Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RE63U1TDcG453qCP6VBEzSZj1q4.cer
File: RE63U1TDcG453qCP6VBEzSZj1q4.cer (raw, json)
Hash identifier: rxm3XEN680D/5viIpNPe+NpHPYv1X4G9hZpCX7x6NNk=
Subject key identifier: 44:4E:B7:53:54:C3:70:6E:39:DE:A0:8F:E9:50:44:CD:26:63:D6:AE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0207FE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186004/201F68601EF811EEA9265D24C4F9AE02/RE63U1TDcG453qCP6VBEzSZj1q4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186004/201F68601EF811EEA9265D24C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 20 Aug 2024 17:03:54 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 151500
IP: 103.236.106.0/23
IP: 2001:df2:aac0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133118 (0x207fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 20 17:03:54 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9186004/serialNumber=444EB75354C3706E39DEA08FE95044CD2663D6AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a1:40:e4:99:03:a4:93:72:92:56:a2:11:f2:
cf:5e:3a:80:37:b4:a7:02:23:42:b6:67:82:84:6b:
ec:a8:3c:de:7f:34:84:01:fd:4a:3d:c0:45:22:d9:
14:b6:d0:9f:82:4f:23:b2:e4:79:6a:8c:c8:1e:a3:
da:b5:b6:8a:a5:fe:62:db:09:51:17:b3:4e:3d:93:
f9:8b:85:db:5d:07:83:7b:f6:9b:24:79:fe:f5:87:
36:a8:eb:42:b3:47:76:6c:67:fb:06:9b:6e:31:d6:
0b:ab:7b:cb:03:90:ec:01:b4:8a:c8:f6:c3:31:19:
6f:6e:21:e2:d2:22:69:77:ef:a2:d1:6a:17:da:9e:
b7:9b:00:66:41:ab:0b:b5:de:cf:f1:34:4c:ab:11:
a9:e6:d4:86:3f:91:19:c0:c7:1f:e9:50:24:07:85:
c4:e6:fd:94:33:4b:8b:ef:14:7a:ba:22:80:d8:6a:
4f:31:e5:ec:5f:44:76:98:ed:b2:75:ea:5b:93:10:
34:67:ef:1d:75:37:46:fc:42:0b:72:1f:5f:0b:f8:
0a:09:95:75:5a:d6:c8:e8:5d:23:ef:cf:b1:4b:f3:
06:15:4a:67:af:10:d9:f1:08:25:7e:e1:73:e2:05:
de:b9:22:af:b3:48:41:4e:83:2a:1c:b5:14:ad:3b:
8a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:4E:B7:53:54:C3:70:6E:39:DE:A0:8F:E9:50:44:CD:26:63:D6:AE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186004/201F68601EF811EEA9265D24C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186004/201F68601EF811EEA9265D24C4F9AE02/RE63U1TDcG453qCP6VBEzSZj1q4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151500
sbgp-ipAddrBlock: critical
IPv4:
103.236.106.0/23
IPv6:
2001:df2:aac0::/48
Signature Algorithm: sha256WithRSAEncryption
ae:bc:7c:da:df:e2:14:27:e9:3d:9c:0b:a0:4e:c6:38:7d:61:
46:fa:4f:d3:c1:e5:d1:ec:2d:65:f8:0c:e8:8f:c0:5b:7e:58:
48:7e:95:49:f0:83:5d:6b:10:6f:6b:c6:61:b6:36:76:29:c8:
d5:19:f9:f2:45:2f:0b:f9:10:19:ea:92:68:fb:08:db:89:4a:
dd:fa:1d:e8:01:54:ce:07:7b:f6:5f:d7:f4:95:65:63:3b:fe:
a7:78:55:b6:06:91:2f:b3:7a:5b:77:92:dd:7b:99:31:f2:38:
9a:57:b0:c3:06:06:03:93:6a:95:41:89:c5:48:d7:00:73:63:
0a:0c:bd:22:5b:67:23:4f:c4:a2:7c:ce:36:e4:d8:84:66:80:
15:a9:26:2e:65:e0:c1:24:10:0c:8f:aa:fd:8f:f0:96:89:f6:
c7:40:64:98:2e:4f:52:43:8a:94:80:05:b4:47:98:c5:c7:ac:
5f:58:c1:41:2c:c1:d9:50:0d:26:dd:8e:3e:f6:d1:08:d2:8d:
7b:92:7b:0a:43:dc:bc:a0:4f:09:87:e4:9b:61:16:65:ed:0a:
48:15:92:62:6b:60:ce:e1:66:40:a8:23:89:46:33:dd:3e:56:
8a:69:0c:0c:5a:88:79:ab:49:7e:b0:4b:ed:e4:03:33:a7:dd:
6a:0d:d2:19
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:50 2024 by rpki-client on console.sobornost.net