Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.cer
File: ViN5KFSLCC9bE8Fu3D5qfC-A_PE.cer (raw, json)
Hash identifier: gXAc3lIArvHwnrC42QOzLaV4tTpK28fwE63j1oGjba8=
Subject key identifier: 56:23:79:28:54:8B:08:2F:5B:13:C1:6E:DC:3E:6A:7C:2F:80:FC:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021395
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 11 Oct 2024 02:48:01 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 132839
AS: 134675
IP: 43.229.212.0/22
IP: 43.230.168.0/22
IP: 43.240.48.0/22
IP: 43.241.44.0/22
IP: 43.249.24.0/22
IP: 43.251.104.0/22
IP: 45.64.108.0/22
IP: 45.114.168.0/22
IP: 45.115.124.0/22
IP: 45.120.80.0/22
IP: 45.127.36.0/22
IP: 45.127.124.0/22
IP: 45.250.196.0/22
IP: 103.36.20.0/22
IP: 103.37.40.0/22
IP: 103.40.112.0/22
IP: 103.42.176.0/22
IP: 103.49.8.0/22
IP: 103.49.248.0/22
IP: 103.54.124.0/22
IP: 103.55.128.0/22
IP: 103.60.148.0/22
IP: 103.75.12.0/22
IP: 103.75.44.0/22
IP: 103.80.16.0/22
IP: 103.85.188.0/22
IP: 103.195.192.0/22
IP: 103.196.60.0/22
IP: 103.200.124.0/22
IP: 103.204.76.0/22
IP: 103.214.164.0/22
IP: 103.215.212.0/22
IP: 103.219.104.0/22
IP: 103.233.248.0/22
IP: 116.193.168.0/22
IP: 117.120.60.0/22
IP: 120.89.68.0/22
IP: 121.54.160.0/22
IP: 144.48.124.0/22
IP: 157.119.92.0/22
IP: 182.161.68.0/22
IP: 202.165.120.0/22
IP: 2401:f940::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136085 (0x21395)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 11 02:48:01 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91AEB42/serialNumber=56237928548B082F5B13C16EDC3E6A7C2F80FCF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:02:4c:dc:9c:9b:98:6a:7a:57:56:de:57:d6:
42:12:38:51:16:8a:15:c6:59:73:5d:c0:28:fb:b0:
b2:be:23:eb:99:a6:f2:52:b1:68:75:b3:b8:86:03:
6d:f2:9f:6a:69:3e:f1:60:47:db:47:39:26:0b:fc:
3e:97:fc:f5:40:a6:a5:15:d4:26:fa:55:ab:04:bb:
6e:2a:66:5c:e0:04:e6:91:8d:12:21:cb:d7:ae:e7:
ec:13:37:2f:21:9b:49:f8:8b:33:bd:29:f9:ac:ad:
44:3a:de:2f:3b:cd:d3:30:4b:42:d1:1d:0d:eb:f6:
fd:42:d6:a9:9c:49:54:f0:58:38:35:1d:3e:5b:31:
f9:e7:ce:90:b1:7e:28:9b:dd:19:f4:d9:dc:63:14:
e4:10:0e:92:f6:3b:aa:be:fb:e7:14:bd:70:0f:cd:
8a:2b:cf:c8:b7:a0:e1:7d:d1:01:cc:63:c2:b4:c8:
1d:69:fc:ec:3c:c6:47:29:f8:c0:99:64:29:30:c5:
e1:b0:c3:77:c3:0d:f2:29:92:97:09:39:74:3f:a7:
71:87:a6:f5:6d:c8:4c:76:7a:9c:dc:17:55:04:2a:
62:72:3c:21:07:32:84:87:88:02:d2:bc:86:e1:fa:
8c:4d:ed:73:09:67:f8:d1:b3:52:28:8d:81:a2:ae:
9a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:23:79:28:54:8B:08:2F:5B:13:C1:6E:DC:3E:6A:7C:2F:80:FC:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132839
134675
sbgp-ipAddrBlock: critical
IPv4:
43.229.212.0/22
43.230.168.0/22
43.240.48.0/22
43.241.44.0/22
43.249.24.0/22
43.251.104.0/22
45.64.108.0/22
45.114.168.0/22
45.115.124.0/22
45.120.80.0/22
45.127.36.0/22
45.127.124.0/22
45.250.196.0/22
103.36.20.0/22
103.37.40.0/22
103.40.112.0/22
103.42.176.0/22
103.49.8.0/22
103.49.248.0/22
103.54.124.0/22
103.55.128.0/22
103.60.148.0/22
103.75.12.0/22
103.75.44.0/22
103.80.16.0/22
103.85.188.0/22
103.195.192.0/22
103.196.60.0/22
103.200.124.0/22
103.204.76.0/22
103.214.164.0/22
103.215.212.0/22
103.219.104.0/22
103.233.248.0/22
116.193.168.0/22
117.120.60.0/22
120.89.68.0/22
121.54.160.0/22
144.48.124.0/22
157.119.92.0/22
182.161.68.0/22
202.165.120.0/22
IPv6:
2401:f940::/32
Signature Algorithm: sha256WithRSAEncryption
44:c2:22:c1:37:21:c0:45:c4:ef:db:a4:24:75:2c:02:8c:b7:
22:a3:b6:cd:05:73:74:5d:44:87:0e:e9:f0:f2:25:6b:97:4d:
b2:2b:3f:c4:f4:42:d0:38:0c:23:ed:01:f1:4a:a1:6e:6b:50:
04:5c:c2:82:b0:e5:86:66:3b:b5:e7:0e:5b:0f:d9:00:e8:a2:
5a:10:ec:9f:33:1a:16:87:be:42:f1:96:08:45:b0:17:11:cf:
65:57:a6:a7:ae:aa:52:71:bb:8f:c5:f7:75:64:54:de:c2:58:
88:e0:14:46:1b:86:a0:b9:b6:61:fd:95:c7:6c:4e:70:2a:73:
e0:5e:58:59:f6:53:f5:e3:b4:c8:b6:78:8f:ed:40:47:e3:00:
db:e1:af:b8:92:6e:33:78:82:f5:b3:e3:15:f6:4f:cf:cf:ad:
e7:7e:2c:36:ec:cc:74:72:6f:59:96:f5:c3:cf:27:04:ca:5a:
5b:e4:64:a2:86:36:c7:83:99:75:2c:7e:0a:e8:87:b4:87:d7:
7e:2d:40:ca:10:46:a3:bc:80:a2:c4:72:76:42:22:da:f8:cb:
df:32:72:e2:eb:fc:04:86:37:57:c4:d8:de:6b:6a:2b:ba:0c:
87:9a:c4:61:28:e0:d7:e3:63:97:d8:32:e5:fe:a8:bd:ac:0c:
ca:4e:a1:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:53 2024 by rpki-client on console.sobornost.net