Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer
File: XfVm12I2fCjH8_ElYbRxa4yhuWY.cer (raw, json)
Hash identifier: wDUFd4FfMfqokZfuOGgd7bZPTdWUSfXko6tcQul/57I=
Subject key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FDA7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Jul 2024 07:45:16 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 133489
IP: 103.233.0.0/22
IP: 2001:df6:6e00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130471 (0x1fda7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 07:45:16 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:76:3d:d4:c0:1a:37:cf:c6:07:69:ad:a5:b1:
7c:18:04:dc:3e:69:ce:05:f5:a2:68:a6:93:36:29:
68:97:37:a9:94:98:04:4b:55:c1:5e:05:de:4b:39:
aa:04:45:cb:e3:0d:98:96:fa:00:49:e9:62:e2:58:
55:fc:b6:bc:d9:26:6f:7e:52:37:79:bc:6d:9f:1d:
26:7e:a0:25:6f:83:2d:57:ee:fc:ee:77:96:cd:29:
e8:95:e4:18:04:cc:78:1f:75:87:c1:38:0a:00:91:
8c:18:de:b5:1e:9c:74:67:24:ac:22:06:c9:5e:04:
de:f1:b5:90:42:0c:a9:40:04:ea:51:99:88:bb:ff:
54:08:41:e0:1c:cd:52:2a:54:c4:37:84:34:8c:e6:
63:60:75:99:5c:fe:a1:73:95:91:2a:59:17:96:76:
03:21:a1:f3:83:2d:d8:c6:09:b8:ec:f8:b1:de:9d:
05:9b:ce:27:ec:50:9b:27:c0:1d:e6:09:69:ae:77:
b3:c5:bd:82:3f:16:fb:61:7f:f9:fe:26:0f:91:4e:
c3:1e:b0:fc:bb:2a:83:64:2d:c7:a1:81:4d:f5:ee:
df:0c:8d:8a:e4:c3:79:32:5c:37:cd:ad:48:70:75:
0a:20:87:44:3f:49:78:87:6b:04:81:2f:31:1f:0e:
ae:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133489
sbgp-ipAddrBlock: critical
IPv4:
103.233.0.0/22
IPv6:
2001:df6:6e00::/48
Signature Algorithm: sha256WithRSAEncryption
3d:30:18:14:8f:b5:2f:ec:b6:16:7e:f4:60:a7:c1:a0:e8:75:
7d:af:5f:74:6e:19:4b:cc:f5:5a:55:c0:9c:65:5c:85:12:1c:
10:8a:9f:93:17:ad:2f:f3:a3:16:05:96:2d:50:5f:90:0f:d1:
19:b8:a1:06:f4:f9:ec:7b:cd:c8:68:20:65:16:5c:b4:33:9a:
59:69:51:2d:10:6d:9d:d4:ce:ff:72:85:69:da:e4:4e:ef:6b:
0e:5d:1f:1b:a6:c5:61:fa:7c:ca:46:7a:ca:9d:28:e0:38:ca:
21:39:30:cf:ae:d4:0f:49:9a:c6:85:a5:73:63:99:d2:df:a8:
2a:49:20:f1:f5:04:df:e1:a7:3f:21:b2:c0:be:b5:5b:06:bc:
8a:21:04:4a:96:f0:cf:9d:d3:02:10:ff:4d:79:e6:ea:bd:33:
35:7f:46:2e:1b:b0:90:ec:47:73:44:ed:13:fc:db:b4:b8:f2:
d9:02:01:a3:e4:a6:fb:17:82:d2:fa:42:31:69:6c:68:25:51:
f3:08:2d:ff:41:88:3a:c5:c8:1f:f6:7e:83:d7:5a:7a:b4:a1:
7d:27:89:51:e0:cb:f9:63:7e:ce:d8:aa:ca:aa:b9:7d:f9:d0:
c7:ad:cb:c3:e9:70:4d:48:c5:4b:9e:41:e3:fc:aa:04:a7:79:
f2:b4:d1:7c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:54 2024 by rpki-client on console.sobornost.net