Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer
File: c5FNFBChzT-FrR4bClD_P4vWDBA.cer (raw, json)
Hash identifier: 11WxsTrSX57MYnYQdVv7YZYTEtgIzFU+RbmW9x15arY=
Subject key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0212B8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 08 Oct 2024 14:08:09 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 103.172.116.0/23
IP: 2407:d140::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135864 (0x212b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 8 14:08:09 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ae:83:28:65:9c:2f:ca:82:2d:fa:56:5a:48:
4e:28:ac:0e:67:26:d3:f0:b5:02:6b:8d:32:1a:db:
35:aa:9b:28:95:04:07:4e:94:f3:9e:3b:22:72:9b:
0f:07:e8:be:38:08:b7:d1:94:5c:8d:43:1b:0c:33:
e8:6f:bb:95:bf:3f:10:18:38:12:a4:11:af:96:71:
49:2a:07:1f:19:3f:aa:ae:e1:a5:d9:be:01:d7:9c:
6f:f6:b9:41:f1:3d:7a:8c:e4:42:c3:e9:b1:79:7f:
6f:e6:f0:d7:f4:60:68:49:64:ae:92:7b:f6:a6:d1:
b6:2b:25:87:68:fb:53:4c:bf:18:be:c6:b6:8d:85:
9e:1a:58:98:14:44:8b:59:f4:28:d6:02:21:ce:ca:
f8:46:9c:65:8d:d7:04:1b:8e:af:a2:78:fe:8d:4f:
61:d3:d6:84:1f:69:df:ca:f9:3b:b5:73:87:bd:39:
5c:01:3b:41:b3:5c:9e:d9:74:02:4c:34:1c:38:d6:
f5:cb:eb:6f:7e:f9:d2:01:f5:dc:64:73:ee:b7:38:
70:0a:a9:49:d4:39:b8:96:bf:8b:9e:e4:d3:b6:cd:
cd:75:87:b4:18:e9:f5:52:35:3a:3d:05:7f:62:73:
7a:fd:dd:98:99:36:52:42:ef:6b:22:8d:e4:02:35:
b3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.116.0/23
IPv6:
2407:d140::/32
Signature Algorithm: sha256WithRSAEncryption
2c:ea:14:c1:43:f1:85:f4:96:87:96:9d:db:88:29:21:da:c7:
44:6b:db:48:04:a4:a8:21:de:f6:9c:b5:39:a2:13:1a:0e:f0:
7e:9d:89:d4:c4:05:5c:a8:ab:77:77:93:37:84:41:0a:8d:4c:
7b:67:c0:18:61:87:2c:42:71:25:c0:55:8e:77:e6:9f:9d:3d:
b5:e0:ce:a4:74:58:42:2e:30:26:a2:ef:37:a9:6e:43:89:88:
b7:91:8b:9c:b7:35:dd:90:c3:3d:dd:de:fa:55:9d:d2:cb:e6:
48:ac:0e:93:15:bd:3a:8b:b9:e5:94:84:d9:f2:e4:eb:99:90:
d3:c5:c0:3f:d1:06:58:e8:51:64:38:6c:76:e2:15:af:66:99:
98:f4:c7:94:b2:9a:e1:df:6e:ba:d8:7c:92:1f:11:9e:59:de:
f5:00:2d:34:a0:f9:ec:5d:dd:ef:b2:01:a9:b5:e0:49:67:78:
99:d2:29:66:b9:40:5a:7f:09:f7:db:d3:95:08:54:5a:50:32:
95:20:33:d7:97:a5:9c:7a:2f:47:94:58:24:c6:12:86:46:9b:
04:89:5e:c2:6c:d8:01:79:6d:44:db:f8:06:0f:ea:bb:f1:d6:
fb:d3:b9:ad:3c:71:be:a9:b0:be:31:9b:ac:41:8c:a5:68:e7:
3b:ad:83:54
-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgIDAhK4MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTAwODE0MDgwOVoXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzY2RjgxMTAvBgNVBAUTKDczOTE0RDE0MTBBMUNEM0Y4NUFEMUUx
QjBBNTBGRjNGOEJENjBDMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDdroMoZZwvyoIt+lZaSE4orA5nJtPwtQJrjTIa2zWqmyiVBAdOlPOeOyJymw8H
6L44CLfRlFyNQxsMM+hvu5W/PxAYOBKkEa+WcUkqBx8ZP6qu4aXZvgHXnG/2uUHx
PXqM5ELD6bF5f2/m8Nf0YGhJZK6Se/am0bYrJYdo+1NMvxi+xraNhZ4aWJgURItZ
9CjWAiHOyvhGnGWN1wQbjq+ieP6NT2HT1oQfad/K+Tu1c4e9OVwBO0GzXJ7ZdAJM
NBw41vXL629++dIB9dxkc+63OHAKqUnUObiWv4ue5NO2zc11h7QY6fVSNTo9BX9i
c3r93ZiZNlJC72sijeQCNbP1AgMBAAGjggMCMIIC/jAdBgNVHQ4EFgQUc5FNFBCh
zT+FrR4bClD/P4vWDBAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTM2NkY4L0E0MjQzOTcwQkU0QTExRUNCMjc5NTUyQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzNjZGOC9BNDI0Mzk3MEJFNEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJD
aHpULUZyUjRiQ2xEX1A0dldEQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8EHzAd
MAwEAgABMAYDBAFnrHQwDQQCAAIwBwMFACQH0UAwDQYJKoZIhvcNAQELBQADggEB
ACzqFMFD8YX0loeWnduIKSHax0Rr20gEpKgh3vactTmiExoO8H6didTEBVyoq3d3
kzeEQQqNTHtnwBhhhyxCcSXAVY535p+dPbXgzqR0WEIuMCai7zepbkOJiLeRi5y3
Nd2Qwz3d3vpVndLL5kisDpMVvTqLueWUhNny5OuZkNPFwD/RBljoUWQ4bHbiFa9m
mZj0x5SymuHfbrrYfJIfEZ5Z3vUALTSg+exd3e+yAam14ElneJnSKWa5QFp/Cffb
05UIVFpQMpUgM9eXpZx6L0eUWCTGEoZGmwSJXsJs2AF5bUTb+AYP6rvx1vvTua08
cb6psL4xm6xBjKVo5zutg1Q=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:57 2024 by rpki-client on console.sobornost.net