Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2dYEDhTTU2848gbXy2IYcU2tnw.cer
File: b2dYEDhTTU2848gbXy2IYcU2tnw.cer (raw, json)
Hash identifier: KQwv5tbYFv2pWoA/cNJ5ivcFLSDqluMv8ZcI9h+mJv4=
Subject key identifier: 6F:67:58:10:38:53:4D:4D:BC:E3:C8:1B:5F:2D:88:61:C5:36:B6:7C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020C76
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9117836/FA25EDE2431D11EE868CA40FC4F9AE02/b2dYEDhTTU2848gbXy2IYcU2tnw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9117836/FA25EDE2431D11EE868CA40FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 07 Sep 2024 12:34:22 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 151779
IP: 103.20.101.0/24
IP: 202.27.114.0/24
IP: 2001:df2:da40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134262 (0x20c76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 7 12:34:22 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9117836/serialNumber=6F67581038534D4DBCE3C81B5F2D8861C536B67C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:72:14:c1:83:36:3b:e5:26:b7:a6:c8:af:40:
0a:71:43:8c:83:27:d3:1b:89:7a:07:17:13:53:ce:
5e:15:5d:f6:3b:d4:34:21:60:d1:6e:f7:97:35:c8:
55:08:fc:ce:fc:ab:6a:84:c1:dd:96:34:c4:c3:b3:
43:2d:27:12:68:c1:5a:e1:b5:77:f1:c6:1b:e5:7d:
23:df:bb:c8:18:62:d7:b0:a6:18:2d:ea:28:e3:57:
e0:4b:77:3d:9a:f8:90:f6:09:2c:ba:2f:3b:d6:d0:
24:15:03:43:30:37:c3:0c:b7:77:6d:11:8d:f5:1d:
5b:57:07:45:4f:fa:54:d0:74:b6:06:f8:70:24:49:
29:c7:cc:5c:90:a0:47:e4:5d:f8:7c:55:ea:66:ad:
52:e0:cf:38:48:9b:07:f3:3b:bc:13:d9:fd:72:6d:
0f:dd:e1:d8:93:95:75:0e:2a:fb:76:c1:80:cf:14:
14:50:b2:5a:23:d0:42:ff:7b:b9:9f:ae:e4:a0:ec:
ab:63:97:92:6b:cf:53:e2:ed:63:03:ca:99:e8:d8:
b5:d6:9d:8d:03:43:de:20:91:4c:4b:5a:4d:58:c7:
77:d1:3e:6e:8d:4c:b4:b1:1e:fc:a3:5c:b5:e7:c2:
fc:22:42:eb:33:40:81:9b:57:91:a3:d8:0e:69:17:
c5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:67:58:10:38:53:4D:4D:BC:E3:C8:1B:5F:2D:88:61:C5:36:B6:7C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9117836/FA25EDE2431D11EE868CA40FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9117836/FA25EDE2431D11EE868CA40FC4F9AE02/b2dYEDhTTU2848gbXy2IYcU2tnw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151779
sbgp-ipAddrBlock: critical
IPv4:
103.20.101.0/24
202.27.114.0/24
IPv6:
2001:df2:da40::/48
Signature Algorithm: sha256WithRSAEncryption
b7:06:ab:c1:42:7a:d1:db:bb:68:cf:8d:06:29:3d:95:61:f3:
cb:f3:5c:19:89:00:6d:26:45:9e:f8:ce:b8:4b:38:23:71:47:
4c:62:08:33:c4:34:e1:1d:c2:a9:70:f8:f0:21:b2:7a:02:5a:
b4:13:b1:c7:2e:cc:0b:1c:b9:ed:10:3c:3a:1f:1c:18:82:2e:
24:d7:f4:84:61:0a:98:4d:a0:0f:34:3b:ba:fa:37:e0:45:ec:
46:a5:3c:89:5a:74:b3:fe:ec:9a:de:c8:a4:73:36:cb:79:9a:
01:a0:86:87:8b:f4:82:87:6d:79:fd:80:fc:07:9b:39:18:37:
b1:ac:f4:f7:e5:40:f4:f7:19:dc:f6:ef:96:38:75:ff:1c:03:
d9:5a:dd:7a:2a:d5:cc:8d:7d:de:97:91:a3:8d:6d:07:8d:d2:
4b:2a:78:c4:a0:ed:66:34:c7:20:6d:84:8d:cb:d4:80:55:37:
18:f5:0e:07:e9:44:bb:d1:7c:43:ea:94:40:6c:8f:be:ab:b2:
7d:e3:e1:eb:bf:76:32:b1:4f:f9:9d:e6:28:a4:b8:7c:03:24:
40:dd:1a:06:1a:3e:5e:89:29:06:06:ed:fa:9b:47:01:54:93:
25:3b:ac:cb:0b:25:fc:cb:41:be:70:bf:c6:0d:7c:84:a5:07:
bb:c3:85:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:57 2024 by rpki-client on console.sobornost.net