Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer
File: ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer (raw, json)
Hash identifier: DQ5MTVJkMSgUeTg9dIEktz60BURQhXocltMpk6OsWP8=
Subject key identifier: 71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020639
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 12 Aug 2024 12:24:54 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 38323
IP: 103.170.72.0/23
IP: 2001:df7:1480::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132665 (0x20639)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 12 12:24:54 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:70:40:56:f8:2b:df:ff:29:c3:d3:cb:c9:ca:
fa:09:c9:5a:70:61:e8:db:0a:e2:98:a1:63:49:6b:
62:a6:f4:3e:d6:45:3a:0a:e4:8a:7a:63:49:56:de:
5e:04:5f:65:d1:b2:33:ea:ed:a8:c5:82:ff:c6:4a:
4d:15:27:f7:29:44:7f:1d:54:1e:18:45:eb:dd:5a:
68:b4:c5:06:61:4c:ae:d4:4a:62:ad:5a:71:ab:0e:
8f:56:35:fd:ea:ac:4f:bf:a6:b8:70:5e:fc:f2:b4:
2e:d7:4e:09:a4:af:70:57:d5:33:89:76:67:fb:f1:
52:1d:aa:ed:45:f9:22:ac:a9:79:47:44:bc:bc:1c:
a5:0f:61:b5:a0:60:12:66:86:b9:af:e4:b8:6b:58:
fb:d2:44:29:b5:ad:b1:86:0a:a1:5a:74:cb:40:d2:
a0:26:21:41:d0:95:89:e5:1d:24:10:0c:6e:70:a6:
62:2f:30:a8:52:89:ce:5b:e8:0c:3f:f2:54:27:fa:
2b:ad:39:49:2a:ba:3c:10:0b:be:5f:b9:58:d2:00:
64:d2:59:e9:f8:f2:f6:61:64:a7:2e:60:10:14:ed:
d3:b7:06:67:cf:8b:4f:8e:77:d7:c9:bd:38:6d:a6:
1f:ce:ae:9c:5c:23:de:05:b2:ce:04:71:5e:ad:e0:
ea:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38323
sbgp-ipAddrBlock: critical
IPv4:
103.170.72.0/23
IPv6:
2001:df7:1480::/48
Signature Algorithm: sha256WithRSAEncryption
2e:cb:e7:d1:20:a6:a2:7b:f4:6e:f3:b9:69:33:eb:1d:e7:c0:
24:e8:16:b9:45:6b:75:e6:a8:50:04:cd:2c:bc:d9:fd:c8:d7:
a3:04:65:75:c7:d1:e7:12:bb:65:c8:a1:e0:b4:20:bc:58:18:
a4:fa:9f:49:ed:fa:0f:e2:8c:ca:ad:af:62:7c:3e:75:b8:84:
af:90:d9:fa:06:4a:1d:f6:40:11:9b:53:f3:09:c7:34:55:37:
c4:57:0b:eb:8d:a6:2a:c0:6c:bc:2c:d9:c9:1c:c5:20:23:74:
da:dd:dd:d5:8c:7c:28:4d:3c:c0:c5:82:dd:14:9f:fd:98:92:
c0:0a:21:23:d0:03:c5:25:6d:b0:af:6d:1a:bd:59:1c:4a:da:
54:3e:0f:35:0f:76:f8:a7:00:42:6e:4b:7f:f9:fe:01:72:d8:
a5:34:2a:09:7d:b7:68:8c:e8:56:d8:27:1e:fc:e3:98:38:56:
74:73:d8:59:28:25:f2:08:90:ff:e7:89:55:62:26:bf:57:56:
9d:78:ee:ed:dc:d6:bf:eb:ba:35:1a:46:49:a9:b2:e4:9e:45:
2e:00:27:8c:95:42:28:ba:fe:d5:67:9e:d6:eb:d8:4d:4f:45:
6b:3a:68:a3:45:54:a5:13:d9:e0:95:56:06:7a:64:9f:89:4d:
01:b7:1f:79
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAgY5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgxMjEyMjQ1NFoXDTI1MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMTI4RTMxMTAvBgNVBAUTKDcxQzFFOEUwNTQwNDlBQ0ZEOUFBMjE5
M0FGMUQ0OEM2RDFEMDI1RTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCmcEBW+Cvf/ynD08vJyvoJyVpwYejbCuKYoWNJa2Km9D7WRToK5Ip6Y0lW3l4E
X2XRsjPq7ajFgv/GSk0VJ/cpRH8dVB4YRevdWmi0xQZhTK7USmKtWnGrDo9WNf3q
rE+/prhwXvzytC7XTgmkr3BX1TOJdmf78VIdqu1F+SKsqXlHRLy8HKUPYbWgYBJm
hrmv5LhrWPvSRCm1rbGGCqFadMtA0qAmIUHQlYnlHSQQDG5wpmIvMKhSic5b6Aw/
8lQn+iutOUkqujwQC75fuVjSAGTSWen48vZhZKcuYBAU7dO3BmfPi0+Od9fJvTht
ph/OrpxcI94Fss4EcV6t4OqNAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUccHo4FQE
ms/ZqiGTrx1IxtHQJeEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTEyOEUzLzUzOTNDMEVFMDAyNjExRUNBNDA2MTYxNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExMjhFMy81MzkzQzBFRTAwMjYxMUVDQTQwNjE2MTRDNEY5QUUwMi9jY0hvNEZR
RW1zX1pxaUdUcngxSXh0SFFKZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAJWzMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6pIMA8EAgAC
MAkDBwAgAQ33FIAwDQYJKoZIhvcNAQELBQADggEBAC7L59EgpqJ79G7zuWkz6x3n
wCToFrlFa3XmqFAEzSy82f3I16MEZXXH0ecSu2XIoeC0ILxYGKT6n0nt+g/ijMqt
r2J8PnW4hK+Q2foGSh32QBGbU/MJxzRVN8RXC+uNpirAbLws2ckcxSAjdNrd3dWM
fChNPMDFgt0Un/2YksAKISPQA8UlbbCvbRq9WRxK2lQ+DzUPdvinAEJuS3/5/gFy
2KU0Kgl9t2iM6FbYJx7845g4VnRz2FkoJfIIkP/niVViJr9XVp147u3c1r/rujUa
RkmpsuSeRS4AJ4yVQii6/tVnntbr2E1PRWs6aKNFVKUT2eCVVgZ6ZJ+JTQG3H3k=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:58 2024 by rpki-client on console.sobornost.net