Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer
File: WKGWp78G8uFukJ0ncUG6RJEfH08.cer (raw, json)
Hash identifier: 4sdzGu75JzNjo72UBnR+bPxlqYpCSJamtNeg1dAXuw8=
Subject key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020DA1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 15 Sep 2024 18:53:47 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 45887
AS: 139475
IP: 103.68.120.0/22
IP: 103.206.30.0/23
IP: 103.230.68.0/22
IP: 117.121.240.0/21
IP: 182.54.232.0/21
IP: 2403:cc00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134561 (0x20da1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 15 18:53:47 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b1:c7:d1:3d:9e:13:67:b6:84:50:a0:ce:27:
c8:81:8d:84:26:84:f1:70:7d:50:49:d4:ea:4d:af:
7f:64:57:83:02:50:f9:a2:fa:20:2a:35:30:92:c8:
17:48:c9:aa:07:a3:8e:8f:b9:28:4a:cd:c6:3c:7f:
10:43:48:8e:03:68:96:28:a4:3b:ad:99:58:0e:ce:
ea:f5:7c:d3:e8:9e:46:e5:6b:e5:23:ae:53:e0:4a:
40:63:c0:73:3f:b1:d7:08:3b:e2:e6:62:1c:61:97:
3d:b6:0b:25:17:af:60:34:33:d9:c4:ba:90:a5:5d:
bf:54:c1:0b:bd:c6:b0:de:33:60:ed:59:ed:ba:f9:
e6:f0:78:6f:2a:f2:fc:f6:8a:aa:14:34:ad:48:f6:
a8:25:5b:c2:14:56:0e:ba:f4:87:a0:d0:69:47:b2:
3d:8b:2b:ae:8b:c8:a7:64:54:b5:47:81:a0:56:7b:
d3:fb:31:20:4e:87:51:5e:6d:55:fa:f7:ee:19:e1:
46:36:ac:ed:ce:5a:48:d9:7b:03:c9:e5:2e:f6:6d:
e0:b6:de:48:3b:c9:71:b5:5a:5b:8d:7a:af:13:c0:
40:e0:a1:15:bd:63:34:1e:7f:d7:a8:5c:c8:8e:9c:
21:7a:d0:8b:bb:96:e1:d2:6f:64:67:b1:05:3e:95:
66:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45887
139475
sbgp-ipAddrBlock: critical
IPv4:
103.68.120.0/22
103.206.30.0/23
103.230.68.0/22
117.121.240.0/21
182.54.232.0/21
IPv6:
2403:cc00::/32
Signature Algorithm: sha256WithRSAEncryption
9f:ef:8e:79:7b:c1:e4:d0:f9:f8:9d:7c:ac:0b:41:2d:0d:10:
49:7c:1e:4f:4b:9e:28:52:28:cc:7c:05:09:58:cc:d8:68:24:
94:6b:af:2a:ff:4d:7a:79:b8:51:ec:1c:2e:7f:ba:a8:ea:3b:
b1:8d:69:c9:d1:13:7a:8a:90:46:1a:06:20:8f:75:85:4a:b0:
9f:88:cc:1c:9b:b4:8e:e3:b1:88:f9:6c:8a:ed:fb:9c:b8:7a:
7a:b1:58:1f:d9:75:79:df:6b:be:2c:a1:ed:1b:c5:85:c1:a5:
49:4c:1d:40:be:3a:06:9f:b1:59:0e:a8:59:b3:3b:77:7e:68:
6d:b8:c6:96:d1:4f:e5:c5:4d:f3:74:bd:2f:08:79:eb:59:35:
5a:5e:d9:fa:88:0f:36:1f:1d:94:b8:dc:50:1a:a3:27:9c:7b:
d7:6b:da:89:19:d6:64:cf:91:94:e0:db:6c:de:8b:8f:82:af:
df:64:98:85:ed:ac:7c:81:2d:e8:47:21:dd:4d:76:ef:03:72:
6f:c0:67:2b:4a:56:37:0f:93:48:d0:db:2c:74:31:82:aa:a5:
e8:ce:ff:b9:ff:d6:8a:31:db:2c:85:01:7f:7b:4e:21:83:33:
c3:89:5d:e9:9d:e1:b9:77:d9:e4:b5:82:a4:24:13:bb:42:1d:
58:6d:b0:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:53 2024 by rpki-client on console.sobornost.net