Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRc-2nMFzP0QvXjYOpMw6MdkDfY.cer
File: cRc-2nMFzP0QvXjYOpMw6MdkDfY.cer (raw, json)
Hash identifier: FwIezT2bo33wz5nSXFkDLfO6YC/9V55ZRPLnAj7glO8=
Subject key identifier: 71:17:3E:DA:73:05:CC:FD:10:BD:78:D8:3A:93:30:E8:C7:64:0D:F6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FCAA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/cRc-2nMFzP0QvXjYOpMw6MdkDfY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Jul 2024 06:04:01 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 151466
IP: 103.230.42.0/23
IP: 2001:df2:a140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130218 (0x1fcaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 1 06:04:01 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A911F627/serialNumber=71173EDA7305CCFD10BD78D83A9330E8C7640DF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:60:f9:58:4f:a8:52:44:61:79:6d:bd:40:53:
6f:72:eb:3e:75:70:07:01:42:7e:18:57:40:7f:fd:
8d:13:76:b2:86:b2:81:ed:02:dd:6d:cd:ec:fe:04:
3a:7f:3d:32:58:01:19:6d:18:91:78:a0:28:8b:1d:
75:a6:c2:b9:96:c7:12:16:9c:39:1e:91:bd:3e:0a:
eb:e5:6b:0d:23:05:78:0c:87:44:e9:18:db:3e:14:
f7:25:21:6f:ed:14:1d:1f:5a:a4:5e:f5:88:d9:e9:
93:e0:48:2f:31:41:3e:bb:c2:18:62:a5:e5:ac:fc:
af:b9:c8:dd:30:7e:6d:01:a8:c1:1e:15:46:69:66:
8d:79:13:85:eb:e7:e8:1c:ac:a8:c5:a3:25:3a:14:
af:fc:c7:5e:a7:d1:8a:cd:87:49:b0:b4:12:73:e0:
d0:f0:0f:82:1c:72:3d:ce:93:b5:d5:69:bf:5b:3d:
01:bd:5e:f0:36:b9:7c:f3:01:d6:b1:eb:9a:db:b8:
0c:91:fc:1b:de:57:c4:03:12:0d:8d:f6:d6:90:ee:
ae:ac:f7:19:63:0a:f9:5f:e6:a9:32:ec:20:f6:6b:
2c:7b:e2:fc:4d:af:67:8f:6c:74:b9:0a:0c:8d:70:
f9:e6:7f:e6:58:da:6f:69:19:66:07:71:9b:4c:a8:
82:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:17:3E:DA:73:05:CC:FD:10:BD:78:D8:3A:93:30:E8:C7:64:0D:F6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/cRc-2nMFzP0QvXjYOpMw6MdkDfY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151466
sbgp-ipAddrBlock: critical
IPv4:
103.230.42.0/23
IPv6:
2001:df2:a140::/48
Signature Algorithm: sha256WithRSAEncryption
1c:ad:70:b6:20:fa:47:27:eb:7a:92:91:bd:d6:81:93:06:8b:
11:77:98:dd:0f:80:e6:59:d1:4c:d9:23:b0:6e:d3:29:3f:a5:
ae:3a:94:de:bf:28:c8:c1:47:d2:ca:c2:c4:f6:a1:56:78:b5:
0f:53:76:ed:0d:4f:02:a0:02:ea:1b:49:2d:80:a8:92:6d:83:
cc:e0:44:a9:e2:4d:85:6e:4b:58:5d:ed:fc:0a:b2:1a:c0:91:
65:17:51:f1:82:88:e6:10:8f:74:41:87:5c:ea:bd:92:bf:17:
91:a2:ae:ae:67:f5:52:fc:13:05:c5:b8:c8:d2:80:f0:38:f8:
9c:fe:86:ed:95:93:21:76:d7:dc:1e:ce:9a:04:ea:6c:94:0c:
8c:fd:82:26:4c:fd:ad:cb:aa:43:94:ad:31:50:e2:e0:be:1f:
35:a8:7b:38:b2:b9:4b:b1:a1:5e:27:22:1f:d8:e4:40:ea:fd:
c2:fa:18:b6:5a:81:76:d6:3e:8f:38:66:dd:3e:c2:21:eb:4e:
6b:a8:87:e8:92:1d:ed:47:46:81:6f:c3:97:85:b5:92:fd:9f:
68:df:a9:f6:e6:71:05:2f:5b:2a:88:b1:11:5e:76:01:d6:fe:
ec:a3:6f:37:a9:2a:c1:6e:a9:88:e6:ae:00:ef:19:3d:d5:04:
49:11:f7:84
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:57 2024 by rpki-client on console.sobornost.net