Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer
File: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer (raw, json)
Hash identifier: /pjZrsPeFSzzJUR7Vq/LxvjdxCpxs+5zNfoRmLhcz7M=
Subject key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020B10
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Sep 2024 15:57:29 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 9230
IP: 103.129.244.0/22
IP: 122.144.8.0/21
IP: 182.163.96.0/19
IP: 202.84.32.0/20
IP: 2402:c000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133904 (0x20b10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 2 15:57:29 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e8:46:36:e0:21:ca:ae:a1:09:a6:ed:23:cb:
e3:09:8e:d5:bd:b7:41:13:a4:94:ed:31:95:9e:70:
e8:e7:ee:d1:de:f9:97:3d:d4:06:01:9e:bd:bd:d2:
67:90:d8:0e:60:37:d7:61:fe:0f:e2:e1:3d:06:eb:
6c:c6:9d:fa:87:45:99:3b:08:d7:9c:be:92:f6:eb:
71:cf:05:65:d7:b6:b2:cf:8d:cc:e8:97:5f:ea:31:
a9:81:a5:92:4b:c7:61:27:bf:4e:1c:7d:75:3c:5a:
c1:a8:7f:99:23:ea:05:6f:3a:07:19:2d:c8:d8:77:
69:51:0b:76:ba:c2:cf:11:b5:1f:59:46:8e:e6:3f:
d4:f9:a6:fc:f8:20:23:46:aa:59:a0:c0:32:4b:b0:
8b:b8:bf:08:60:c9:7f:a8:25:fe:bf:4f:0d:76:a3:
e5:8f:e4:0c:51:42:98:09:eb:b0:c9:f3:8f:69:2f:
84:dc:7b:02:ea:8f:f1:10:dd:55:36:68:c4:b2:8a:
a8:af:58:6b:5a:1f:13:c7:31:34:70:48:0c:d7:3a:
0a:e3:ed:8f:1b:e2:6f:fd:de:05:24:10:85:d3:1e:
7c:cc:17:9a:65:f9:02:53:dc:c8:41:54:29:9f:28:
54:18:73:fa:88:1a:c6:72:82:6b:00:1d:a5:6e:a6:
aa:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9230
sbgp-ipAddrBlock: critical
IPv4:
103.129.244.0/22
122.144.8.0/21
182.163.96.0/19
202.84.32.0/20
IPv6:
2402:c000::/32
Signature Algorithm: sha256WithRSAEncryption
ae:63:01:05:68:5f:14:a7:e0:6d:dd:18:b6:7c:6e:66:88:35:
b3:f4:e9:8b:fd:0d:f2:1a:15:29:98:1c:ad:f6:26:7f:55:0d:
0d:67:35:70:b6:48:b8:2d:88:e3:b5:b9:bb:89:22:15:16:79:
04:5e:1c:eb:ee:dd:72:92:ac:f8:ed:2d:d5:0f:7b:66:43:41:
65:6a:2c:3c:99:ea:56:ba:15:06:8a:a6:63:73:30:95:0f:04:
1e:e6:f9:06:06:2c:6d:2f:b7:26:92:a3:94:0e:be:48:53:79:
5d:3e:58:7c:48:dd:9f:79:6b:af:73:71:56:bc:6a:d7:41:7e:
49:ad:2e:6b:7f:83:cb:c2:98:2f:a2:56:86:74:7d:ca:13:aa:
5b:3c:db:86:e6:24:9d:af:fc:f1:f2:a8:74:cb:0a:1b:5f:7d:
f6:07:5f:9b:d1:a4:cc:a6:5a:75:15:43:aa:e8:d5:17:96:14:
11:65:41:7f:a3:43:0d:db:e1:c4:e3:47:ee:0c:19:cb:37:d2:
aa:c1:a9:20:19:4f:93:64:e2:57:0c:d1:46:12:cb:6d:09:8f:
14:f5:d0:7d:e5:9a:94:8a:95:33:2c:2e:b1:b0:0e:6e:b0:5d:
a5:ad:0c:6b:15:a8:af:89:d3:32:a8:21:e5:00:f8:f6:55:d4:
11:cf:62:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:48 2024 by rpki-client on console.sobornost.net