Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZBCzWtGo6R_r2FtEN2aMKmnap9o.cer
File: ZBCzWtGo6R_r2FtEN2aMKmnap9o.cer (raw, json)
Hash identifier: FV0Vk1E0wPV/Y+umQK2FqftWqZiwnknf8J3adgJIuxo=
Subject key identifier: 64:10:B3:5A:D1:A8:E9:1F:EB:D8:5B:44:37:66:8C:2A:69:DA:A7:DA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020E83
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BF759/106CFD6476D711EFA84A4712C4F9AE02/ZBCzWtGo6R_r2FtEN2aMKmnap9o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BF759/106CFD6476D711EFA84A4712C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 19 Sep 2024 22:32:38 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 132049
IP: 103.187.118.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134787 (0x20e83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 19 22:32:38 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91BF759/serialNumber=6410B35AD1A8E91FEBD85B4437668C2A69DAA7DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8f:da:c8:96:2d:8d:03:1b:a9:94:3e:a0:ea:
09:ab:de:67:4e:e7:e6:07:0c:e9:ee:c0:ea:a0:14:
3f:98:46:34:0c:b0:44:c4:92:c2:0e:06:8d:b5:66:
46:d4:be:68:10:33:88:e7:93:da:55:04:0a:cb:50:
6e:39:ba:5c:de:16:ab:34:a1:68:1c:ca:23:7b:a6:
67:5a:4e:6e:93:f5:9c:85:ae:e2:fa:87:cc:f5:3e:
1f:4c:dd:bf:10:05:bb:7b:13:23:a7:46:37:61:1f:
c7:57:ee:53:f9:65:79:1f:2f:4d:0d:fd:5a:4f:95:
e2:5b:7c:b9:0c:a8:3c:16:fa:22:f8:94:52:96:00:
5e:be:a1:d9:96:25:f5:f3:b7:b4:e9:b5:af:cf:3e:
18:54:b9:dc:28:72:57:58:14:a5:e8:9f:93:eb:40:
f7:ec:b2:56:15:26:75:20:49:b4:09:e1:de:e5:3c:
9d:68:18:97:a8:7a:ea:85:b0:c2:4e:35:b7:11:87:
73:f6:1e:2b:46:d6:7f:9d:a5:a5:71:ca:a0:66:68:
e5:e2:d1:78:dc:b0:50:8b:b0:b5:29:c8:17:bf:33:
5a:5d:36:3c:1f:96:d0:da:df:01:f2:0b:c2:82:ae:
b0:5f:18:16:0e:0b:8c:72:fb:0e:78:a9:3b:c4:3f:
1b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:10:B3:5A:D1:A8:E9:1F:EB:D8:5B:44:37:66:8C:2A:69:DA:A7:DA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BF759/106CFD6476D711EFA84A4712C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BF759/106CFD6476D711EFA84A4712C4F9AE02/ZBCzWtGo6R_r2FtEN2aMKmnap9o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132049
sbgp-ipAddrBlock: critical
IPv4:
103.187.118.0/23
Signature Algorithm: sha256WithRSAEncryption
36:0a:5f:0f:45:5c:28:ef:a1:fc:10:52:5b:79:65:8a:72:e0:
02:6d:88:48:e6:9f:68:4f:52:7b:d8:b5:87:43:c3:06:0a:7b:
d0:0a:ec:85:c4:61:cd:70:fe:62:e7:7d:9b:2c:c4:78:9f:4b:
51:1c:5e:7b:5f:b5:6e:3b:ce:14:f6:55:67:f4:bd:bf:47:80:
e1:27:aa:1b:2f:76:33:84:17:9d:12:8a:f5:b2:ca:61:df:24:
d5:93:26:e2:70:eb:d6:60:63:69:86:77:4c:cb:95:84:1e:fd:
d1:2e:1f:c7:86:b0:b6:12:e6:e6:d7:1a:e1:01:a4:55:0d:0e:
76:62:36:ea:a2:9d:b0:70:3d:5f:87:29:15:76:6f:be:ae:6b:
11:b4:59:a5:7a:80:6f:11:48:a7:0a:82:9e:09:71:6e:24:85:
0e:ef:57:89:45:fc:03:7d:f9:95:63:87:8e:8c:47:a0:50:89:
db:5e:d4:a2:fa:ae:7e:67:5b:f6:b9:c0:20:be:32:ab:00:d8:
ed:ec:31:b4:95:b0:0c:47:39:81:98:4e:b6:60:72:e3:ef:59:
d8:4f:e4:d8:a8:4d:e1:0b:c7:de:16:e9:4c:d5:d2:7f:ea:da:
e5:84:77:d0:22:00:82:61:e7:48:7d:44:42:ff:4f:b7:8f:7b:
17:44:41:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:55 2024 by rpki-client on console.sobornost.net