Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer
File: WothvFOjJNeitPQVPQd0bsKjNdI.cer (raw, json)
Hash identifier: SZVPZCZsCNYCIpPjkPB7WtubZgkjA6ey7ydpgReyjk4=
Subject key identifier: 5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0204EC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 Aug 2024 00:50:17 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 9435
AS: 18350
AS: 24072
IP: 202.5.6.0/23
IP: 203.0.192.0/19
IP: 203.17.153.0/24
IP: 203.21.152.0/22
IP: 203.25.47.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132332 (0x204ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 5 00:50:17 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9173D12/serialNumber=5A8B61BC53A324D7A2B4F4153D07746EC2A335D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:33:a3:55:df:04:30:26:b8:cc:b7:4b:64:19:
9b:ab:4b:ca:19:65:90:a5:f6:7f:7c:02:d3:f3:7e:
58:0d:85:24:68:7c:f6:e3:56:95:d3:40:86:9c:60:
5b:87:03:28:db:46:ce:52:02:ca:89:c9:d6:4c:3d:
85:88:1e:c9:7a:be:32:8b:cd:92:0a:be:f2:f1:e8:
27:9e:22:52:05:89:61:67:00:89:20:53:65:69:f2:
10:78:1d:72:df:57:df:cd:f0:9a:cd:c8:10:da:c9:
95:8a:23:8c:44:e9:73:b3:49:38:58:fc:bc:b6:8d:
59:b7:5b:ae:ac:0a:58:6e:ff:69:6d:07:16:b1:39:
58:75:d6:01:b0:fe:05:9a:a2:16:5c:11:23:e3:95:
d7:c2:aa:4a:de:b1:07:08:05:3e:fa:d9:84:61:e9:
bf:46:27:1c:89:23:b7:44:a0:a5:df:8a:85:1f:1c:
fe:1e:3b:02:8d:7f:25:bc:8d:2a:bd:22:eb:0c:89:
9d:6b:f9:21:96:fd:64:ba:62:7a:d6:44:3e:40:87:
a9:2e:dc:2c:08:48:36:15:1f:28:ea:f0:75:20:5b:
2c:52:1f:ae:46:2a:a1:dd:1f:ed:58:8b:fe:5a:92:
ac:c9:36:6b:9b:4e:87:ce:08:3b:de:e2:5b:a2:d3:
f3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9435
18350
24072
sbgp-ipAddrBlock: critical
IPv4:
202.5.6.0/23
203.0.192.0/19
203.17.153.0/24
203.21.152.0/22
203.25.47.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:ff:10:c7:7b:8e:39:8d:ca:57:8f:f0:3c:f4:73:90:94:bd:
ff:93:cc:0c:f4:d6:26:df:aa:04:92:0a:72:c5:2b:d4:58:04:
1a:58:cc:75:9b:a9:fb:92:75:79:c1:ec:13:be:42:e4:f8:39:
9d:29:50:4d:4f:60:fd:2d:72:a1:90:22:ab:de:2d:2a:76:ae:
a5:8e:a0:93:e9:83:2a:e5:b0:3e:fb:e4:40:8f:5b:e6:ad:d0:
43:60:ec:97:86:a2:8c:39:03:05:e9:ce:c5:47:b9:8b:fb:66:
6a:92:ee:ce:83:44:cc:cf:f3:6b:f6:39:0f:9a:76:a2:a0:68:
04:23:5d:87:f4:27:8e:5a:70:9d:3d:26:06:67:a3:5a:08:79:
ed:ec:55:10:5a:b7:fd:0e:ea:2e:1d:1f:a0:f5:fd:a5:8f:7e:
c3:8e:8f:b0:9b:53:33:64:af:d0:23:bd:68:4d:26:b2:b4:fd:
08:88:c2:62:cb:bb:42:06:c0:7c:c7:88:bd:af:2a:8d:39:83:
21:31:a1:25:58:22:54:25:66:9d:ec:4e:20:8c:f7:57:dd:d9:
ac:e6:b8:d7:be:40:cf:f5:ad:7a:d4:8d:0d:86:b2:af:b3:70:
ca:ad:de:72:82:77:01:13:3b:08:1d:fb:ae:e4:f3:14:1a:d4:
6d:7a:9d:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:53 2024 by rpki-client on console.sobornost.net