Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer
File: X1zijATRbpUODrzVlVVCSD05VtA.cer (raw, json)
Hash identifier: LDHOQS2PFtftRnEEQ+7CjbqWnYRcUzDRwbqYFS4sb2g=
Subject key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021462
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 16 Oct 2024 20:38:18 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 151963
IP: 103.65.134.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136290 (0x21462)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 16 20:38:18 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5c:65:0a:c4:b9:a6:d4:07:5a:18:54:08:12:
53:b7:b6:72:bb:f8:af:c4:1d:0f:c1:f6:75:2a:8a:
14:a0:08:de:e3:52:5e:15:a0:4a:9e:8f:3a:bc:ec:
49:c3:33:c7:46:04:07:eb:33:7a:ba:25:2d:57:d0:
f7:55:22:17:ae:bc:b5:a2:93:63:a3:db:8c:3d:a9:
b0:2d:26:37:a8:c8:6d:de:1c:b4:2b:e3:f6:bd:da:
01:04:37:a0:5c:8d:64:87:75:32:46:10:9f:62:93:
ee:d1:70:63:7a:14:9b:86:03:80:61:dc:2a:12:99:
93:d8:a4:5f:ca:45:75:dc:a6:d2:71:b1:f9:4f:fe:
38:51:c1:5f:56:b4:99:6f:e0:ce:19:44:f4:52:59:
36:2a:be:ba:73:5a:b1:d4:0e:c7:eb:39:6d:8d:6e:
89:c9:a0:dc:98:ca:2c:c0:70:e2:e6:d2:48:5b:fa:
77:99:6f:44:72:73:0f:d6:b3:1e:a7:c1:e6:4f:8a:
7c:e2:30:73:5e:89:d3:c8:5f:59:0f:25:e1:7d:e9:
a9:bb:b0:af:7e:3c:a5:ce:b1:a2:79:50:40:ba:4c:
2a:54:13:9b:66:50:42:e2:23:99:f9:ed:15:90:20:
55:b8:bb:52:5d:95:08:49:50:36:47:00:0e:17:e4:
c1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151963
sbgp-ipAddrBlock: critical
IPv4:
103.65.134.0/23
Signature Algorithm: sha256WithRSAEncryption
09:73:2f:dc:d6:74:dc:ce:f0:62:13:ec:b9:3e:53:18:b9:41:
af:d2:2a:93:98:d5:ad:77:25:30:07:80:1a:86:7e:82:29:a7:
03:5f:77:a4:74:49:ba:3c:66:c3:44:06:7c:81:3f:1c:8f:0b:
85:8c:37:cd:b6:19:ae:02:50:4c:4e:12:f4:89:6a:c2:47:80:
1d:3e:f4:2b:d2:2c:aa:26:3f:3d:e1:f7:bf:07:68:74:8a:a2:
cf:9a:2b:47:c1:72:e7:08:d0:08:85:a2:ce:42:e6:8e:b8:10:
19:59:50:50:92:e1:4f:79:1e:d6:59:e8:c4:01:78:f2:eb:46:
33:20:ae:11:4c:6a:36:18:ad:8a:c2:6a:68:c9:b7:52:e6:4f:
bd:a1:89:b8:a7:59:0e:75:4c:f1:30:ca:ce:5f:b3:70:99:1a:
f7:c9:0f:3a:69:db:7d:24:85:12:82:ef:5b:35:b1:68:f7:8d:
fe:ba:b4:e7:f8:98:4b:2e:aa:17:8b:a8:e7:9b:24:28:79:f2:
a5:e9:40:81:f1:02:9d:84:61:96:2a:37:1b:09:e8:ad:52:e2:
f0:33:eb:f0:f6:a3:b0:1f:bd:e2:57:02:06:ff:86:00:3b:b5:
3c:fc:e3:84:ce:db:0d:41:93:83:f3:6e:53:f1:ca:37:bb:80:
1d:a7:48:52
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAhRiMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTAxNjIwMzgxOFoXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNE
NTk1NTU0MjQ4M0QzOTU2RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC1XGUKxLmm1AdaGFQIElO3tnK7+K/EHQ/B9nUqihSgCN7jUl4VoEqejzq87EnD
M8dGBAfrM3q6JS1X0PdVIheuvLWik2Oj24w9qbAtJjeoyG3eHLQr4/a92gEEN6Bc
jWSHdTJGEJ9ik+7RcGN6FJuGA4Bh3CoSmZPYpF/KRXXcptJxsflP/jhRwV9WtJlv
4M4ZRPRSWTYqvrpzWrHUDsfrOW2NbonJoNyYyizAcOLm0khb+neZb0Rycw/Wsx6n
weZPinziMHNeidPIX1kPJeF96am7sK9+PKXOsaJ5UEC6TCpUE5tmUELiI5n57RWQ
IFW4u1JdlQhJUDZHAA4X5MHdAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUX1zijATR
bpUODrzVlVVCSD05VtAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUYwRDg2LzY4RTc5NzhBNkNCRDExRUVCODQ2RjM3OUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGMEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFU
UmJwVU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlGbMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0GGMA0GCSqG
SIb3DQEBCwUAA4IBAQAJcy/c1nTczvBiE+y5PlMYuUGv0iqTmNWtdyUwB4Aahn6C
KacDX3ekdEm6PGbDRAZ8gT8cjwuFjDfNthmuAlBMThL0iWrCR4AdPvQr0iyqJj89
4fe/B2h0iqLPmitHwXLnCNAIhaLOQuaOuBAZWVBQkuFPeR7WWejEAXjy60YzIK4R
TGo2GK2KwmpoybdS5k+9oYm4p1kOdUzxMMrOX7NwmRr3yQ86adt9JIUSgu9bNbFo
943+urTn+JhLLqoXi6jnmyQoefKl6UCB8QKdhGGWKjcbCeitUuLwM+vw9qOwH73i
VwIG/4YAO7U8/OOEztsNQZOD825T8co3u4Adp0hS
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:53 2024 by rpki-client on console.sobornost.net