Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
File: b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer (raw, json)
Hash identifier: DFCSQEtGXqlIe/UgSGhhLdutqZqwIYsdTYt7qwXsPoA=
Subject key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020DA9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 16 Sep 2024 04:49:59 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 131075
AS: 132479
AS: 132623
AS: 133555
AS: 134413
AS: 134477
AS: 134488
AS: 134708
AS: 134993
AS: 135120
AS: 136535
AS: 136591
AS: 136725
AS: 137436
AS: 137835
AS: 139231
AS: 139317
AS: 139791
AS: 140572
AS: 140731
AS: 140915
AS: 140961
AS: 141429
AS: 141445
AS: 141776
AS: 142112
AS: 142164
AS: 142418
AS: 142433
AS: 142438
AS: 142553 -- 142554
AS: 142586
AS: 142642
AS: 149163
AS: 149292
AS: 149510
AS: 150141
AS: 150173
AS: 150184
AS: 150323
AS: 150373
AS: 151187
AS: 151193 -- 151194
AS: 151202
AS: 151331
AS: 151416
AS: 151418
AS: 151490
AS: 151494
AS: 151673 -- 151674
AS: 151782
AS: 151785
AS: 151814
AS: 151841
AS: 152118
AS: 152134
AS: 152186
AS: 152191
AS: 152320
AS: 152598
AS: 152631
AS: 152697
AS: 152892
AS: 152911
AS: 152920 -- 152923
AS: 152930
AS: 153033 -- 153034
AS: 153057
AS: 153168
AS: 153170 -- 153172
AS: 153185 -- 153187
AS: 153189 -- 153190
AS: 153195
AS: 153330 -- 153333
IP: 103.150.214.0/23
IP: 2406:840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134569 (0x20da9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 16 04:49:59 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f8:91:d2:ce:e4:fc:55:88:67:f0:8f:e5:23:
45:e6:c9:51:01:0c:71:82:5b:d8:d4:12:3c:65:90:
19:bc:7e:7d:eb:7b:96:7c:bf:f6:6e:c7:d9:34:97:
b1:90:9e:27:3b:1b:1e:64:62:d9:35:23:92:74:38:
1c:8c:29:67:36:20:1b:2f:b1:5c:d7:0d:46:0f:a6:
3e:c5:a1:d2:da:d9:83:c0:84:02:73:d5:f1:d1:4d:
f4:76:ab:6c:ea:ff:08:87:a5:4f:20:71:df:de:30:
82:15:85:1d:a9:e1:63:b5:0a:86:82:55:93:33:76:
5f:d3:1a:6d:9c:11:a4:94:b5:97:65:9f:ea:55:90:
50:54:33:1b:f5:e1:ac:d5:0d:c8:20:01:12:a1:dd:
7d:4b:b2:93:76:4f:58:db:df:92:0f:5e:6d:fd:0d:
97:db:32:93:ed:1b:77:a7:d2:ef:5f:79:88:6e:b3:
7d:60:29:29:13:b0:66:4f:c7:37:f6:39:d1:68:6e:
23:45:bc:52:89:fc:6c:20:a5:04:0f:f7:08:5e:49:
ac:6f:58:70:db:2d:83:a7:80:a9:20:88:c2:cf:1f:
40:ee:f2:3d:f0:61:48:69:d4:e3:68:5e:d0:c5:52:
00:e3:10:09:97:5c:ef:ec:8f:74:30:76:74:20:2f:
52:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131075
132479
132623
133555
134413
134477
134488
134708
134993
135120
136535
136591
136725
137436
137835
139231
139317
139791
140572
140731
140915
140961
141429
141445
141776
142112
142164
142418
142433
142438
142553-142554
142586
142642
149163
149292
149510
150141
150173
150184
150323
150373
151187
151193-151194
151202
151331
151416
151418
151490
151494
151673-151674
151782
151785
151814
151841
152118
152134
152186
152191
152320
152598
152631
152697
152892
152911
152920-152923
152930
153033-153034
153057
153168
153170-153172
153185-153187
153189-153190
153195
153330-153333
sbgp-ipAddrBlock: critical
IPv4:
103.150.214.0/23
IPv6:
2406:840::/32
Signature Algorithm: sha256WithRSAEncryption
9f:8d:ba:c7:18:3b:83:86:ff:21:e4:cd:7f:f1:1b:81:4d:b9:
d6:08:35:e2:f4:c1:5b:41:ab:1c:1b:fc:93:89:b2:a4:e4:e3:
01:c8:89:c5:73:96:ff:65:33:aa:16:02:94:a5:a6:be:4c:04:
ed:67:7a:07:8b:fb:b4:46:55:35:17:d6:55:1d:03:a9:c9:48:
4f:5c:b9:4e:30:42:be:4e:b8:db:f2:b9:f3:2a:93:45:9d:51:
8e:6a:75:a2:ba:27:7e:81:c3:b3:4e:cf:c5:89:60:1a:f2:5c:
f9:67:f7:f5:f5:f3:4c:ed:c2:ef:fe:c1:b1:03:66:d6:0b:90:
2e:16:a9:c2:22:76:38:a1:0a:e3:d6:59:27:40:26:80:f0:a0:
2e:19:44:94:9f:a2:22:94:bd:06:5f:fa:4a:5c:39:5c:74:7d:
b4:59:cf:a6:b5:26:9c:99:be:41:cc:94:b7:29:2a:92:eb:37:
23:f0:70:98:3d:14:c8:d3:47:5f:f8:f1:d0:88:c3:49:6b:5d:
20:6d:4e:44:c4:32:e6:ce:ec:c9:70:fa:d3:cd:55:60:21:61:
9a:a9:8e:73:68:56:74:98:3d:8e:db:7f:bb:86:c4:43:70:38:
e8:65:5b:02:5a:93:19:83:2c:bc:3c:ce:c7:2e:b9:04:6c:00:
06:00:a3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:57 2024 by rpki-client on console.sobornost.net