Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer
File: QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer (raw, json)
Hash identifier: lq7tk256vu0mPJMwISJb/WclIh1mr/24pfYzHacjMAs=
Subject key identifier: 42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020F2C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 24 Sep 2024 13:08:51 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 150291
IP: 103.156.148.0/23
IP: 2400:a460::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134956 (0x20f2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 24 13:08:51 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A912087D/serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:05:87:bc:c8:f5:b7:08:04:a3:98:f6:c4:a9:
cd:9e:14:cf:b5:95:b4:bc:9f:ee:30:86:13:17:30:
b9:ec:3b:d0:77:4d:de:95:19:a5:17:d4:f9:d2:ec:
04:fc:f3:a1:a9:b0:07:a4:dc:53:a9:39:32:12:47:
ab:cd:68:6f:d0:7d:6f:c6:6d:06:c2:27:51:a3:07:
22:44:69:3f:9d:c1:b7:37:5a:06:19:6b:42:a3:26:
43:8e:05:68:60:f6:a4:3b:37:4b:8a:dc:0d:55:a4:
e0:78:78:65:07:63:36:c8:6d:46:b7:e6:ff:87:b7:
35:3e:14:2f:f0:d1:76:b1:49:d6:60:94:37:74:0f:
42:a5:0f:f8:95:9b:cc:8c:51:0c:6b:d4:b6:c0:8a:
b6:c7:be:c8:87:53:0b:6e:a4:14:6b:a0:16:74:0c:
bf:3d:22:e9:2f:f2:82:52:f0:c1:60:10:2e:86:a2:
bd:3e:c1:83:e5:45:d5:32:e1:8f:e2:8d:b7:f3:42:
02:3f:95:51:f8:59:c6:36:34:4f:49:2e:7e:75:aa:
e1:b8:47:8e:fa:d4:c5:94:8c:b3:ac:d1:73:e7:6e:
ea:51:08:d1:e0:d9:1a:7d:58:42:37:a5:52:3d:e1:
d0:a2:c6:41:b4:c3:16:f0:de:dc:7d:96:d6:81:97:
06:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150291
sbgp-ipAddrBlock: critical
IPv4:
103.156.148.0/23
IPv6:
2400:a460::/32
Signature Algorithm: sha256WithRSAEncryption
04:f7:12:fd:ee:4b:60:91:9a:97:99:fb:0a:bf:6e:61:a3:b3:
52:fd:33:6d:ca:05:f2:58:e1:82:24:d3:0e:c3:e8:7f:41:c0:
ca:b4:2a:ae:64:e1:aa:dd:22:71:3c:9e:b9:2c:c6:89:37:48:
21:7c:a3:b3:87:40:0b:13:61:ad:b1:d0:ec:56:f2:1b:82:1d:
ac:2b:ec:e6:8c:15:50:a2:81:45:27:88:78:f0:cb:94:dc:ba:
29:ad:df:f6:fc:ec:3a:0c:98:0f:a3:5c:26:0e:2c:cc:1d:c0:
1c:ee:ea:05:b6:fb:07:4d:8e:f7:a3:b3:47:89:41:94:29:0c:
d0:86:05:ea:a1:70:6c:e8:20:1b:8e:3d:61:a5:4d:3f:28:1a:
0c:4c:04:ac:b8:f3:fe:90:15:05:13:b8:5b:ba:84:d3:91:5b:
a5:45:f3:63:e6:7b:55:56:30:6d:d4:2f:54:cd:0d:4c:9e:db:
ed:04:ec:00:5c:e9:ba:96:72:f2:c0:e6:27:20:de:0c:ce:e5:
6c:fc:2e:d9:9c:7a:bf:f2:c5:48:c0:0a:ff:bc:a9:cc:6a:a6:
be:fb:ad:f2:91:3f:9e:06:40:e6:f4:c3:3f:0b:d2:66:c6:26:
22:f8:5f:e9:f4:e3:e2:45:d7:4a:ab:ca:9b:34:25:21:95:d5:
3b:17:bf:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:50 2024 by rpki-client on console.sobornost.net