Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer
File: PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer (raw, json)
Hash identifier: tFsk0asq+/e3vOT7WVrtVUV917yIkqr8mstLnHZ584I=
Subject key identifier: 3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0208FD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 Aug 2024 16:20:46 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 139301
IP: 103.141.6.0/23
IP: 2405:8c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133373 (0x208fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 26 16:20:46 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A915B880/serialNumber=3D7A4E0A99AF15EF0B3790D0E7961E8875281983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2a:bb:72:bf:e0:f0:75:e8:4c:ac:32:dd:b4:
f0:d4:09:5f:c1:22:f1:62:e4:19:9e:09:72:17:32:
c6:27:df:f6:91:37:c0:1a:95:33:21:8b:65:0f:56:
fd:3d:50:2a:f5:98:83:22:75:e4:49:76:0b:13:8c:
81:4f:29:a7:9e:16:82:5a:17:f0:f0:f2:6c:d7:15:
8a:85:81:15:6f:d9:7a:d7:ff:71:bb:c0:10:16:a7:
40:2c:33:d8:d9:c9:19:b6:30:9d:d5:69:3b:5e:b1:
ac:21:ae:f4:3d:ea:b4:2e:41:7e:1f:14:b5:82:c6:
23:04:0e:67:f9:57:ad:a7:a2:fc:60:b3:fc:3d:bf:
dd:9d:81:e8:27:67:25:dd:f1:7a:e7:e3:5e:eb:09:
1c:ef:38:aa:ce:b8:05:b5:0f:6d:00:7c:d5:3f:cb:
9d:91:fa:88:3e:94:c7:62:68:7b:8a:21:bf:65:b3:
5c:16:cc:87:c5:9f:79:c0:1c:4c:f4:b9:1e:b6:0c:
d7:d3:87:af:d8:e5:54:b4:b0:3f:3f:31:7d:02:c5:
17:24:63:08:9b:6c:74:68:f0:03:de:b6:db:b5:fc:
35:db:e9:10:de:2c:55:25:82:cc:77:c5:f1:35:d0:
7e:28:20:fa:89:a8:c1:d0:c0:e6:00:30:21:49:82:
05:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139301
sbgp-ipAddrBlock: critical
IPv4:
103.141.6.0/23
IPv6:
2405:8c0::/32
Signature Algorithm: sha256WithRSAEncryption
41:f5:58:cb:d6:40:10:ac:e8:15:25:91:dd:22:c9:8c:9b:2d:
a0:ca:a3:d6:be:60:bc:78:22:0e:45:51:96:5f:af:ee:4c:5b:
9b:16:4a:bc:be:36:ec:b6:45:68:ff:b4:5e:ab:5d:2f:3c:b5:
88:b5:96:86:3a:12:12:fb:61:ae:b9:c6:6b:14:f7:a3:92:9b:
5d:10:eb:05:1e:31:0a:44:44:29:d8:35:55:27:d3:35:28:c4:
b4:b4:56:6a:ac:e9:0b:4e:ad:9c:a9:2a:de:a3:a0:0c:c6:14:
4e:66:5c:65:2f:30:5d:73:5b:38:2d:79:23:7a:20:66:fd:e2:
ba:ac:dd:33:26:cf:ef:73:a3:be:70:3a:fa:03:f4:80:82:1e:
0c:63:6c:87:2b:3d:75:c7:72:d5:fa:5c:b3:ea:d0:4b:d8:67:
d3:e6:ac:23:0d:52:03:af:da:c0:14:d2:c4:ef:42:c5:a4:6c:
c5:59:64:cf:ea:47:35:ea:fb:66:57:af:a5:07:7e:3d:ea:30:
2e:8f:6b:a6:eb:18:db:45:d4:06:6c:f3:3c:cc:56:ea:90:eb:
93:2b:b0:b2:08:d4:09:d7:84:4b:87:5c:e1:56:65:3c:11:c5:
49:7f:c9:e5:84:95:77:bd:27:8a:6e:d8:66:d4:dc:07:42:b3:
c6:e4:76:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:49 2024 by rpki-client on console.sobornost.net