Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer
File: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer (raw, json)
Hash identifier: UACu2P+pkJKG2GpRVVTA03rqSrbrPTmZ2nA3DM2g/vE=
Subject key identifier: 32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0213AB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 11 Oct 2024 16:01:39 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133149
IP: 103.75.48.0/23
IP: 103.121.172.0/23
IP: 2405:c540::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136107 (0x213ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 11 16:01:39 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A918C88D/serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:3a:bc:d3:9e:2f:8c:45:4d:73:82:09:4c:1f:
bb:ee:71:93:4c:a8:b9:cb:2c:ce:4c:be:1e:7a:49:
e5:43:ab:3b:5d:39:c7:73:9c:9b:d1:ce:47:1c:e7:
c4:c5:d5:a8:6a:bb:d4:5f:75:7a:e2:c3:93:85:ed:
cd:10:92:2c:b8:2c:b5:39:8a:c9:0e:0a:ac:82:24:
57:cf:5d:6a:a4:d7:fa:9d:0c:24:e4:49:56:ac:0b:
b5:16:f7:30:fb:ec:14:af:5f:60:54:09:ff:c8:91:
bd:fd:9c:37:b8:66:b8:b0:1f:65:cc:80:aa:bf:2b:
a3:c4:cf:aa:3c:a5:b7:de:4c:7a:0b:f5:79:dc:b9:
ae:a0:57:c1:1d:91:e0:4b:18:a6:ae:f4:fe:11:47:
b7:3f:2f:99:0a:e5:16:26:05:25:ca:cf:3c:f8:b4:
78:9e:08:94:bd:24:de:07:80:5a:38:61:1b:57:34:
18:4c:ff:fc:82:5d:9c:cf:33:76:27:c0:d0:d5:d2:
a2:a2:37:22:59:6d:7c:7e:eb:7f:4b:1f:ee:8a:bb:
bb:ed:a5:e9:02:a0:cb:e3:48:e5:5d:7c:a2:c0:cd:
04:50:62:f5:3b:ff:c3:9d:97:7e:c3:c8:77:d3:80:
f9:85:a8:79:56:9e:28:aa:1f:88:c7:28:57:7c:c0:
84:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133149
sbgp-ipAddrBlock: critical
IPv4:
103.75.48.0/23
103.121.172.0/23
IPv6:
2405:c540::/32
Signature Algorithm: sha256WithRSAEncryption
d2:5f:74:1a:10:ee:9b:25:55:f6:1e:5a:b6:e1:2d:68:27:a0:
08:8e:46:11:fb:92:62:cd:84:98:ca:d9:dc:8c:66:d3:bd:6a:
be:3e:70:e1:81:0b:7c:55:c2:50:c3:94:04:2d:64:3c:1b:13:
50:ae:2f:f9:91:e7:72:bd:b5:8f:9d:23:2f:97:46:85:21:7f:
eb:ea:b2:e9:ae:ae:f2:09:5f:68:da:e2:63:41:da:4f:80:d8:
ea:7c:77:e5:1e:02:fb:82:aa:10:29:99:32:e7:41:55:14:28:
0c:9b:c8:bd:32:dc:c9:9f:f3:49:b8:6f:5a:b3:a0:22:55:f2:
2e:b4:ea:3d:73:0f:01:4a:dc:97:be:86:a7:7b:94:e1:41:09:
4c:d6:0a:8e:25:d3:ae:c7:6f:ce:22:08:9f:6f:3f:d7:02:ee:
7b:5d:45:62:db:8c:05:46:e3:b8:3f:85:74:56:17:ba:7b:1a:
51:15:73:97:33:3b:47:30:d6:3e:f3:3c:f7:8c:db:77:3d:d5:
be:d5:7e:c3:53:99:e5:51:6e:32:2d:a3:aa:a1:f0:8d:d9:e4:
57:e5:75:d6:86:2f:7d:19:8d:18:8f:4a:a1:fd:25:67:e7:e6:
98:13:9d:82:ef:4e:0b:44:93:ed:7b:60:75:a0:67:00:e4:90:
5b:2d:15:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:47 2024 by rpki-client on console.sobornost.net