Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zye49DPvL-CAhCxu6KbMPcJEYm8.cer
File: Zye49DPvL-CAhCxu6KbMPcJEYm8.cer (raw, json)
Hash identifier: HPpEy94ZzjeOiDgW7NZAcfRPaRkW//8g8MzwMIfitY4=
Subject key identifier: 67:27:B8:F4:33:EF:2F:E0:80:84:2C:6E:E8:A6:CC:3D:C2:44:62:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FEA2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E4023/613E3E9E011411EAAADAB253C4F9AE02/Zye49DPvL-CAhCxu6KbMPcJEYm8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E4023/613E3E9E011411EAAADAB253C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 05 Jul 2024 23:19:19 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 131996
IP: 103.69.208.0/22
IP: 119.42.48.0/22
IP: 2001:df3:5a00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130722 (0x1fea2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 5 23:19:19 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91E4023/serialNumber=6727B8F433EF2FE080842C6EE8A6CC3DC244626F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:31:83:aa:72:25:c7:e0:2e:74:cf:f4:1f:83:
ea:94:9c:7b:43:4c:8d:3f:83:08:68:df:10:61:2a:
d0:2b:a7:5f:3c:fc:28:97:6b:14:93:35:ea:fa:e3:
2a:e8:63:40:59:9d:81:c4:c4:71:05:81:a2:35:1d:
96:10:ae:da:f8:29:ba:c4:80:87:e2:5a:db:67:59:
9b:fa:d6:f8:93:84:85:9e:2a:67:9d:9f:1b:83:d7:
df:45:87:0c:0a:6f:e0:d9:1f:51:0f:66:c3:19:83:
0b:fd:53:2f:58:7a:44:bc:07:3b:af:d6:cc:32:ae:
c2:c3:02:67:31:db:e6:00:fa:2c:ed:e2:c7:c3:d8:
b3:47:9b:80:2c:69:3c:a1:09:24:8b:53:24:04:fc:
7d:9f:3e:38:f7:12:6b:4b:76:50:81:d5:82:18:c0:
9b:fd:24:8d:8a:61:d9:78:9c:fd:6a:a8:c4:29:07:
73:f1:a1:92:5f:2e:9c:6c:7c:a8:08:dc:aa:69:47:
b8:a4:13:9b:d5:89:9e:16:57:33:bf:28:47:fb:91:
16:e4:27:47:84:21:64:ca:d3:a4:f2:58:3b:03:b0:
dd:bd:5b:48:b1:71:a3:98:19:58:52:13:ef:1b:f3:
15:f1:e0:77:fa:f7:b6:8b:93:e2:5d:19:33:a7:e6:
ba:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:27:B8:F4:33:EF:2F:E0:80:84:2C:6E:E8:A6:CC:3D:C2:44:62:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E4023/613E3E9E011411EAAADAB253C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E4023/613E3E9E011411EAAADAB253C4F9AE02/Zye49DPvL-CAhCxu6KbMPcJEYm8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131996
sbgp-ipAddrBlock: critical
IPv4:
103.69.208.0/22
119.42.48.0/22
IPv6:
2001:df3:5a00::/48
Signature Algorithm: sha256WithRSAEncryption
20:22:cd:22:db:3c:0e:4a:8a:43:f8:88:73:14:c5:6d:82:70:
b5:e5:99:96:49:3a:6c:23:39:62:48:5c:ac:fd:a4:b3:da:f8:
a6:90:a6:9d:49:66:e8:16:60:b8:33:50:aa:c2:53:51:cd:17:
20:a6:ff:af:05:cd:29:c1:52:4f:ac:76:05:a7:95:88:3e:04:
a5:83:c8:9f:c4:70:c8:14:0f:b5:77:91:63:b3:77:81:df:05:
fd:51:22:a6:cc:02:3c:24:0d:56:fb:bf:1f:a7:1b:de:71:32:
ca:b7:3f:a1:70:84:81:da:8c:8f:54:fc:9d:80:28:85:93:df:
a3:89:1c:f5:3a:4c:d6:41:14:0e:47:22:d6:49:54:b5:74:5f:
4a:b6:c3:4e:d3:58:84:6e:64:05:48:4e:c6:8a:09:91:3d:c6:
51:51:74:44:a5:83:58:dd:25:e8:07:d3:bf:b6:ed:28:52:4d:
57:4c:29:97:c1:17:7c:0c:d3:6f:77:7a:a6:f8:a2:48:1f:49:
a1:6c:bf:25:b1:a5:6b:3f:15:2e:19:3f:7b:06:24:e2:cd:50:
4a:74:cf:8d:78:b8:1e:58:b5:45:0e:5a:8b:c2:6b:7e:e1:ec:
d8:ab:59:7c:52:d4:c6:f7:95:a9:96:e3:93:c7:aa:8a:3f:d0:
81:f3:ad:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:55 2024 by rpki-client on console.sobornost.net