Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OEVF1vVfMrMf6GRvJEp8B7ppVAg.cer
File: OEVF1vVfMrMf6GRvJEp8B7ppVAg.cer (raw, json)
Hash identifier: ZwD2Wuy0XRcKCxVN8HAEHFevYCJ9N5mrJSTHiQbyIJY=
Subject key identifier: 38:45:45:D6:F5:5F:32:B3:1F:E8:64:6F:24:4A:7C:07:BA:69:54:08
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02148E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9192D09/F0F2EDB2931C11EDB9B79C49C4F9AE02/OEVF1vVfMrMf6GRvJEp8B7ppVAg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9192D09/F0F2EDB2931C11EDB9B79C49C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 17 Oct 2024 16:43:34 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 18227
IP: 180.200.232.0/22
IP: 203.176.144.0/21
IP: 2404:4300::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136334 (0x2148e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 17 16:43:34 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9192D09/serialNumber=384545D6F55F32B31FE8646F244A7C07BA695408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6c:45:80:1b:6b:af:24:65:9e:30:40:4f:56:
65:3c:76:ce:79:8e:8c:de:72:dd:39:15:3e:d3:63:
54:33:91:81:50:14:c6:7b:52:c9:6e:87:a3:c0:39:
1c:52:e3:f5:7c:d8:ce:26:2e:c1:ad:0b:f5:f3:63:
a6:90:04:fb:63:ad:fe:98:4a:49:50:26:46:2e:e8:
a6:1e:2e:ef:f0:83:b4:1e:ab:e7:69:2c:b9:7a:7c:
6c:1a:c0:5a:ed:86:44:c5:6d:8c:d2:e0:72:8b:e0:
33:00:53:f3:8d:b5:33:e5:ca:c8:6c:f2:b2:92:ab:
c6:47:a3:68:76:21:d1:15:ad:0f:5e:b3:a2:1f:3f:
71:ee:f2:18:1b:b3:f8:e6:8c:a9:a3:3b:db:1f:e2:
a5:c4:f7:c7:2b:5f:6d:43:66:11:26:27:de:2c:ef:
40:d9:ae:9f:51:40:97:e1:33:89:a0:8c:41:00:5f:
b6:c7:42:6a:94:86:f3:75:70:2f:94:eb:73:72:3e:
46:1e:97:8b:14:f8:e7:70:86:70:17:4d:23:44:c6:
47:45:e8:ba:5c:13:57:00:78:d5:e5:d5:25:17:0f:
4b:0b:c4:02:c3:ca:0c:74:d4:d3:fa:e0:cb:90:e1:
8c:12:b3:25:70:f8:61:4a:b8:1b:89:20:bf:36:a8:
9c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:45:45:D6:F5:5F:32:B3:1F:E8:64:6F:24:4A:7C:07:BA:69:54:08
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9192D09/F0F2EDB2931C11EDB9B79C49C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9192D09/F0F2EDB2931C11EDB9B79C49C4F9AE02/OEVF1vVfMrMf6GRvJEp8B7ppVAg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18227
sbgp-ipAddrBlock: critical
IPv4:
180.200.232.0/22
203.176.144.0/21
IPv6:
2404:4300::/32
Signature Algorithm: sha256WithRSAEncryption
1d:14:e2:80:8f:b6:4c:d5:a1:ec:53:e6:8e:b1:d3:55:c1:9b:
1a:55:7d:ac:93:89:47:ea:6b:43:c3:05:82:01:be:53:ab:22:
fa:06:94:a2:bd:32:f6:bc:36:f0:6d:9b:63:17:04:be:cd:d7:
c5:b7:52:4f:f0:68:c1:06:51:48:46:27:33:89:dc:d6:a4:a4:
4c:a6:9e:d3:01:09:a2:67:13:ab:64:45:ec:f3:35:86:35:74:
da:db:64:19:3e:1f:e0:4a:55:3b:e9:6f:b3:2f:71:fc:d1:a4:
1d:c0:fb:49:3b:cc:f1:3f:c3:cc:fe:86:6a:a2:59:68:d2:9b:
01:14:d9:b5:f0:c4:c3:f5:56:e8:23:e6:9d:47:2d:3f:bb:1a:
17:c6:07:ac:05:d3:08:3e:ff:eb:0c:d9:6f:03:bd:a3:72:4f:
58:56:17:1b:4f:33:72:28:47:11:da:c1:4d:8a:36:49:93:0f:
f3:10:60:a4:ae:f1:0a:5b:a7:bc:d5:56:27:a1:79:1c:d5:da:
2d:ff:10:8d:09:95:c2:b7:05:12:ee:ad:2c:83:1a:06:a8:79:
07:16:89:f4:4d:52:f4:c8:52:01:88:61:47:59:16:52:47:8e:
ee:45:4b:a1:23:47:ba:d8:f8:0e:02:ab:1d:48:a6:8b:9a:05:
86:29:88:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:48 2024 by rpki-client on console.sobornost.net