Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R0Blek4vuGe_tE2_bLi8HdGywg4.cer
File: R0Blek4vuGe_tE2_bLi8HdGywg4.cer (raw, json)
Hash identifier: 2V3mVtum34RlcGaiaPQ9kFmhxFSxCIR31me7Wj6rWKw=
Subject key identifier: 47:40:65:7A:4E:2F:B8:67:BF:B4:4D:BF:6C:B8:BC:1D:D1:B2:C2:0E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020297
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BA733/333872A20D7411EDA896062FC4F9AE02/R0Blek4vuGe_tE2_bLi8HdGywg4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BA733/333872A20D7411EDA896062FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 26 Jul 2024 19:58:12 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 142539
IP: 103.168.178.0/23
IP: 2407:95c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131735 (0x20297)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 26 19:58:12 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91BA733/serialNumber=4740657A4E2FB867BFB44DBF6CB8BC1DD1B2C20E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:58:dd:61:a0:d6:b5:49:77:d2:71:57:2f:f5:
dd:6a:c5:bf:d4:69:8d:6e:ff:73:0e:33:ff:ae:40:
52:50:44:91:cb:ee:95:0e:3a:fd:f2:ad:fb:ed:1c:
61:d8:d0:dc:c4:9d:44:b3:ad:15:29:d2:98:a5:dc:
ad:6d:37:09:f4:2a:5a:5d:7c:c8:08:23:e0:92:e5:
4e:38:66:28:50:50:17:1b:3a:7f:28:43:13:72:14:
9f:f3:a9:6a:f7:ca:38:62:4d:d8:6e:c5:bf:76:cc:
d8:c9:ce:06:11:41:b2:8c:47:f6:4e:28:eb:33:44:
73:99:67:15:f0:48:09:76:fd:c2:6f:be:9d:36:fb:
34:be:5a:22:94:e2:5d:30:2c:38:60:cd:9f:84:63:
26:28:bf:41:9c:f0:64:34:4a:52:0f:67:5b:d3:6f:
90:ac:44:77:3f:1c:a5:d7:e3:e2:3c:d2:dd:53:66:
f3:cf:08:e5:a0:fb:35:da:d8:cc:7d:61:50:48:39:
ab:e7:9e:e3:94:5a:01:32:aa:61:d1:24:9c:13:cf:
61:cc:85:ce:7b:bd:ff:e3:16:69:e7:d1:77:4a:5a:
f8:36:d3:b7:60:a7:4a:79:3a:fd:ab:b2:88:44:c3:
dd:f1:f8:ba:c2:9c:bf:26:3c:52:72:3c:7e:28:c2:
78:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:40:65:7A:4E:2F:B8:67:BF:B4:4D:BF:6C:B8:BC:1D:D1:B2:C2:0E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BA733/333872A20D7411EDA896062FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BA733/333872A20D7411EDA896062FC4F9AE02/R0Blek4vuGe_tE2_bLi8HdGywg4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142539
sbgp-ipAddrBlock: critical
IPv4:
103.168.178.0/23
IPv6:
2407:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
22:cf:11:03:1c:d9:ea:66:18:cf:71:04:c7:6c:01:6d:31:6a:
4c:3c:cd:9f:14:75:62:b5:80:e7:2f:45:88:71:df:1f:d6:a2:
fe:9a:ea:4e:3a:f4:92:f1:4c:ea:e9:f6:43:8f:09:41:ff:48:
5c:bd:31:ab:b1:db:3f:e5:9d:1c:3f:df:7a:4b:4b:87:d2:d0:
8a:e4:e5:7e:fa:c4:97:22:02:2a:d2:48:8d:9f:99:40:08:c3:
d0:b8:d6:07:d3:92:ae:0f:8f:fa:13:f8:5b:4d:1f:17:55:54:
1f:95:4b:55:0e:64:80:fe:ea:ed:28:f0:d1:78:57:73:7e:c0:
14:68:0e:4b:eb:30:2c:00:fd:a4:19:5d:50:4e:4f:5b:b5:11:
5d:74:f3:30:d6:5d:35:2f:fe:dc:f3:f9:a7:52:d3:9e:33:95:
62:1f:b2:dc:97:8a:22:5b:d0:a7:ed:cb:b5:70:6b:9f:ef:36:
96:93:90:63:2c:d4:fa:2d:a8:30:c9:ff:80:b0:81:54:ff:53:
50:89:96:c7:a0:07:3c:72:b6:53:b6:e3:3d:da:94:d4:db:8f:
c0:8d:e1:67:7e:e1:c9:b3:46:c8:fa:a4:23:20:ba:de:60:43:
66:02:49:8c:bc:94:f2:d7:88:fa:5a:88:22:68:cf:ca:91:c6:
a3:be:ef:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:50 2024 by rpki-client on console.sobornost.net