Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c1jmvCkIxoFAvzuKgV9pXcsqiks.cer
File: c1jmvCkIxoFAvzuKgV9pXcsqiks.cer (raw, json)
Hash identifier: ndPaUC3CWmBjbfbyRu98URDh34gJwg3oxoJ5KxRwvUk=
Subject key identifier: 73:58:E6:BC:29:08:C6:81:40:BF:3B:8A:81:5F:69:5D:CB:2A:8A:4B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02068D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BB227/D5A553985D2D11EEA3E39F57C4F9AE02/c1jmvCkIxoFAvzuKgV9pXcsqiks.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BB227/D5A553985D2D11EEA3E39F57C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 13 Aug 2024 19:31:28 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 103.14.230.0/24
IP: 2001:df2:b740::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132749 (0x2068d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 13 19:31:28 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91BB227/serialNumber=7358E6BC2908C68140BF3B8A815F695DCB2A8A4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e2:83:aa:c5:fc:e6:f4:fe:48:53:12:49:dc:
60:a9:e2:68:68:ed:01:34:05:2c:db:db:f1:87:be:
37:a9:72:8d:44:66:5d:b6:18:f4:1a:94:05:33:50:
67:df:9a:f4:9b:b9:a4:29:ed:ae:43:f4:77:d1:86:
d8:67:06:b4:70:e6:2e:f9:04:80:01:4f:fb:e2:d4:
59:c0:da:29:4e:a4:f3:cf:3e:3f:78:44:66:ff:e3:
fd:88:44:22:1f:d8:68:b0:c5:64:bf:22:3e:87:7b:
aa:90:e9:a1:4c:30:a3:44:ed:bf:6a:7a:f9:6e:e8:
d6:3c:a0:6b:0f:98:cd:20:6b:7c:23:2b:f1:36:ee:
18:fe:04:c3:97:bd:6d:73:70:23:c9:3c:52:5e:ba:
eb:1c:15:f5:d9:b4:2d:18:f0:6c:75:be:16:b8:c6:
31:00:0b:4a:cc:27:be:82:73:cc:f2:23:c9:8a:06:
a6:23:60:56:c5:c2:48:ee:b2:37:14:5b:73:23:b3:
30:48:7d:53:2a:ca:6b:7c:64:2e:f3:7c:de:f1:4f:
33:ed:b0:a1:91:2f:05:37:09:63:91:54:54:f1:49:
01:88:6a:87:53:d8:3e:cc:68:f7:48:57:e5:d3:58:
dd:59:9e:76:1d:cb:28:6c:3d:3d:1e:24:d0:3b:02:
e4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:58:E6:BC:29:08:C6:81:40:BF:3B:8A:81:5F:69:5D:CB:2A:8A:4B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BB227/D5A553985D2D11EEA3E39F57C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BB227/D5A553985D2D11EEA3E39F57C4F9AE02/c1jmvCkIxoFAvzuKgV9pXcsqiks.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.230.0/24
IPv6:
2001:df2:b740::/48
Signature Algorithm: sha256WithRSAEncryption
9b:58:c4:f4:cd:1b:67:41:f9:91:a3:fe:ff:a3:c2:25:87:dd:
00:4f:2c:bd:9b:8c:47:56:20:c7:72:a0:7f:b5:a7:f5:61:da:
8a:af:7d:7d:21:fb:b7:e0:04:89:40:f6:e8:bc:b2:18:dd:fa:
17:c8:d4:c2:d5:53:6c:2a:01:ea:30:f5:e1:d1:1b:17:de:d4:
69:68:59:12:e6:c9:c8:0c:bd:fe:58:7e:8b:ad:7e:cd:ec:9b:
e1:3e:93:3a:20:49:42:b3:0b:4f:05:02:a0:15:8a:06:70:b7:
52:bb:e8:f1:ce:da:08:70:43:4d:a2:b2:e0:2f:f1:5d:ac:f5:
19:de:5b:9e:cc:f4:12:e6:55:66:69:8e:70:c8:5c:b7:f7:29:
3e:ab:32:42:66:f4:4d:4a:19:a2:18:77:91:9b:3f:8c:dd:c7:
40:17:bf:67:0f:48:5e:d3:61:72:4c:2d:64:a8:dd:82:8b:27:
78:ea:d6:ed:1d:2b:ac:03:13:cf:9c:7a:e9:0d:fd:9e:ac:bc:
9c:22:0b:8e:d2:15:d7:6a:9d:90:ed:40:88:76:83:11:2f:92:
f3:27:e6:c0:4b:93:5e:d0:2d:e2:e6:e2:f1:67:9d:4b:2c:52:
af:44:e6:6b:3c:66:3e:c8:c3:2d:a1:66:b2:0b:70:03:d2:7d:
6f:93:a9:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:57 2024 by rpki-client on console.sobornost.net