Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer
File: UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer (raw, json)
Hash identifier: 449osIPxHK29Uz5XYJ675U2T8I9QtAWzttFOTE+Q9DY=
Subject key identifier: 50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FFFF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 15 Jul 2024 13:42:49 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 149451
IP: 103.179.181.0/24
IP: 103.187.68.0/24
IP: 2001:df0:5240::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131071 (0x1ffff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 15 13:42:49 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9157031/serialNumber=50E50EDAF64A2C25B731239673D9070F61830279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:38:a2:fd:12:2f:7c:34:04:9e:a9:47:d0:34:
75:c1:99:75:b5:da:da:21:8c:5f:6a:92:c1:fb:94:
85:13:07:87:45:1b:b9:83:01:9f:28:3c:d4:11:4c:
43:03:01:d1:30:57:9f:bd:5a:fe:35:e3:52:b2:e0:
12:48:12:25:a0:ad:79:98:0f:38:22:11:03:25:00:
62:5e:5d:58:01:68:0a:7b:0a:5b:c8:e2:fd:0c:5e:
94:91:51:17:d2:24:fd:cd:63:42:ad:3e:e9:7b:d3:
02:79:92:ad:cb:85:b9:53:bd:83:d1:f4:58:ff:f2:
7b:c2:66:b6:c5:5c:42:21:9e:ee:50:4a:ee:72:48:
68:56:47:84:ed:8e:7a:18:fd:b1:c7:58:54:18:ce:
cd:d0:97:a1:e8:06:25:36:55:b1:d0:48:a1:65:15:
33:30:ec:7c:ea:2d:d0:ad:66:49:41:a4:d8:98:f7:
17:21:dd:91:1e:2f:b5:e4:79:20:eb:c8:bf:38:82:
f8:96:16:1f:c1:92:da:3a:ea:f9:7d:f1:5a:72:30:
04:73:63:87:80:9d:cf:db:12:b1:75:7b:78:26:4c:
e3:ae:2d:8e:4a:b6:60:36:25:d7:fd:d9:61:2a:93:
3a:19:f6:2d:4b:71:26:20:b8:17:a1:34:38:b8:d8:
2a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149451
sbgp-ipAddrBlock: critical
IPv4:
103.179.181.0/24
103.187.68.0/24
IPv6:
2001:df0:5240::/48
Signature Algorithm: sha256WithRSAEncryption
39:2f:0e:b8:65:df:95:8d:02:c2:4b:73:e9:c4:68:e7:b5:59:
18:67:c5:32:0b:06:c8:52:a6:11:f2:68:3c:fd:ee:8a:3a:5a:
f1:2c:80:56:e5:b2:7b:51:2d:4f:9b:e9:ca:53:4d:b7:6f:c8:
22:f2:01:ff:03:b8:50:fa:e0:23:93:8e:d6:7d:05:5c:a6:6c:
55:b8:42:00:63:f7:b2:5f:81:22:eb:80:3e:13:0f:1e:7a:7b:
46:d7:57:94:fb:82:78:da:11:41:0c:96:60:0c:c0:7b:1e:5f:
f7:3b:3b:79:e3:e9:f6:82:c5:f0:11:35:1e:fa:5d:30:ff:c1:
10:5d:b9:a8:e1:02:8c:6c:01:36:39:c6:df:e5:9f:32:e2:e1:
4f:81:93:a0:63:bf:c5:31:a6:99:78:bc:60:4c:f5:ab:16:6e:
97:94:86:ef:61:8d:d8:b9:0d:d4:ae:e2:7d:01:36:c4:b3:9e:
84:56:5b:c6:c7:db:ba:e1:88:18:b4:79:14:c4:d8:94:26:ea:
6d:dc:ee:ca:cd:f8:ca:5b:e2:50:a1:c8:c3:d3:78:66:db:aa:
ba:0f:e0:c1:26:00:4a:69:12:c4:c9:08:d9:13:8b:72:2d:f5:
79:94:46:e6:95:58:3e:89:5e:97:bb:af:14:f0:ff:fa:68:cd:
a1:59:eb:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:52 2024 by rpki-client on console.sobornost.net