Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNWU1Rjx1sCstQCbVwd49vEG1d4.cer
File: UNWU1Rjx1sCstQCbVwd49vEG1d4.cer (raw, json)
Hash identifier: R4PsiRzYP/cWNHMtL9FFeVndag1APHkc7yD1j28gdYg=
Subject key identifier: 50:D5:94:D5:18:F1:D6:C0:AC:B5:00:9B:57:07:78:F6:F1:06:D5:DE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021203
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/UNWU1Rjx1sCstQCbVwd49vEG1d4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Oct 2024 21:07:11 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 45230
AS: 56036
IP: 103.8.16.0/22
IP: 163.47.184.0/22
IP: 180.222.64.0/21
IP: 2001:de8:19::/48
IP: 2403:d200::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135683 (0x21203)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 3 21:07:11 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A918F0F7/serialNumber=50D594D518F1D6C0ACB5009B570778F6F106D5DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:91:6c:64:fb:3c:16:b4:0e:df:41:8c:0f:1d:
81:2d:ae:0a:c3:9c:59:3a:25:3c:0f:99:00:d9:f3:
31:5b:a9:cd:65:6a:c8:80:d5:3c:6d:cd:df:76:cd:
78:fd:d3:b1:b9:a2:59:41:01:31:e4:65:6a:fb:79:
d8:a6:ee:13:94:b7:f3:54:81:c7:7b:3c:a1:5f:c3:
e6:39:e2:53:91:ba:fd:b6:49:39:df:91:5c:24:c4:
21:ed:ae:d7:51:71:70:a8:5e:f4:e5:26:52:0f:c8:
d5:cb:c0:df:cb:ff:b5:e6:3b:ca:00:4c:53:a3:35:
c8:ab:56:e8:65:94:e8:93:78:d6:e4:96:ce:32:4c:
69:37:b9:7e:5d:a9:a9:22:e8:9e:87:ad:06:ab:bf:
f5:b4:1a:2d:2a:10:e3:95:bf:10:e9:24:20:49:4b:
40:8a:11:32:3d:46:ba:26:cb:ce:ef:04:48:bc:6e:
9d:50:f4:28:92:2e:4e:af:48:65:83:14:45:5b:83:
84:6f:31:91:81:1a:83:ca:3d:b0:67:bc:63:a9:77:
b7:ea:e7:2e:8b:fb:18:39:62:7b:c4:ed:1f:07:c3:
7b:ae:85:06:91:bd:6d:aa:3c:39:ee:ae:6a:32:1d:
c2:fc:44:b3:dd:63:ee:92:37:56:fa:22:82:86:7b:
5d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:D5:94:D5:18:F1:D6:C0:AC:B5:00:9B:57:07:78:F6:F1:06:D5:DE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/UNWU1Rjx1sCstQCbVwd49vEG1d4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45230
56036
sbgp-ipAddrBlock: critical
IPv4:
103.8.16.0/22
163.47.184.0/22
180.222.64.0/21
IPv6:
2001:de8:19::/48
2403:d200::/32
Signature Algorithm: sha256WithRSAEncryption
8e:f4:86:26:04:97:53:e9:9b:72:dc:f9:6f:e5:c6:38:76:58:
a2:94:18:aa:7c:b8:88:7a:9d:b2:ae:be:e7:b4:3b:1b:e7:2c:
e4:c2:f0:20:cf:61:2b:cc:71:56:e4:ef:59:9d:41:ea:6c:4f:
e7:93:85:a7:f9:e1:0d:10:cb:f5:17:35:11:96:36:a0:4c:16:
32:a2:0e:fc:90:f8:a1:9a:0b:a8:ea:08:f2:4e:23:82:dd:36:
32:c1:b2:09:44:3c:63:d0:ec:b1:87:42:b0:cf:06:d9:f5:89:
99:e5:26:e1:f8:de:26:f3:f8:7b:d1:7a:cd:3a:14:98:c1:2e:
3f:4b:de:d5:a2:3b:0e:58:ba:5d:7f:fa:3e:fa:31:c3:6b:6b:
7f:5f:c4:71:cb:6b:42:cd:2a:cf:37:ea:21:4b:ca:98:fa:c4:
e1:22:d5:2b:02:68:8e:42:de:b5:e2:f9:ce:56:09:ac:c1:38:
63:79:76:ac:b0:5d:2a:ea:d0:e4:24:a6:4a:90:14:05:0e:98:
8b:b2:c4:b2:17:b6:e2:df:13:7a:28:f5:08:eb:b5:21:f0:6b:
85:b4:0f:4f:f4:c2:f1:1b:2a:ce:d0:1e:b3:5c:09:35:23:e2:
ff:ef:ad:b7:6b:19:03:86:17:d1:30:b9:cc:0b:7c:ff:db:25:
d2:07:e0:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:52 2024 by rpki-client on console.sobornost.net