Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RjnSkJhvTwBU_cBZAURBYh06u_8.cer
File: RjnSkJhvTwBU_cBZAURBYh06u_8.cer (raw, json)
Hash identifier: AxPtTIE1JNNthGT1OdL3endXcZL9R8VykYFEWlFImns=
Subject key identifier: 46:39:D2:90:98:6F:4F:00:54:FD:C0:59:01:44:41:62:1D:3A:BB:FF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F47E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/RjnSkJhvTwBU_cBZAURBYh06u_8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 29 May 2024 14:47:27 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 149810
IP: 103.112.61.0/24
IP: 103.186.240.0/23
IP: 2400:7620::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128126 (0x1f47e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 29 14:47:27 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9146B71/serialNumber=4639D290986F4F0054FDC059014441621D3ABBFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:07:b3:f5:ca:f4:e2:06:3d:a7:67:d1:ea:1a:
06:60:d4:6a:a6:c9:d1:75:93:f9:da:0d:75:8a:e0:
18:d1:87:0a:07:38:c8:57:2d:6d:3e:7c:b2:25:78:
ad:36:10:76:64:cb:b9:d2:7c:1f:f9:7a:0a:65:8d:
28:0f:9e:87:42:71:38:00:1a:5f:0c:42:28:15:fc:
c9:c6:0d:36:63:ae:d0:b9:19:63:52:a1:b2:aa:dd:
28:df:cf:c6:3e:2a:5b:aa:3c:72:30:60:40:55:ae:
39:98:1b:0b:fb:1f:71:c5:67:f5:05:d2:56:47:4f:
05:04:50:a1:7c:d6:1b:32:cc:b2:38:c3:b1:69:75:
95:aa:ef:b7:0f:69:76:77:32:cb:7d:f9:9b:f3:43:
06:eb:33:60:06:44:be:0e:0c:84:6d:7a:44:d1:88:
33:26:27:7c:c1:49:c6:08:db:4f:91:4e:52:e4:5b:
3f:31:8c:1d:c3:4f:1c:ca:ce:be:e3:56:a2:b8:86:
56:59:73:68:26:8f:46:88:05:61:70:9a:bc:da:6f:
8d:a3:ee:03:75:95:bf:12:40:e9:9f:e3:12:74:22:
c5:b3:d0:70:fa:42:84:a9:10:c2:8d:69:95:10:84:
f1:e9:d2:52:a1:13:9f:ae:86:d7:58:7d:48:2a:38:
81:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:39:D2:90:98:6F:4F:00:54:FD:C0:59:01:44:41:62:1D:3A:BB:FF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/RjnSkJhvTwBU_cBZAURBYh06u_8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149810
sbgp-ipAddrBlock: critical
IPv4:
103.112.61.0/24
103.186.240.0/23
IPv6:
2400:7620::/32
Signature Algorithm: sha256WithRSAEncryption
1b:0e:94:dd:69:a0:8f:3d:ca:8a:8b:7c:bd:9f:d4:29:ab:22:
6e:0b:bb:8b:af:89:20:9e:df:c5:18:9f:22:68:d6:11:6b:45:
f1:86:74:94:a4:2b:2f:c1:eb:91:4a:2b:c5:17:3b:6d:9e:ef:
32:2b:36:80:bb:56:1b:76:89:ed:00:7d:9e:c8:fd:49:32:40:
db:84:b0:f2:5d:c1:c1:c1:07:c6:05:39:e8:71:77:f3:31:8c:
1a:7b:a0:65:7d:1b:65:ce:73:6f:95:00:26:10:30:85:d9:44:
06:48:1b:8e:8b:5c:92:85:28:aa:8c:6e:cb:2c:e6:28:6a:37:
d1:5d:d7:5c:01:b7:48:54:af:03:ab:23:78:39:47:b9:88:e9:
e7:28:f3:a7:26:eb:f8:57:59:8f:5a:8c:df:3c:fd:63:11:6e:
b4:25:3c:0e:47:46:80:1a:21:97:74:27:df:0d:c2:0f:ba:35:
bf:54:5e:39:9a:59:fe:f6:4a:7b:9a:fe:73:6d:72:28:1b:06:
eb:1b:f7:e7:10:55:36:17:df:24:83:71:d3:08:8b:b0:89:9a:
2f:d3:b7:75:ac:a7:46:25:4b:44:ea:d4:a1:08:e9:18:cc:39:
ef:3a:29:79:fc:04:b2:ed:b9:d3:94:89:01:2d:a1:cc:1d:dc:
23:b6:7a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:50 2024 by rpki-client on console.sobornost.net