Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OM4nbIW20tDq_p0_ilpQjN26uWg.cer
File: OM4nbIW20tDq_p0_ilpQjN26uWg.cer (raw, json)
Hash identifier: YabxjTJpzY+9wd91C+YFu2LINE6ieErEWxJqBFA4wlA=
Subject key identifier: 38:CE:27:6C:85:B6:D2:D0:EA:FE:9D:3F:8A:5A:50:8C:DD:BA:B9:68
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0206C9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 15 Aug 2024 02:05:11 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 141721
AS: 141735
IP: 103.162.170.0/23
IP: 2001:df4:2ac0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132809 (0x206c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 15 02:05:11 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91F053E/serialNumber=38CE276C85B6D2D0EAFE9D3F8A5A508CDDBAB968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3e:03:c2:9b:33:48:4b:01:cf:80:14:c2:ed:
43:b1:99:9d:53:bf:7e:62:4a:d2:48:6d:cb:58:b3:
15:48:96:09:f7:4b:b6:6d:4c:9c:88:3e:22:ec:b6:
e7:77:d9:5b:bb:c1:f1:a5:41:a0:f4:a5:ad:98:24:
4c:7f:79:e3:cf:be:d6:af:c7:4a:5d:d7:ac:91:20:
8d:01:f8:31:ea:a1:3f:d8:a2:f6:d0:e3:c1:4d:6f:
ca:39:46:1e:d1:0f:59:2b:ce:8d:f2:af:a7:d5:ad:
de:f6:4c:13:ac:c2:08:2b:de:e1:91:59:51:4a:3d:
cf:7b:05:51:d4:a2:0a:95:03:73:9b:0b:aa:2e:f6:
64:fd:c3:c2:09:1f:35:f9:9f:cd:5f:52:62:a3:11:
14:55:ec:96:dc:72:c1:65:8d:ba:b7:b7:38:29:3f:
56:11:2e:fe:45:fc:77:5d:cc:f0:3d:9d:5b:19:da:
1f:e1:21:7f:0e:58:92:14:d0:0f:4e:ad:6f:1e:78:
32:89:e6:d8:a4:6b:8f:52:31:b9:90:c8:ad:01:1b:
e4:eb:02:ca:ea:86:8c:41:4d:e3:2c:00:7d:0f:ed:
89:5d:57:40:d5:a4:16:50:4d:fe:7c:0d:ca:75:d7:
31:64:ad:ab:0e:c0:ce:eb:22:8c:3f:11:5d:06:7d:
02:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CE:27:6C:85:B6:D2:D0:EA:FE:9D:3F:8A:5A:50:8C:DD:BA:B9:68
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141721
141735
sbgp-ipAddrBlock: critical
IPv4:
103.162.170.0/23
IPv6:
2001:df4:2ac0::/48
Signature Algorithm: sha256WithRSAEncryption
0d:b8:70:ad:7a:b7:c4:ff:d3:72:60:79:80:0f:83:9f:85:d5:
9f:6c:58:8b:25:82:61:55:77:e5:66:32:6e:54:44:97:b4:a9:
c0:fa:40:39:d2:18:f4:ba:8b:e1:59:6d:b9:a2:e2:0a:50:bc:
24:ef:30:fa:04:cb:fe:8d:fe:83:dc:c1:6c:61:99:b7:21:a5:
ba:83:5e:d5:18:ab:f7:55:20:27:0b:f4:6f:1f:e1:f4:79:f2:
a7:52:e8:c8:7d:0e:96:c5:9a:c2:be:e3:04:b9:7d:16:0b:e4:
f6:b8:b5:e6:57:75:74:2f:c7:16:3d:4e:66:e6:0e:4a:d2:53:
45:08:47:22:e4:82:f3:45:b0:b6:d3:9a:39:71:79:31:ae:4e:
bd:00:26:0c:33:54:3f:d5:d4:89:4b:f8:77:2e:0f:68:b6:c5:
e1:72:00:59:ec:e1:5c:fe:0f:17:16:19:23:05:1a:fd:92:a4:
01:dd:07:a3:60:4e:55:60:43:24:56:af:34:d1:ca:b9:52:3d:
e1:7f:ba:fb:94:11:24:ee:90:8b:b8:bb:45:8c:6a:7a:bf:92:
ba:36:76:80:ef:9f:bc:5f:f6:69:27:17:9c:02:98:84:54:bb:
f6:fe:cc:70:64:3f:40:2a:b4:b1:55:ea:cf:09:6c:74:18:d0:
6c:2d:ef:ca
-----BEGIN CERTIFICATE-----
MIIGMDCCBRigAwIBAgIDAgbJMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgxNTAyMDUxMVoXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjA1M0UxMTAvBgNVBAUTKDM4Q0UyNzZDODVCNkQyRDBFQUZFOUQz
RjhBNUE1MDhDRERCQUI5NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCiPgPCmzNISwHPgBTC7UOxmZ1Tv35iStJIbctYsxVIlgn3S7ZtTJyIPiLstud3
2Vu7wfGlQaD0pa2YJEx/eePPvtavx0pd16yRII0B+DHqoT/YovbQ48FNb8o5Rh7R
D1krzo3yr6fVrd72TBOswggr3uGRWVFKPc97BVHUogqVA3ObC6ou9mT9w8IJHzX5
n81fUmKjERRV7JbccsFljbq3tzgpP1YRLv5F/HddzPA9nVsZ2h/hIX8OWJIU0A9O
rW8eeDKJ5tika49SMbmQyK0BG+TrAsrqhoxBTeMsAH0P7YldV0DVpBZQTf58Dcp1
1zFkrasOwM7rIow/EV0GfQLrAgMBAAGjggMlMIIDITAdBgNVHQ4EFgQUOM4nbIW2
0tDq/p0/ilpQjN26uWgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUYwNTNFLzRFRUJDMjA4NkI2QjExRUI4NTEyNEIyQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGMDUzRS80RUVCQzIwODZCNkIxMUVCODUxMjRCMkFDNEY5QUUwMi9PTTRuYklX
MjB0RHFfcDBfaWxwUWpOMjZ1V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDAimZAgMCKacwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYDBAFnoqow
DwQCAAIwCQMHACABDfQqwDANBgkqhkiG9w0BAQsFAAOCAQEADbhwrXq3xP/TcmB5
gA+Dn4XVn2xYiyWCYVV35WYyblREl7SpwPpAOdIY9LqL4VltuaLiClC8JO8w+gTL
/o3+g9zBbGGZtyGluoNe1Rir91UgJwv0bx/h9Hnyp1LoyH0OlsWawr7jBLl9Fgvk
9ri15ld1dC/HFj1OZuYOStJTRQhHIuSC80WwttOaOXF5Ma5OvQAmDDNUP9XUiUv4
dy4PaLbF4XIAWezhXP4PFxYZIwUa/ZKkAd0Ho2BOVWBDJFavNNHKuVI94X+6+5QR
JO6Qi7i7RYxqer+SujZ2gO+fvF/2aScXnAKYhFS79v7McGQ/QCq0sVXqzwlsdBjQ
bC3vyg==
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:48 2024 by rpki-client on console.sobornost.net