Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer
File: PudBKv6HPx1FurYUcUoyAeNilpE.cer (raw, json)
Hash identifier: sVzR4dGY597IbgzRpBX1Pyi8FDOd4Zi6Ou/qH9QWNL8=
Subject key identifier: 3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020308
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jul 2024 22:40:50 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 132339
IP: 103.12.247.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131848 (0x20308)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 29 22:40:50 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91E3680/serialNumber=3EE7412AFE873F1D45BAB614714A3201E3629691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8d:cb:7f:47:0a:e8:0f:2d:c6:43:93:3a:89:
ec:a2:88:ff:4d:d9:d8:87:88:3a:7f:12:d5:af:c8:
11:80:e9:d1:59:1b:61:05:59:c3:eb:1e:1d:23:1f:
69:fc:14:d9:18:da:9b:08:f1:41:a4:e1:49:e1:34:
eb:b8:e8:e3:c0:9c:eb:cd:ac:99:39:84:7a:f5:a5:
5f:e1:94:83:01:f0:cf:eb:e6:a7:46:02:3d:d2:9c:
fe:a2:c7:43:1d:62:09:55:97:b5:a2:30:3f:73:d6:
cd:18:54:99:f5:28:30:60:1f:e6:c9:d7:f1:bc:8d:
e9:fb:92:23:9c:4a:62:ea:9b:68:de:c9:84:5f:bf:
2c:f4:ef:23:f8:00:78:06:dc:e6:73:4a:55:9c:4a:
bc:2a:c8:a3:42:a7:ff:ef:89:5d:d2:86:91:e0:c4:
64:4a:9d:34:f3:ac:d2:97:e6:4f:3f:9a:a1:3c:5d:
0f:0c:c0:2b:d2:5f:8f:fe:83:c4:e4:1b:b5:2d:d4:
99:3b:c0:0a:ff:24:22:c3:72:0e:cd:00:8d:e2:fe:
24:51:86:fc:8c:87:3c:29:c5:8f:16:01:4b:33:60:
95:69:d8:e9:a1:7f:14:d5:5b:31:ed:78:57:55:37:
51:ce:ed:91:96:c4:09:14:8c:fd:8d:aa:64:42:25:
88:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132339
sbgp-ipAddrBlock: critical
IPv4:
103.12.247.0/24
Signature Algorithm: sha256WithRSAEncryption
00:e0:0a:78:54:d3:5f:62:bf:d7:82:a6:cf:12:7c:42:9d:b6:
83:1b:67:ff:c4:0c:53:e4:2f:ba:58:ef:7d:52:38:6a:b2:3d:
8d:c4:c9:26:a4:25:f7:d7:dd:96:98:f2:65:79:ff:3f:01:4b:
01:41:35:84:c5:39:24:7c:3a:3e:cd:cc:ed:35:c7:9d:1a:34:
80:53:62:ab:3a:a4:23:fc:5a:cd:cb:66:f3:4b:8e:70:13:e3:
8d:f4:ca:7e:df:eb:24:a5:fd:ef:4f:84:63:66:e0:fc:91:f1:
92:bd:ef:df:b4:62:3b:05:cd:74:3f:38:9b:3c:2e:8e:13:e2:
b6:ee:8d:d0:ca:2e:37:eb:cb:95:32:61:32:73:94:6a:49:a8:
6d:e8:13:27:c9:01:9a:7c:ff:dd:57:ed:f3:80:12:5a:f7:3d:
ee:ab:0c:29:15:cc:bd:7d:e9:22:cb:63:ef:3e:d2:3c:10:64:
0d:c5:ce:99:9f:3f:f7:3f:f2:48:6b:46:77:6e:ec:fe:91:fa:
52:e0:65:84:c4:76:05:60:2b:23:be:40:df:5f:4f:8d:9a:04:
fa:9d:c1:34:da:8e:5c:c4:b6:a1:22:bb:41:e9:e0:a3:92:dc:
8f:1e:54:96:3b:1b:1d:f6:20:d8:aa:67:a7:1c:18:9d:da:15:
01:95:98:78
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAgMIMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcyOTIyNDA1MFoXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTM2ODAxMTAvBgNVBAUTKDNFRTc0MTJBRkU4NzNGMUQ0NUJBQjYx
NDcxNEEzMjAxRTM2Mjk2OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCqjct/RwroDy3GQ5M6ieyiiP9N2diHiDp/EtWvyBGA6dFZG2EFWcPrHh0jH2n8
FNkY2psI8UGk4UnhNOu46OPAnOvNrJk5hHr1pV/hlIMB8M/r5qdGAj3SnP6ix0Md
YglVl7WiMD9z1s0YVJn1KDBgH+bJ1/G8jen7kiOcSmLqm2jeyYRfvyz07yP4AHgG
3OZzSlWcSrwqyKNCp//viV3ShpHgxGRKnTTzrNKX5k8/mqE8XQ8MwCvSX4/+g8Tk
G7Ut1Jk7wAr/JCLDcg7NAI3i/iRRhvyMhzwpxY8WAUszYJVp2OmhfxTVWzHteFdV
N1HO7ZGWxAkUjP2NqmRCJYg5AgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUPudBKv6H
Px1FurYUcUoyAeNilpEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUUzNjgwL0Q0OTkxODYyQzVDODExRUI4OTBDMEQwQkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFMzY4MC9ENDk5MTg2MkM1QzgxMUVCODkwQzBEMEJDNEY5QUUwMi9QdWRCS3Y2
SFB4MUZ1cllVY1VveUFlTmlscEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgTzMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZwz3MA0GCSqG
SIb3DQEBCwUAA4IBAQAA4Ap4VNNfYr/XgqbPEnxCnbaDG2f/xAxT5C+6WO99Ujhq
sj2NxMkmpCX3192WmPJlef8/AUsBQTWExTkkfDo+zcztNcedGjSAU2KrOqQj/FrN
y2bzS45wE+ON9Mp+3+skpf3vT4RjZuD8kfGSve/ftGI7Bc10PzibPC6OE+K27o3Q
yi4368uVMmEyc5RqSaht6BMnyQGafP/dV+3zgBJa9z3uqwwpFcy9fekiy2PvPtI8
EGQNxc6Znz/3P/JIa0Z3buz+kfpS4GWExHYFYCsjvkDfX0+NmgT6ncE02o5cxLah
IrtB6eCjktyPHlSWOxsd9iDYqmenHBid2hUBlZh4
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:49 2024 by rpki-client on console.sobornost.net