Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer
File: RCHzqdfkHW9Ht4b90-eojeQrB7k.cer (raw, json)
Hash identifier: 7Ydj0Y+qt5PCePMydHXfN4HHyTUclIVp68yKf3KdsDI=
Subject key identifier: 44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0202E2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jul 2024 13:55:43 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 150005
IP: 103.190.136.0/23
IP: 2001:df0:edc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131810 (0x202e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 29 13:55:43 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A913442A/serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:80:27:77:37:5b:ec:17:bb:b4:69:da:f0:6f:
32:2c:34:45:81:6c:b5:00:ec:38:cf:9d:00:9e:4d:
91:3b:b3:70:ae:7c:51:8f:33:3c:2c:09:42:de:9d:
f2:4b:80:7c:98:a4:6a:a2:75:65:a5:71:81:0f:77:
e3:b3:f8:ae:2b:9b:d5:cf:4a:8f:4b:92:07:aa:88:
e2:b7:ca:67:0d:45:0d:11:04:de:9f:fd:db:f7:32:
ab:c4:15:e5:52:5d:83:2d:c6:30:c9:ff:51:7b:05:
a5:45:42:e1:a0:5c:7b:e5:f0:86:03:22:0c:99:3a:
b3:83:c8:9f:1c:54:20:2b:6b:2c:1a:8b:82:d0:72:
e6:1a:d0:a3:42:a1:5a:9f:8e:dc:74:e6:e2:8b:3a:
a1:f4:87:37:ee:56:5f:57:90:94:9f:46:e6:12:aa:
91:99:a2:da:d7:ba:a5:20:94:bd:e1:6c:ec:cc:b9:
f3:2f:25:56:0d:38:89:1e:18:74:03:12:da:5b:af:
40:96:a7:8b:25:56:a5:51:78:b7:7c:b4:4f:1f:be:
ce:3e:34:2c:e5:5f:f0:4d:db:89:af:a5:cf:fc:07:
eb:ce:3a:9c:bb:30:67:59:c5:9c:c1:1d:36:50:47:
a4:75:09:54:ff:de:82:11:ee:8a:13:0b:70:93:df:
d1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150005
sbgp-ipAddrBlock: critical
IPv4:
103.190.136.0/23
IPv6:
2001:df0:edc0::/48
Signature Algorithm: sha256WithRSAEncryption
cb:0d:4c:e4:2f:53:3f:89:3b:5c:2d:76:72:54:4d:14:a0:75:
09:1e:01:f7:82:b9:62:cc:a5:7b:ee:6a:56:4e:f7:c1:20:06:
c8:cf:34:c4:97:dd:6e:56:fd:e2:fe:80:5d:e1:3f:98:9a:80:
c0:38:49:90:70:f9:d5:a4:f7:65:0d:ee:95:c3:e4:66:c1:1f:
cd:8f:3f:2c:84:9d:3c:8c:1f:8a:b7:be:ee:3e:08:ba:6d:e2:
73:b6:cf:ed:cd:4f:fb:11:ff:ab:8a:19:95:74:73:cc:4c:4f:
dd:61:5b:0e:9f:50:28:67:e9:3a:56:18:e7:b3:ca:73:8e:89:
f9:ca:ab:22:b7:63:fd:5b:6b:ab:ec:75:b6:ce:65:db:a6:32:
3d:99:b6:d8:d5:47:a2:04:68:a9:8e:eb:72:ab:9c:24:5e:3c:
0d:ee:d0:72:19:68:41:c3:af:33:d6:41:5c:05:d4:a4:0b:9d:
41:cd:40:9f:a4:96:4d:cd:2c:bd:4a:85:f0:06:b0:c3:f0:e7:
bb:62:a8:c5:56:f0:c2:54:2c:10:56:dd:11:f2:eb:43:a3:82:
24:f6:39:f2:63:2d:7c:84:88:8b:46:28:c9:85:d7:1c:c7:1c:
0c:55:c2:89:63:d2:f2:d7:08:8b:5c:ef:41:3a:8d:40:16:46:
0d:17:7e:1e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:50 2024 by rpki-client on console.sobornost.net