Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer
File: MoQzhPrmr2wxduHfdOkIgdbZdZI.cer (raw, json)
Hash identifier: AkrHGkMrCdmKQX1Myda9rVhgoXubgj5UoTRAUkq8dWg=
Subject key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021427
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 15 Oct 2024 18:34:18 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 17802
AS: 139878
IP: 36.50.42.0/24
IP: 202.43.128.0/20
IP: 203.18.209.0/24
IP: 203.28.94.0/23
IP: 203.210.64.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136231 (0x21427)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 15 18:34:18 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a3:f8:47:22:7f:03:cb:e1:b4:41:12:0e:3d:
5c:0f:62:3a:26:65:67:ad:f7:97:67:b5:73:6e:c3:
ae:d8:9c:99:71:ee:91:0d:ad:80:3e:c2:b7:9d:75:
31:92:9a:bf:e5:33:d4:eb:89:db:4b:ac:af:3d:64:
d6:ec:36:b6:81:8c:e8:af:0c:23:de:97:86:87:f7:
6b:45:f0:f2:cd:d8:39:39:b0:46:81:09:a1:da:47:
af:05:13:8f:cf:90:0a:fe:f5:8d:09:57:53:c3:6c:
a0:be:e7:ce:d7:d1:e5:f8:38:4c:17:a7:67:fb:1c:
02:ff:3a:ad:34:a3:1d:91:0e:65:f1:59:8d:b5:95:
2f:f3:bb:12:5a:7d:90:40:6a:09:88:6b:e6:6b:1b:
4a:e0:85:fc:7b:da:0e:ef:67:f6:fe:6b:a5:5a:1b:
89:88:8d:4a:41:f0:5c:23:48:85:36:fe:21:97:fe:
b7:02:0c:c5:aa:82:af:24:05:c1:49:23:0d:7b:f9:
95:b3:b1:28:25:81:13:e9:37:0f:81:13:71:4d:6d:
10:0d:37:fb:c3:a1:df:05:89:69:92:4a:01:b6:52:
17:8b:24:6d:20:fa:67:e4:c4:06:78:3c:6a:6e:7e:
6e:89:ed:85:d8:3d:69:7e:6c:13:8c:0b:41:d2:f1:
e9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17802
139878
sbgp-ipAddrBlock: critical
IPv4:
36.50.42.0/24
202.43.128.0/20
203.18.209.0/24
203.28.94.0/23
203.210.64.0/20
Signature Algorithm: sha256WithRSAEncryption
4d:96:7f:d0:a3:50:13:50:73:42:e6:e7:d3:99:51:c2:37:ca:
b5:71:87:60:54:aa:dc:6b:99:67:11:85:16:9a:b5:99:44:65:
f1:93:ec:e3:65:29:dc:f3:de:38:c5:dc:29:ae:65:e1:b0:b5:
33:84:a2:36:bf:66:14:09:0c:3c:8f:99:a4:cd:e7:4b:15:b1:
43:a3:a2:e4:23:be:56:c4:7e:5e:b4:e5:8e:57:7b:df:58:72:
13:3c:d3:7b:6c:ea:66:c2:b8:6a:1c:0f:d2:a6:c7:26:b0:05:
4e:db:ee:fa:7d:7e:fa:ff:1d:25:ec:72:41:ae:bf:29:f1:ed:
59:d9:1f:d3:f4:14:0d:b1:78:2e:53:2e:1b:79:5f:8d:ef:27:
6d:7e:16:7f:d4:6f:f0:ed:93:66:7f:fb:93:a7:2e:ef:6f:d1:
c3:43:e2:9a:52:d5:8d:80:2b:a5:ef:88:69:55:c0:60:98:0a:
50:9c:68:c2:60:68:f8:ae:de:f4:0c:11:b5:8d:b7:eb:ef:46:
0f:cf:93:92:42:5f:15:37:1f:6e:83:5f:98:7e:43:99:24:8d:
11:da:b2:c2:c7:bf:51:db:f5:15:63:09:20:c6:1c:89:bf:80:
10:e0:7c:1b:29:47:8d:61:1a:1e:e9:12:0d:13:89:6f:f8:53:
94:3c:c9:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:47 2024 by rpki-client on console.sobornost.net