Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer
File: Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer (raw, json)
Hash identifier: RwYHDSECcyx/XSFa4QSqdE2KtEKddDRzlyDqO1uoEiY=
Subject key identifier: 4D:AA:77:6F:87:92:80:0F:42:B8:97:80:F3:2D:9E:73:27:61:55:D4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020E54
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 18 Sep 2024 23:00:00 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 136786
AS: 153319
IP: 103.115.4.0 -- 103.115.6.255
IP: 2001:df1:c700::/47
IP: 2001:df4:45c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134740 (0x20e54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 18 23:00:00 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91392AE/serialNumber=4DAA776F8792800F42B89780F32D9E73276155D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6b:95:73:51:e7:48:9c:ea:1c:cc:a1:7a:a8:
aa:59:98:61:fb:d7:45:98:c0:80:68:17:9a:33:54:
5f:92:80:d2:36:7b:4d:e4:72:1c:3f:5a:41:e4:83:
cd:28:67:73:a8:ef:0a:c7:ca:58:31:37:9a:98:36:
27:05:07:53:c0:e5:fd:5c:2f:c3:35:a1:c6:88:dc:
f6:24:1e:03:12:af:5a:d8:01:02:eb:4f:0d:22:c8:
10:70:0a:ea:17:4d:9c:ec:cb:47:13:d7:50:da:30:
ee:69:80:51:2a:83:f7:ed:11:9e:53:39:a7:83:e0:
91:4b:3b:bd:c4:bc:67:d5:a8:f1:fc:d1:f9:65:77:
a2:ef:60:e8:77:8c:86:da:e1:c4:6b:41:b0:a7:db:
a9:aa:83:42:e5:bb:5e:42:f1:8d:e7:70:3b:69:dd:
81:3c:fc:5c:eb:ec:f9:b7:11:67:41:a2:43:f6:a5:
3a:e2:a1:cc:48:83:8f:9d:eb:8c:88:be:80:8b:4a:
c4:1e:a7:a6:30:8a:e6:31:29:5e:b0:d9:7b:28:a9:
53:a8:a7:77:81:8e:e5:49:f1:7e:9e:29:3b:e0:08:
aa:b3:7e:c6:5f:c6:43:24:be:83:54:c7:cf:d1:4f:
d5:22:03:2b:0a:a2:ee:21:9c:a5:ce:f9:c8:0e:92:
1b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:AA:77:6F:87:92:80:0F:42:B8:97:80:F3:2D:9E:73:27:61:55:D4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136786
153319
sbgp-ipAddrBlock: critical
IPv4:
103.115.4.0-103.115.6.255
IPv6:
2001:df1:c700::/47
2001:df4:45c0::/48
Signature Algorithm: sha256WithRSAEncryption
5d:04:ed:50:c3:80:cb:7a:d4:4b:c6:38:02:5f:a8:60:11:cc:
6e:be:d7:64:9f:51:b1:07:16:54:90:ed:25:41:d8:4a:22:0e:
74:b7:4e:9c:46:05:82:a0:6f:75:69:3f:23:b0:81:6d:19:50:
02:5a:f7:7a:7f:00:b3:6d:c1:6e:b2:4b:a5:91:13:36:f7:73:
a6:1c:5b:1c:6c:44:a1:93:4e:28:3d:80:f5:2a:02:f8:fb:a3:
93:83:37:80:bd:e4:87:3d:13:89:97:3d:76:e5:72:d1:39:16:
f9:f2:81:92:1d:18:63:56:89:53:a8:52:34:8d:e3:ee:79:8a:
aa:5d:20:93:a6:32:00:74:48:2b:10:9f:fb:26:e2:fc:38:81:
4b:50:b7:c4:5a:e6:10:71:92:96:43:f8:55:71:09:e9:5f:75:
ec:b0:65:a2:68:6e:1e:48:8e:2f:26:57:19:5d:d0:e8:17:5c:
7a:1b:ba:34:35:03:32:11:50:ec:04:e6:8f:63:24:23:95:3f:
11:06:09:0e:6f:99:f2:03:7b:7f:3b:3c:67:95:84:fb:21:a1:
7e:d6:fe:51:1d:ee:79:08:6e:51:f2:36:1d:b8:be:6c:93:54:
76:f4:5e:3b:4d:15:6e:83:a8:15:68:ef:e2:7f:e6:e0:5b:26:
fc:83:df:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:51 2024 by rpki-client on console.sobornost.net