:5b:b8:1f:f2:2d:9b:33:f1:
27:79:00:77:02:e5:a2:82:37:39:93:c9:18:f5:40:1e:49:b1:
49:23:3a:e1:88:9d:c3:a5:ca:ea:6a:80:bf:a7:8a:50:dd:8f:
43:fb:63:ba:4e:c2:b0:35:db:77:61:b6:9e:a8:7f:89:65:cf:
6e:59:c1:b3:df:00:8f:5a:69:4b:ba:81:84:c8:2f:d3:52:09:
e7:bf:a9:71:ac:75:1f:34:19:fa:2a:c6:88:a2:fc:37:7d:b4:
dd:5b:e6:28:95:28:71:31:d6:25:7f:d3:6b:27:86:92:18:f2:
ac:19:a7:b3:54:40:3a:e8:b1:d0:48:06:b8:e3:4d:de:27:d9:
2b:df:ec:09:f1:1d:2c:42:fd:17:b7:39:96:e6:e7:02:3d:02:
4f:99:e8:12:eb:6b:84:b8:40:09:ac:67:33:5b:67:c7:77:38:
df:5f:05:7f:ff:06:c2:35:d9:30:5c:6b:02:fe:8b:7a:04:77:
1c:a1:0b:d5:a1:a2:62:87:c5:a1:04:b7:70:67:41:de:3e:9b:
5a:10:90:c8:f1:fe:56:d8:ed:60:bf:b2:2e:06:92:ba:7c:88:
88:4e:1a:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:45 2024 by rpki-client on console.sobornost.net