Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer
File: P9UxYCV9sBsu4O8BPB4tQusaKI0.cer (raw, json)
Hash identifier: /dTfEUxpVfrQb/+FuCnI3XFtZMTAuouWpQrkDRzEU6Q=
Subject key identifier: 3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02126A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 06 Oct 2024 12:36:32 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 147022
IP: 103.173.30.0/23
IP: 2001:df7:8b80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135786 (0x2126a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 6 12:36:32 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A911D51C/serialNumber=3FD53160257DB01B2EE0EF013C1E2D42EB1A288D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4c:cd:a4:f5:11:50:9d:41:f3:c7:68:e5:1e:
1e:e2:c7:22:bf:33:b8:4b:8c:98:c6:b4:1d:38:2e:
0f:bc:ae:f9:f7:10:c2:bd:c9:4a:62:77:d5:70:06:
ae:fb:d3:2e:c8:0d:fc:8f:11:ad:23:91:8f:23:5b:
8f:f1:80:82:e1:d7:2d:31:43:da:b8:14:26:78:55:
df:60:cc:07:99:bc:df:85:9b:10:aa:5a:93:4a:f6:
f7:b4:fb:36:74:79:87:33:8d:cf:0c:b3:9c:66:08:
71:05:6e:49:53:04:31:9c:b5:d2:8c:e4:54:0a:67:
08:59:ce:84:88:27:61:2f:94:f1:c1:28:b2:b6:f0:
7c:9d:f4:78:58:17:da:19:2e:4b:c8:9c:21:b7:54:
14:7c:17:d8:41:51:11:97:bc:67:43:03:44:80:6a:
55:a3:ca:11:47:b8:48:14:4d:4f:87:c2:3c:fb:6d:
46:47:fd:1d:60:27:c0:59:ba:28:21:0a:75:61:07:
6a:b8:f1:0b:d9:29:88:4e:b0:c9:1b:57:6e:63:55:
55:1b:91:3e:79:d4:3f:e4:1d:a8:44:44:f5:0f:0c:
cb:c6:59:3c:14:40:56:37:7e:bd:b6:21:ef:fe:82:
48:6b:b7:04:47:e1:9f:33:63:c6:6a:4e:9e:cc:63:
c0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147022
sbgp-ipAddrBlock: critical
IPv4:
103.173.30.0/23
IPv6:
2001:df7:8b80::/48
Signature Algorithm: sha256WithRSAEncryption
1e:42:2c:94:3f:aa:df:7e:77:88:e3:66:6b:15:45:cb:e0:02:
b4:9a:08:48:55:70:da:dc:98:ba:83:42:e9:0c:cb:3a:5a:27:
c2:2c:f4:81:e8:7c:1f:50:51:18:ca:87:07:da:f9:c0:8d:b2:
30:22:f4:f0:2f:1e:00:08:1e:bd:3a:8d:95:0c:62:ee:ef:4d:
e3:a4:08:69:50:b8:ee:4c:62:d3:7e:c9:4e:fb:ba:c5:41:5d:
1f:0e:aa:6f:e4:71:7d:c2:b2:1e:53:ca:d1:7c:af:06:03:9e:
ae:10:6f:63:49:6d:47:23:43:12:d8:47:13:e9:45:26:cd:8e:
56:37:83:ca:c8:68:71:ec:3f:24:9a:ee:eb:48:08:36:ce:23:
fc:c8:7c:c2:9d:46:4f:93:75:7c:cd:b5:3a:eb:9e:b8:35:03:
eb:a0:bb:62:2d:f8:5d:40:08:8f:fe:e7:4d:52:28:c5:a3:d9:
6b:ad:6a:4d:be:83:c3:fa:ce:29:94:4e:2f:f1:1d:41:d9:7a:
26:cc:7e:fd:6d:e7:ab:a5:8e:18:04:14:5e:e1:7d:84:e0:b8:
ca:37:9b:9c:93:91:b1:db:ca:06:50:fa:e5:06:cc:94:06:e5:
b0:b8:5a:ec:9a:37:f2:c2:98:9c:b8:2c:16:1d:18:4f:f1:be:
e5:f1:66:9c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:49 2024 by rpki-client on console.sobornost.net