Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOwZ2spYxF2RxlnTX-TybdgkrOQ.cer
File: OOwZ2spYxF2RxlnTX-TybdgkrOQ.cer (raw, json)
Hash identifier: hA6NtWRi3QFyvlonNYZPKh/p9aJAIqSEFPrGrymMdmg=
Subject key identifier: 38:EC:19:DA:CA:58:C4:5D:91:C6:59:D3:5F:E4:F2:6D:D8:24:AC:E4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020AB1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916600A/9EA2BB7E3CD011EEAE554E73C4F9AE02/OOwZ2spYxF2RxlnTX-TybdgkrOQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916600A/9EA2BB7E3CD011EEAE554E73C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 01 Sep 2024 05:22:03 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 151668
IP: 103.216.158.0/23
IP: 2001:df2:d3c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133809 (0x20ab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 1 05:22:03 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A916600A/serialNumber=38EC19DACA58C45D91C659D35FE4F26DD824ACE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:db:67:16:51:17:30:57:56:3f:58:82:02:09:
1e:6f:bb:52:26:0d:a6:76:c2:f2:f0:59:9a:40:55:
ca:b7:03:f2:e1:1b:3b:68:09:0a:80:60:9d:20:66:
a2:09:26:94:ab:7f:7b:8a:e7:6b:19:a5:dd:6c:9b:
25:f3:34:d1:da:95:a3:7e:24:57:26:fa:2e:07:2e:
dc:1e:dc:43:06:e2:e0:a6:f1:bf:cf:e2:e5:d1:dd:
59:b1:fb:2f:a3:1a:07:01:0e:c3:4b:7d:18:14:dd:
ae:39:e4:e6:2b:07:e3:2e:6d:67:ae:87:f5:c2:dc:
0e:04:aa:98:8f:4b:69:ea:c0:dc:53:e7:b6:3d:f9:
8d:76:77:2e:72:a4:3c:6f:8b:54:03:b8:67:07:5f:
c0:03:57:3e:ed:1b:ff:f5:91:ef:d6:10:60:cb:b5:
a7:a5:3c:1b:4f:a5:8e:f6:9e:bc:77:83:d5:4e:55:
21:7d:42:2c:f9:a1:3b:4c:90:d5:5a:2d:f1:7f:44:
5d:bc:9b:55:4e:ec:2d:c0:2e:46:13:ab:48:2e:47:
2e:c8:8c:20:6c:08:d3:3f:89:77:45:88:ae:23:43:
5b:2b:33:3a:1f:68:98:6a:6d:a3:a5:50:1d:21:ec:
15:1f:6b:96:d2:45:95:b7:c4:73:a8:ac:3b:11:b0:
67:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EC:19:DA:CA:58:C4:5D:91:C6:59:D3:5F:E4:F2:6D:D8:24:AC:E4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916600A/9EA2BB7E3CD011EEAE554E73C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916600A/9EA2BB7E3CD011EEAE554E73C4F9AE02/OOwZ2spYxF2RxlnTX-TybdgkrOQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151668
sbgp-ipAddrBlock: critical
IPv4:
103.216.158.0/23
IPv6:
2001:df2:d3c0::/48
Signature Algorithm: sha256WithRSAEncryption
d5:06:c2:dc:bf:c8:15:c3:5d:00:61:1c:fd:c4:8e:93:c5:34:
69:c7:7c:71:e6:88:a3:ac:48:51:6f:03:d4:d3:0c:7d:2e:4d:
b5:bc:61:ae:b2:f7:04:15:3d:06:20:5f:14:70:45:c7:2f:4c:
b5:2b:cc:7b:e1:52:d0:63:6d:bb:24:71:53:65:d0:5b:da:1c:
75:eb:44:60:40:71:d9:df:d8:51:1f:12:96:65:3f:52:27:8c:
66:24:34:da:ed:9e:ea:71:84:ff:59:b0:da:ff:fc:00:90:ea:
55:3b:27:7e:b8:45:75:1b:c3:89:7c:71:ae:1a:8f:73:9c:33:
64:1b:0f:85:0d:50:a6:a6:d9:63:66:de:6c:06:0f:f7:a9:50:
2e:be:a5:f1:5b:62:b6:2f:5e:3f:e6:0a:17:dc:99:50:cf:23:
d0:01:e5:be:2f:d8:b7:39:cc:20:dd:5d:38:a7:3d:31:57:be:
e5:ef:5d:22:c0:94:0c:f3:a9:d1:19:f7:18:40:b6:96:7e:a1:
b2:00:e4:9a:4e:3d:8a:ea:b8:5e:a0:64:ef:ef:fc:42:2d:e6:
56:ac:0a:b4:91:7b:7d:eb:f3:03:de:bd:9a:95:26:e6:ec:13:
20:f2:bd:eb:84:b1:dd:51:0b:92:b6:86:ad:ef:70:18:9f:e1:
3e:9d:aa:ba
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:48 2024 by rpki-client on console.sobornost.net