Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acgZi9o_0JBT9CVT1z7qFRIdJBw.cer
File: acgZi9o_0JBT9CVT1z7qFRIdJBw.cer (raw, json)
Hash identifier: I92DPZinZSv+ToZWDr/TkFi93IQ3UjwuEdm9IeXW+AI=
Subject key identifier: 69:C8:19:8B:DA:3F:D0:90:53:F4:25:53:D7:3E:EA:15:12:1D:24:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020352
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/acgZi9o_0JBT9CVT1z7qFRIdJBw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Jul 2024 19:48:19 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 137884
IP: 103.116.116.0/22
IP: 2402:f940::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131922 (0x20352)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 30 19:48:19 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91E4F66/serialNumber=69C8198BDA3FD09053F42553D73EEA15121D241C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:27:22:e7:5d:17:69:9e:c8:db:24:34:be:06:
19:6c:09:85:33:e8:93:ad:c2:bb:71:e5:15:a0:b5:
27:23:bd:19:dc:0d:a1:bf:7f:f7:cb:9c:43:e1:75:
cf:12:73:5e:f5:8f:b6:e4:0c:51:80:94:60:4e:86:
55:4a:9d:47:87:65:e2:d9:bd:c3:56:06:b5:bc:d5:
68:91:45:ba:2c:d3:b8:d7:88:e2:02:59:f7:65:6d:
c0:6e:49:ca:8c:2e:f7:1c:91:7f:35:7c:3a:2e:83:
c2:f2:11:fd:0a:57:df:2f:f1:0e:8f:10:1b:92:a1:
9e:84:b1:4b:4b:df:cd:2e:41:d2:e0:bb:45:ce:2e:
b7:b5:fb:a4:b5:d2:fc:7c:69:d7:4c:35:ae:c1:90:
da:40:59:dc:87:d0:5b:13:1a:95:c3:a8:53:40:36:
cc:7d:e2:cd:27:7a:af:2d:df:59:06:97:cd:76:81:
cc:82:52:8b:34:e8:af:19:bb:13:2e:80:1e:b5:29:
37:8f:9c:12:ee:f8:db:91:5e:cb:28:75:cc:a8:3d:
4c:3c:41:31:33:79:4f:ab:6e:f4:f0:cc:69:7a:eb:
d3:40:87:55:db:49:fd:6b:53:7e:97:d4:f7:95:68:
f8:98:b9:b2:80:89:c4:80:8c:70:c8:38:33:7f:3a:
1a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C8:19:8B:DA:3F:D0:90:53:F4:25:53:D7:3E:EA:15:12:1D:24:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/acgZi9o_0JBT9CVT1z7qFRIdJBw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137884
sbgp-ipAddrBlock: critical
IPv4:
103.116.116.0/22
IPv6:
2402:f940::/32
Signature Algorithm: sha256WithRSAEncryption
1d:c0:b7:f6:bb:88:3a:f6:64:3b:7c:74:62:68:f6:79:21:5e:
6e:d6:0e:53:26:a0:0b:8d:65:0f:b5:4a:97:a6:94:87:f9:df:
c6:29:63:6d:37:de:b4:da:aa:77:54:8b:49:64:ab:4f:7f:35:
37:09:74:77:3c:07:5b:3b:b3:b2:1a:0c:d1:59:05:a4:d4:b0:
78:aa:ba:c8:88:5e:2a:e1:20:81:a1:56:02:83:b9:12:cf:4c:
ee:95:86:ce:05:e0:db:6e:4d:9f:c2:89:9a:d9:25:ab:02:f4:
3d:fa:bb:46:be:90:e3:34:85:a9:73:04:ff:ee:27:74:cd:23:
02:a4:c3:5c:d0:36:53:19:1b:2c:16:e6:c8:81:b6:4a:61:dd:
de:15:c7:5b:ea:c1:b8:a7:5e:d7:04:7f:15:41:92:67:99:69:
cf:b1:c4:bc:00:a4:ba:19:d9:25:6d:3a:f4:e8:2f:eb:b7:2d:
32:b9:74:b5:c7:63:9a:db:c8:0e:ea:37:a9:18:06:c6:38:c3:
c3:02:44:a2:b1:ef:f7:51:85:82:70:af:81:dd:c0:be:b6:99:
ba:ab:31:7c:f0:0d:ed:6e:76:4a:59:c4:04:b1:34:fa:0d:66:
90:71:b6:b3:06:75:3e:15:b2:73:fd:9f:d3:af:2b:4f:c2:78:
7e:b9:0b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:56 2024 by rpki-client on console.sobornost.net