Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_I1R2lNSEj3a5jdlZPjVaB2ksxw.cer
File: _I1R2lNSEj3a5jdlZPjVaB2ksxw.cer (raw, json)
Hash identifier: c1EDcT4jo1RBdXn/oME0aIjQwwCyShEsYhotbV0pDa8=
Subject key identifier: FC:8D:51:DA:53:52:12:3D:DA:E6:37:65:64:F8:D5:68:1D:A4:B3:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02087B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/_I1R2lNSEj3a5jdlZPjVaB2ksxw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Aug 2024 21:57:45 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 135404
IP: 103.154.22.0/23
IP: 2406:5140::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133243 (0x2087b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 22 21:57:45 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91FCB3B/serialNumber=FC8D51DA5352123DDAE6376564F8D5681DA4B31C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:79:44:aa:73:dd:ff:87:7c:84:c1:a7:33:d9:
6d:28:7a:7d:7b:71:8a:95:79:2a:43:81:e1:c0:3a:
58:e8:9f:79:d5:60:b7:80:f6:6e:5b:ab:99:e5:ef:
d0:cb:9c:19:d7:14:b8:da:97:d4:1e:3e:97:74:2e:
5e:22:ff:ff:c5:61:94:59:aa:e5:c6:27:c8:cb:55:
b8:b9:53:60:51:eb:59:cb:dc:36:dc:81:93:6a:c0:
77:d9:66:c2:11:ee:8a:21:71:04:c2:87:bf:9c:9c:
67:d9:e2:59:2e:b8:a7:3b:94:10:65:d5:ae:5d:59:
57:9c:0c:cd:7f:4f:be:ea:a2:75:b8:6d:3d:d4:ba:
4b:aa:2f:a3:43:8f:ed:66:7d:fd:4e:e4:91:7e:dd:
29:9c:24:32:07:0d:6f:e7:8e:31:c5:11:f2:60:f3:
82:9a:83:16:86:8c:bf:a3:28:07:21:2f:63:26:05:
0c:ad:3b:00:ee:d8:17:23:51:fe:3a:88:f0:15:4b:
22:0a:90:1a:6b:38:22:16:bc:ba:1f:98:f1:85:64:
a6:6f:56:ab:6d:15:f0:25:b9:f0:24:97:16:f9:19:
6a:74:98:18:b8:18:1d:25:02:4e:27:f6:57:80:92:
b0:ce:5c:84:20:19:54:4f:2c:b6:b1:d8:2d:52:fa:
3e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:8D:51:DA:53:52:12:3D:DA:E6:37:65:64:F8:D5:68:1D:A4:B3:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/_I1R2lNSEj3a5jdlZPjVaB2ksxw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135404
sbgp-ipAddrBlock: critical
IPv4:
103.154.22.0/23
IPv6:
2406:5140::/32
Signature Algorithm: sha256WithRSAEncryption
bb:18:ff:0a:ce:78:47:68:2e:51:12:ad:96:15:1e:88:f2:7f:
57:79:6a:2b:17:b8:5d:9b:ab:02:2c:eb:ba:db:be:27:20:6a:
00:86:e8:f4:4c:d6:dc:d6:c2:4d:f2:d5:06:a6:bd:86:59:e2:
9f:7c:5d:d0:95:99:b3:75:e9:87:f2:84:59:d2:fc:7d:f0:19:
9c:ab:eb:d7:c5:35:53:e6:2f:36:3d:7d:b1:85:f5:85:e5:4f:
74:37:84:46:b5:81:69:65:41:02:58:ae:af:99:1c:99:47:fb:
01:9d:39:5b:61:67:16:7b:6d:c5:b7:9d:c4:fb:28:48:e4:15:
67:c2:b8:6b:91:ac:8f:14:0e:12:83:b2:2a:ae:a5:3a:6a:4e:
33:cd:0c:00:3e:44:ca:41:04:13:08:8e:e9:d2:1c:d6:ac:b8:
9d:82:0e:a3:a2:ef:3c:e4:21:2e:9d:fb:dd:f6:b2:70:86:66:
ea:26:0c:52:00:db:6f:8b:ab:1c:c2:4d:42:99:77:44:9a:65:
9b:e1:33:cd:39:2f:69:60:cb:60:ab:5e:6b:16:64:ab:f2:9a:
49:61:3c:ce:b1:c2:d8:f4:58:1a:33:20:0f:27:70:a1:e7:6a:
2c:74:e6:c5:da:65:96:db:bd:1b:7f:5e:57:da:d2:df:8f:09:
67:5c:e5:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:55 2024 by rpki-client on console.sobornost.net