Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZmkYZX5BYz4X6shsJrGE26PoHi4.cer
File: ZmkYZX5BYz4X6shsJrGE26PoHi4.cer (raw, json)
Hash identifier: svDRYfIeHr4S8tfK7enq6wMGvD0d8d+LJpTrrjv1590=
Subject key identifier: 66:69:18:65:7E:41:63:3E:17:EA:C8:6C:26:B1:84:DB:A3:E8:1E:2E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F8E9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9149907/F714BDCACC2E11EC823BEE35C4F9AE02/ZmkYZX5BYz4X6shsJrGE26PoHi4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9149907/F714BDCACC2E11EC823BEE35C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Jun 2024 15:09:43 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 149816
IP: 103.187.6.0/23
IP: 2400:7820::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129257 (0x1f8e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 13 15:09:43 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9149907/serialNumber=666918657E41633E17EAC86C26B184DBA3E81E2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c2:ec:9a:e9:4c:2f:94:bf:0f:89:59:93:13:
9c:22:2a:4b:b1:7b:e2:6c:c5:05:ce:90:bf:50:5e:
98:3c:f3:45:7c:e0:fc:b2:e4:65:0a:5d:18:d2:18:
10:b1:8a:0d:7a:d6:0d:40:c5:d7:eb:20:e0:38:99:
e0:ff:95:ae:3b:30:0c:f6:6e:df:33:97:ab:62:28:
e5:2f:af:66:ae:aa:7f:94:9b:ce:a5:06:3b:ea:6e:
fa:e6:39:9a:09:e8:61:89:62:20:cd:a9:8e:9d:93:
50:88:71:b8:5f:d7:b6:0e:77:ae:a9:3f:cd:7d:74:
5e:e7:07:18:e2:28:1e:2a:79:df:54:a5:43:00:ef:
97:88:9d:34:07:b4:10:4b:63:1f:ca:d6:fe:c1:98:
7b:5e:44:97:1f:f5:dd:a0:4d:fa:55:73:8e:a8:a3:
b5:e7:82:4b:bf:35:33:ff:02:ac:08:37:e4:48:73:
7a:82:d3:2b:85:ee:ed:c4:37:f9:a1:35:62:29:c7:
49:81:ca:6e:1e:7c:44:9d:51:36:ca:3d:98:65:44:
3f:6e:45:d3:f9:87:e6:e8:f7:4f:b4:60:21:9c:47:
c4:da:e3:6c:20:98:a0:6c:9e:01:d6:c0:c8:0e:3d:
8d:77:85:8d:b9:35:20:0b:3a:22:e0:05:99:81:b0:
dd:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:69:18:65:7E:41:63:3E:17:EA:C8:6C:26:B1:84:DB:A3:E8:1E:2E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9149907/F714BDCACC2E11EC823BEE35C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9149907/F714BDCACC2E11EC823BEE35C4F9AE02/ZmkYZX5BYz4X6shsJrGE26PoHi4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149816
sbgp-ipAddrBlock: critical
IPv4:
103.187.6.0/23
IPv6:
2400:7820::/32
Signature Algorithm: sha256WithRSAEncryption
14:98:d5:d8:2a:49:10:5d:0f:82:37:2e:9d:1e:23:e8:17:46:
15:cd:ac:d3:7f:8c:88:2e:4d:1d:f0:0d:17:a5:58:68:2f:01:
6c:6e:7c:80:39:e0:4d:a3:ca:1c:85:3d:b4:58:ce:e5:37:9b:
24:bc:69:44:0f:4b:8d:65:ca:83:ad:14:4a:3a:34:20:4d:6c:
80:15:0d:e5:63:d6:53:48:44:f0:d5:c6:5b:c5:b5:40:f3:07:
4f:46:ad:96:07:5e:8a:e7:e7:78:ee:a9:4c:14:23:e5:69:90:
1a:78:4d:44:31:02:21:44:af:c3:87:b3:70:be:05:f7:1e:27:
21:57:dc:c0:fd:3b:7c:7a:aa:ce:3a:0a:97:0d:c7:74:3b:f6:
d8:23:2a:a4:95:13:eb:ab:e2:84:43:e2:df:c0:84:d4:01:b9:
41:05:b2:bd:c6:77:ab:82:df:e1:ea:b0:f0:9e:fe:8d:3a:40:
78:5e:f2:5f:55:98:09:67:f5:a2:86:af:10:1c:cc:a3:ca:91:
19:2b:68:f6:63:83:87:3c:47:78:22:e9:c5:ea:26:c9:f5:76:
ba:af:ad:99:54:95:4f:1e:f6:20:cd:89:cc:11:ab:79:b3:8d:
d2:6c:0b:c1:56:ec:ce:34:fa:d1:68:d0:26:4a:da:11:c2:8c:
e9:48:e4:60
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAfjpMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDYxMzE1MDk0M1oXDTI1MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNDk5MDcxMTAvBgNVBAUTKDY2NjkxODY1N0U0MTYzM0UxN0VBQzg2
QzI2QjE4NERCQTNFODFFMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDSwuya6UwvlL8PiVmTE5wiKkuxe+JsxQXOkL9QXpg880V84Pyy5GUKXRjSGBCx
ig161g1AxdfrIOA4meD/la47MAz2bt8zl6tiKOUvr2auqn+Um86lBjvqbvrmOZoJ
6GGJYiDNqY6dk1CIcbhf17YOd66pP819dF7nBxjiKB4qed9UpUMA75eInTQHtBBL
Yx/K1v7BmHteRJcf9d2gTfpVc46oo7Xngku/NTP/AqwIN+RIc3qC0yuF7u3EN/mh
NWIpx0mBym4efESdUTbKPZhlRD9uRdP5h+bo90+0YCGcR8Ta42wgmKBsngHWwMgO
PY13hY25NSALOiLgBZmBsN3DAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUZmkYZX5B
Yz4X6shsJrGE26PoHi4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQ5OTA3L0Y3MTRCRENBQ0MyRTExRUM4MjNCRUUzNUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0OTkwNy9GNzE0QkRDQUNDMkUxMUVDODIzQkVFMzVDNEY5QUUwMi9abWtZWlg1
Qll6NFg2c2hzSnJHRTI2UG9IaTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAkk4MC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ7sGMA0EAgAC
MAcDBQAkAHggMA0GCSqGSIb3DQEBCwUAA4IBAQAUmNXYKkkQXQ+CNy6dHiPoF0YV
zazTf4yILk0d8A0XpVhoLwFsbnyAOeBNo8ochT20WM7lN5skvGlED0uNZcqDrRRK
OjQgTWyAFQ3lY9ZTSETw1cZbxbVA8wdPRq2WB16K5+d47qlMFCPlaZAaeE1EMQIh
RK/Dh7NwvgX3HichV9zA/Tt8eqrOOgqXDcd0O/bYIyqklRPrq+KEQ+LfwITUAblB
BbK9xnergt/h6rDwnv6NOkB4XvJfVZgJZ/Wihq8QHMyjypEZK2j2Y4OHPEd4IunF
6ibJ9Xa6r62ZVJVPHvYgzYnMEat5s43SbAvBVuzONPrRaNAmStoRwozpSORg
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:55 2024 by rpki-client on console.sobornost.net