Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer
File: Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer (raw, json)
Hash identifier: tDuXHoQHHuuwVotx5CpAvU0EC9FDXX+TIRP7WEvHBN8=
Subject key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020917
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 Aug 2024 20:29:19 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 136805
IP: 103.96.141.0/24
IP: 103.109.123.0/24
IP: 103.109.132.0/23
IP: 2001:df1:df00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133399 (0x20917)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 26 20:29:19 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1c:e6:98:15:e4:54:0e:58:08:1b:ab:8d:92:
d9:73:70:5d:74:a0:a3:79:91:16:26:08:5c:f9:5d:
d2:00:c7:3b:78:76:88:50:7a:4c:f4:50:75:ac:52:
68:37:76:cc:d4:08:b9:cf:92:a3:c5:92:d8:fe:0e:
7d:35:84:93:74:2d:f1:3a:40:d9:15:d8:cc:54:55:
a5:25:dd:3c:b9:4e:51:6f:6b:f6:4f:e8:21:30:86:
69:7d:01:76:06:6d:bd:c9:6f:bf:2d:14:c2:3a:6f:
6c:78:bb:dc:b5:cb:08:96:88:ae:d9:0d:0d:61:e7:
22:4c:ff:51:10:a2:c6:3b:fa:20:c8:3e:fc:0f:fb:
ae:bd:06:e6:67:55:e8:7c:ce:49:0e:44:0f:d0:a6:
21:e1:46:50:df:4f:a7:22:ab:ea:86:84:df:31:0b:
66:1f:7b:e0:f8:23:bf:92:c9:0c:68:5d:af:70:e9:
03:ea:3d:e0:6e:52:16:dd:a9:fd:6c:33:8e:f5:7b:
16:68:37:2c:f1:ba:ab:2b:bf:9a:78:d0:4e:0b:13:
72:42:5b:5f:6d:45:9b:ef:98:a4:3e:35:81:07:23:
a6:22:9b:d4:29:3b:62:d9:c5:28:c6:aa:3e:c4:de:
e0:fb:db:ca:c3:47:b9:91:bd:88:34:0e:cc:83:a4:
2f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136805
sbgp-ipAddrBlock: critical
IPv4:
103.96.141.0/24
103.109.123.0/24
103.109.132.0/23
IPv6:
2001:df1:df00::/48
Signature Algorithm: sha256WithRSAEncryption
d8:53:01:2c:37:c1:15:87:88:a6:e3:d1:d2:39:1e:81:0f:97:
89:d7:99:92:f2:02:c5:7a:0d:7c:f3:62:82:d6:a5:74:10:3a:
db:37:da:05:ba:37:25:10:0c:c4:08:49:d3:6f:3c:e9:59:7f:
00:d8:e3:48:b9:1c:b1:8a:44:df:62:3a:70:14:af:37:28:f4:
9f:ae:4b:c5:0b:19:99:67:36:fb:a1:76:41:b4:61:50:eb:24:
e6:bc:84:cd:0d:c6:a9:5b:71:6b:a4:bb:e5:f2:17:06:c4:59:
d7:bf:20:c7:4b:8e:04:3a:23:44:5a:6f:ff:c4:a1:a3:53:93:
32:1a:81:52:6c:08:14:4f:83:7e:21:e5:ad:c3:76:98:21:cb:
99:88:78:dd:12:14:f5:b4:0f:3c:94:6f:4b:0a:53:66:63:cf:
c8:5d:1b:62:eb:b3:88:22:9c:90:70:88:34:0f:ba:28:11:e6:
6e:b9:00:af:8e:6c:b4:b0:1a:d6:2e:87:86:ea:89:bd:ff:3b:
00:88:39:d6:40:dd:90:b9:4d:8a:b5:10:b5:41:2c:9e:48:30:
b0:76:17:97:da:1f:64:65:7d:75:7c:2c:16:2b:bd:1a:1f:20:
ee:b5:b1:86:a7:0c:4b:46:14:a6:b4:30:95:47:8b:a4:eb:96:
5e:33:13:f0
-----BEGIN CERTIFICATE-----
MIIGNzCCBR+gAwIBAgIDAgkXMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgyNjIwMjkxOVoXDTI1MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQTkzNUQxMTAvBgNVBAUTKDYzNTkzMDlFRjQ5QjQ0NUY2RUI1MzMx
QkRGMEE5NEM1QzZFRkMzN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDIHOaYFeRUDlgIG6uNktlzcF10oKN5kRYmCFz5XdIAxzt4dohQekz0UHWsUmg3
dszUCLnPkqPFktj+Dn01hJN0LfE6QNkV2MxUVaUl3Ty5TlFva/ZP6CEwhml9AXYG
bb3Jb78tFMI6b2x4u9y1ywiWiK7ZDQ1h5yJM/1EQosY7+iDIPvwP+669BuZnVeh8
zkkORA/QpiHhRlDfT6ciq+qGhN8xC2Yfe+D4I7+SyQxoXa9w6QPqPeBuUhbdqf1s
M471exZoNyzxuqsrv5p40E4LE3JCW19tRZvvmKQ+NYEHI6Yim9QpO2LZxSjGqj7E
3uD728rDR7mRvYg0DsyDpC+pAgMBAAGjggMsMIIDKDAdBgNVHQ4EFgQUY1kwnvSb
RF9utTMb3wqUxcbvw3swHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUE5MzVEL0Y1MDBGNzI4OEFCODExRUI4NzA3RTExQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBOTM1RC9GNTAwRjcyODhBQjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZT
YlJGOXV0VE1iM3dxVXhjYnZ3M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhZlMDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIAATASAwQAZ2CNAwQAZ217
AwQBZ22EMA8EAgACMAkDBwAgAQ3x3wAwDQYJKoZIhvcNAQELBQADggEBANhTASw3
wRWHiKbj0dI5HoEPl4nXmZLyAsV6DXzzYoLWpXQQOts32gW6NyUQDMQISdNvPOlZ
fwDY40i5HLGKRN9iOnAUrzco9J+uS8ULGZlnNvuhdkG0YVDrJOa8hM0NxqlbcWuk
u+XyFwbEWde/IMdLjgQ6I0Rab//EoaNTkzIagVJsCBRPg34h5a3Ddpghy5mIeN0S
FPW0DzyUb0sKU2Zjz8hdG2Lrs4ginJBwiDQPuigR5m65AK+ObLSwGtYuh4bqib3/
OwCIOdZA3ZC5TYq1ELVBLJ5IMLB2F5faH2RlfXV8LBYrvRofIO61sYanDEtGFKa0
MJVHi6Trll4zE/A=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:54 2024 by rpki-client on console.sobornost.net