Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VcRoVcyRrFSsB1wpe3Ux-oinNdk.cer
File: VcRoVcyRrFSsB1wpe3Ux-oinNdk.cer (raw, json)
Hash identifier: MEXnd+Ziwc+uc/0UCqoCd1TLafSPl8eXAjWp7G6/wUE=
Subject key identifier: 55:C4:68:55:CC:91:AC:54:AC:07:5C:29:7B:75:31:FA:88:A7:35:D9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FF7C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/VcRoVcyRrFSsB1wpe3Ux-oinNdk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 11 Jul 2024 15:02:26 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 136443
IP: 103.220.4.0/22
IP: 2405:7f80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130940 (0x1ff7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 11 15:02:26 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9154534/serialNumber=55C46855CC91AC54AC075C297B7531FA88A735D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:78:43:72:cc:2e:1b:6d:03:b4:66:f1:58:24:
37:c4:64:dd:be:cd:5d:bb:7b:fe:f6:76:97:b0:32:
e3:27:d4:9a:b1:3a:99:30:41:92:8f:4d:68:58:bf:
72:ca:50:a8:d8:de:de:66:04:8e:9c:2b:15:7a:e4:
4d:e3:d0:ab:7f:2d:c9:e0:0c:7e:de:32:82:22:21:
02:a6:41:1c:ef:99:6d:33:8d:c8:2a:42:58:60:c1:
75:7d:5b:c9:72:c6:90:ba:b5:76:ec:3b:b8:71:c2:
9f:db:84:8f:36:b4:c4:3d:95:77:b1:da:bd:df:cb:
b1:aa:50:56:12:f5:14:8b:ee:e4:c7:d0:d9:7f:13:
b9:23:f0:02:9c:59:77:e8:9b:0d:54:39:98:e8:b9:
59:0e:0f:2c:01:1c:b1:41:d9:60:65:7b:d7:c6:ee:
d0:67:35:55:84:69:36:c7:af:d3:5f:5a:67:0c:c4:
fe:71:d3:de:76:03:84:78:98:61:33:b0:dd:40:8c:
2d:bc:f1:e1:a0:1f:66:18:1c:77:15:26:e2:15:b7:
de:c6:75:c1:70:d4:21:54:22:5c:9c:91:90:08:81:
05:bf:2d:cf:40:79:51:57:9f:2d:0c:17:ee:23:1e:
6f:eb:5d:67:47:92:3f:03:ed:8d:a7:65:49:e9:1e:
07:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C4:68:55:CC:91:AC:54:AC:07:5C:29:7B:75:31:FA:88:A7:35:D9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/VcRoVcyRrFSsB1wpe3Ux-oinNdk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136443
sbgp-ipAddrBlock: critical
IPv4:
103.220.4.0/22
IPv6:
2405:7f80::/32
Signature Algorithm: sha256WithRSAEncryption
08:32:56:70:dd:32:01:33:9f:6b:e4:b0:2a:91:32:4c:92:bc:
49:b0:79:28:cd:42:a5:ff:c6:cf:5c:42:01:ad:da:84:e5:b8:
af:48:aa:54:e2:9e:cd:9a:5f:45:fe:07:81:64:ee:b7:5d:36:
8f:24:1e:9c:0c:64:a2:cf:1b:cc:c7:b7:f9:00:1b:ef:d0:cc:
dc:a9:86:72:21:25:e6:d0:3a:fe:0a:c4:8d:7d:e7:8c:33:34:
04:0a:b5:c8:f5:5f:12:10:97:58:c2:8c:79:0c:3b:a1:43:47:
80:36:7a:9d:d4:06:bb:f8:f2:a8:cb:ca:18:e8:59:33:74:5f:
f2:b3:4d:31:e1:28:4c:17:57:18:96:69:8c:f6:8d:78:7b:a6:
10:7e:ee:1a:a2:3a:94:a6:b3:46:cc:62:a5:3e:83:e1:83:a6:
4e:c4:a1:ce:2a:af:7e:d6:2e:ef:93:1c:5d:9c:e4:dd:c3:50:
9c:d1:dd:ce:2b:2c:ec:82:e0:6f:b7:29:b1:80:0d:01:e4:5d:
33:94:23:38:8a:32:c2:10:6a:41:fd:cd:2e:04:56:41:f3:59:
e2:da:cd:4c:ba:a6:4a:f1:e3:39:c7:78:48:b6:2f:0a:32:1b:
7b:8c:e2:d3:3d:55:d1:a4:46:68:00:10:68:e5:3f:64:7d:09:
36:c7:83:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:52 2024 by rpki-client on console.sobornost.net