Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer
File: bXwian3LhfL0kha367ANXwOmBcM.cer (raw, json)
Hash identifier: 7vC3a9GsKwxXcyQFBK8PtEs9t95Gw/OUue+svjgOEew=
Subject key identifier: 6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FE2D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Jul 2024 17:16:21 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 138039
IP: 103.120.116.0/22
IP: 2407:1840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130605 (0x1fe2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 4 17:16:21 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91809AD/serialNumber=6D7C226A7DCB85F2F49216B7EBB00D5F03A605C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:15:5f:8a:b7:d7:d7:89:a4:11:95:f2:67:
30:55:5a:7e:ce:d6:ca:7c:cc:c8:b5:ff:9d:fc:78:
68:0b:2f:ac:0d:8d:0f:ce:7f:5a:36:c6:e6:ef:69:
b0:d3:0b:f0:dd:fc:6f:a5:db:7c:f4:25:f1:21:1c:
cb:42:00:d4:7b:6f:3d:9c:6d:c5:80:2a:0a:c5:a8:
b8:d6:64:bd:3c:b4:b2:bd:a0:4d:07:39:68:20:40:
74:93:f8:18:a5:5a:8f:14:bd:02:e4:ef:71:37:8c:
ef:e8:1d:71:f7:22:32:16:13:14:76:95:e8:a6:48:
be:dd:94:f8:31:b0:56:c3:b7:2f:0f:5a:bc:76:a6:
9e:4f:13:1b:41:d6:34:ce:00:c2:85:a5:d0:fb:e5:
75:a0:74:74:57:3e:41:fe:39:5d:bc:43:bc:5d:b4:
33:0c:ce:b6:98:17:a1:f5:26:1d:c7:93:e6:48:8b:
37:da:4a:94:52:ed:be:48:8f:1f:a8:47:09:0b:8d:
0c:e7:ea:d8:a3:05:42:4c:a6:93:dd:c3:c5:ce:f0:
8a:74:e3:97:36:4a:90:68:e5:4a:9c:ce:24:07:fb:
1e:46:f0:6c:df:e4:fd:5e:c1:c0:2a:8b:85:17:d8:
97:00:62:57:ba:fb:88:9d:78:93:70:70:8f:04:4b:
59:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138039
sbgp-ipAddrBlock: critical
IPv4:
103.120.116.0/22
IPv6:
2407:1840::/32
Signature Algorithm: sha256WithRSAEncryption
3e:77:b6:c0:87:ef:5a:0c:21:59:38:eb:6b:5c:2f:d1:1c:fa:
8d:49:21:78:b4:de:6f:27:a1:94:aa:99:ea:01:44:f2:13:e1:
d6:83:1a:d8:9c:64:fd:fc:d2:99:1a:5d:8b:83:94:97:17:2c:
8a:8b:7f:45:a8:e5:97:b0:69:ea:9f:67:35:fe:ba:63:df:48:
f6:9a:ce:24:5b:17:bd:92:b6:ed:10:97:b4:7a:d5:73:2c:c8:
f9:2d:0c:49:d4:d3:40:92:36:28:29:4e:a6:e4:27:4c:24:b8:
4b:9f:6c:4a:b5:d8:d7:cb:c6:c9:3e:ab:74:b4:d8:37:92:fb:
fe:30:06:bb:c4:19:03:5a:12:77:96:ff:ce:aa:af:c7:15:d3:
cb:f1:48:95:44:02:21:49:6f:06:e3:dc:c9:de:a6:22:91:66:
a7:2d:92:50:f5:14:3e:23:c9:04:6a:c3:55:93:8b:89:09:79:
2d:a8:20:4c:05:71:cb:43:93:20:a3:41:9a:26:bc:48:c3:4a:
d1:67:9a:fb:52:9e:77:63:59:cf:78:95:ac:c1:83:0f:24:95:
ca:ee:78:aa:55:b3:2d:c4:e0:4c:93:06:df:8f:41:b3:6b:86:
00:32:53:63:8b:e3:55:ff:a0:a4:54:8a:08:e7:57:24:54:22:
ef:87:76:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:57 2024 by rpki-client on console.sobornost.net