Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer
File: VB4KZv5g86rAJQLO8eSOYnpi90E.cer (raw, json)
Hash identifier: 8VNg/r757h6IEMY/Mpz7nMKpmLLcXsXKBUZlFAp09XE=
Subject key identifier: 54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F768
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Jun 2024 13:35:25 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 58935
IP: 103.249.56.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128872 (0x1f768)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 5 13:35:25 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91288D9/serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c7:bf:da:8e:5f:85:e8:ef:12:2f:87:e0:c6:
8c:5f:21:b5:47:8c:f9:ac:fa:12:bc:f0:43:d0:ba:
22:67:5f:af:00:a2:97:8f:cd:a9:66:95:64:d7:e6:
6d:d0:8d:23:c9:8f:07:63:44:16:75:f9:6a:14:1c:
1d:78:64:50:fa:30:31:f4:5a:31:0c:4c:07:a0:b5:
25:d8:05:b6:fb:55:ad:f7:b6:2e:cb:fe:f4:4c:bc:
a0:aa:88:5e:b1:af:95:1f:64:69:c1:d7:23:f4:0a:
92:e5:5d:12:06:28:7d:8a:a5:a4:e2:b4:99:9c:1b:
90:d8:e3:f5:e5:4f:bd:d1:c3:09:6a:2a:41:f2:d0:
5e:d0:e1:a3:b2:84:39:9b:d1:42:2b:65:ed:1b:04:
fc:f9:d4:56:4d:a3:98:e7:e3:20:21:43:d3:03:00:
8c:41:34:80:7f:2e:e5:1c:00:31:40:7e:a2:d9:79:
2c:2b:68:96:6f:1c:a1:79:e2:59:e5:83:fe:31:f5:
8b:86:55:a8:6f:f0:50:2e:7d:16:35:df:df:99:4c:
22:c6:72:af:1e:6e:c3:16:05:eb:75:75:a7:0b:db:
c5:04:52:b5:a8:da:87:97:d5:8c:3d:f2:7e:04:5e:
4c:f0:8c:36:62:d6:22:55:c7:c6:ad:e7:f8:f4:6e:
f3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58935
sbgp-ipAddrBlock: critical
IPv4:
103.249.56.0/24
Signature Algorithm: sha256WithRSAEncryption
42:02:82:7e:75:62:5a:c5:c2:99:56:d2:56:41:f8:96:5e:70:
2b:e4:62:45:57:cf:c5:a5:c7:b1:5e:41:f4:7f:72:71:28:33:
14:ab:f7:49:56:4a:62:6d:dc:0a:cd:39:6c:51:e5:f8:a1:2d:
7d:0a:4e:cc:96:59:a3:51:40:e2:fc:ad:6a:57:c1:2b:cb:6e:
7d:8b:3c:e8:84:aa:56:e4:95:bd:ba:c4:f5:ca:88:f1:7c:62:
e2:16:56:49:f0:92:d3:c7:1e:37:6a:34:16:b2:8c:4a:70:f3:
9f:5c:b2:f8:90:da:2d:29:34:a2:8b:2a:72:b5:6a:45:d7:be:
c0:61:b3:4a:55:73:a2:1e:4d:a2:79:da:fc:bb:40:21:72:9b:
0a:16:b2:fe:16:18:cb:33:73:c0:dc:02:96:56:67:07:7a:aa:
ea:4a:33:ed:1f:98:2e:02:17:14:e8:e6:b8:48:ad:f5:a2:04:
d7:26:9b:5b:dd:cc:2a:97:3e:f4:57:59:97:db:81:30:db:af:
0e:11:4f:4c:e5:89:f2:15:cd:d1:db:46:03:3a:7b:4a:4c:2f:
48:6c:ba:60:5d:6a:30:8b:66:e9:15:24:f3:d9:32:40:59:85:
52:50:98:b9:d6:da:40:0e:0e:af:59:7d:0a:d9:ff:17:ec:07:
e8:ee:43:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:52 2024 by rpki-client on console.sobornost.net