Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NwOTvGRg5S0PXgIdVS9YF0M-suc.cer
File: NwOTvGRg5S0PXgIdVS9YF0M-suc.cer (raw, json)
Hash identifier: Mn1WN5BBVVQCkjeh2v82qZdkflmUpGUe1N7+/zGXp5c=
Subject key identifier: 37:03:93:BC:64:60:E5:2D:0F:5E:02:1D:55:2F:58:17:43:3E:B2:E7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FFCA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/NwOTvGRg5S0PXgIdVS9YF0M-suc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 12 Jul 2024 17:30:15 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 137928
IP: 103.115.98.0/24
IP: 2001:df5:2300::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131018 (0x1ffca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 12 17:30:15 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A918D5CF/serialNumber=370393BC6460E52D0F5E021D552F5817433EB2E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1e:95:67:2d:9b:cd:f9:c0:2d:88:2b:35:67:
53:19:60:c4:bd:36:56:a5:f1:b3:d7:82:47:ba:4f:
36:fb:b7:c3:63:9b:35:c2:58:9b:af:c9:42:ae:bd:
7a:4c:85:f2:59:a9:db:4b:b1:9e:58:fa:b3:6f:2f:
67:77:e2:54:6e:33:c1:36:b1:23:76:e4:5b:32:2a:
96:b3:11:13:e7:a7:60:fc:47:42:17:23:da:f5:5f:
57:d9:a2:41:c1:ab:41:6b:29:9a:e8:d5:27:ac:c4:
a4:8f:7b:6a:b3:79:bc:45:e3:61:96:64:5a:00:14:
52:06:cf:26:7c:56:4e:87:16:26:8b:11:c7:88:d7:
4f:9d:44:55:b8:02:02:88:84:d2:34:ca:69:6a:b6:
42:08:99:27:42:bb:a2:6f:28:41:f1:ef:84:72:9f:
ee:73:01:74:9a:84:2e:6f:18:f2:82:86:02:16:d0:
c0:58:83:45:dc:7f:1f:b8:36:ab:a2:37:0d:24:bd:
71:54:6e:1d:65:fb:76:fa:fd:df:ec:29:26:2d:5e:
c2:73:e9:8d:21:89:03:65:c4:d1:69:00:7e:f1:21:
9b:00:7b:4b:5a:16:56:95:19:5a:dd:5b:5c:ec:0f:
56:b1:15:6f:f3:00:ae:90:4a:3b:85:df:79:0e:03:
e3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:03:93:BC:64:60:E5:2D:0F:5E:02:1D:55:2F:58:17:43:3E:B2:E7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/NwOTvGRg5S0PXgIdVS9YF0M-suc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137928
sbgp-ipAddrBlock: critical
IPv4:
103.115.98.0/24
IPv6:
2001:df5:2300::/48
Signature Algorithm: sha256WithRSAEncryption
ba:02:b6:6a:f8:43:76:0e:47:9e:db:e7:3a:40:6d:ca:f5:e4:
a0:9c:1c:ad:cb:dd:a9:38:1c:29:8e:5d:72:a4:cd:84:be:24:
42:27:40:81:e3:ea:77:b5:16:50:25:bf:2a:ab:a9:d5:4e:ce:
df:4c:2c:41:2b:61:99:05:e4:b6:e7:7b:ae:8a:47:e5:35:43:
bf:85:fe:af:02:94:06:17:16:0c:c0:0d:67:3f:9d:70:48:a5:
10:7d:d6:62:1f:1f:0d:6f:f4:b5:d2:73:34:cc:45:8a:f6:05:
eb:ee:31:2c:06:67:94:55:41:28:fa:95:28:1a:df:72:dd:e9:
6d:70:8a:52:89:86:95:8d:7a:5d:c9:fa:4d:5c:0f:6b:ae:c7:
b6:2c:b9:1b:35:3b:78:ee:06:25:2d:05:e6:02:22:74:ea:4a:
1a:07:fc:a3:ed:db:9d:a0:24:56:09:e1:f7:93:ed:db:01:cf:
ff:47:d0:34:fe:37:45:63:bb:6f:05:02:5c:60:41:d0:26:59:
5f:dd:2e:b6:18:56:45:5d:9b:12:2a:db:76:f2:53:b8:5a:8d:
cb:e4:34:17:58:46:67:4e:5a:a5:6a:85:a5:0c:04:8b:dd:a6:
bf:9a:84:74:43:05:35:54:c0:c3:bf:bc:21:29:df:07:03:2d:
c3:d2:24:9b
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAf/KMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcxMjE3MzAxNVoXDTI1MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOEQ1Q0YxMTAvBgNVBAUTKDM3MDM5M0JDNjQ2MEU1MkQwRjVFMDIx
RDU1MkY1ODE3NDMzRUIyRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCqHpVnLZvN+cAtiCs1Z1MZYMS9Nlal8bPXgke6Tzb7t8NjmzXCWJuvyUKuvXpM
hfJZqdtLsZ5Y+rNvL2d34lRuM8E2sSN25FsyKpazERPnp2D8R0IXI9r1X1fZokHB
q0FrKZro1SesxKSPe2qzebxF42GWZFoAFFIGzyZ8Vk6HFiaLEceI10+dRFW4AgKI
hNI0ymlqtkIImSdCu6JvKEHx74Ryn+5zAXSahC5vGPKChgIW0MBYg0Xcfx+4Nqui
Nw0kvXFUbh1l+3b6/d/sKSYtXsJz6Y0hiQNlxNFpAH7xIZsAe0taFlaVGVrdW1zs
D1axFW/zAK6QSjuF33kOA+NFAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUNwOTvGRg
5S0PXgIdVS9YF0M+sucwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThENUNGLzk4RDBCNEY4N0IxQTExRTg4RjNEMEMxNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4RDVDRi85OEQwQjRGODdCMUExMUU4OEYzRDBDMTRDNEY5QUUwMi9Od09UdkdS
ZzVTMFBYZ0lkVlM5WUYwTS1zdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhrIMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ3NiMA8EAgAC
MAkDBwAgAQ31IwAwDQYJKoZIhvcNAQELBQADggEBALoCtmr4Q3YOR57b5zpAbcr1
5KCcHK3L3ak4HCmOXXKkzYS+JEInQIHj6ne1FlAlvyqrqdVOzt9MLEErYZkF5Lbn
e66KR+U1Q7+F/q8ClAYXFgzADWc/nXBIpRB91mIfHw1v9LXSczTMRYr2BevuMSwG
Z5RVQSj6lSga33Ld6W1wilKJhpWNel3J+k1cD2uux7YsuRs1O3juBiUtBeYCInTq
ShoH/KPt252gJFYJ4feT7dsBz/9H0DT+N0Vju28FAlxgQdAmWV/dLrYYVkVdmxIq
23byU7hajcvkNBdYRmdOWqVqhaUMBIvdpr+ahHRDBTVUwMO/vCEp3wcDLcPSJJs=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:48 2024 by rpki-client on console.sobornost.net