Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cjdHbP3kFQq5UJerug_t7UKtuas.cer
File: cjdHbP3kFQq5UJerug_t7UKtuas.cer (raw, json)
Hash identifier: SdtCzHuB87KPizsmQroV3wKjnyYKrxpUlWnpOey54sI=
Subject key identifier: 72:37:47:6C:FD:E4:15:0A:B9:50:97:AB:BA:0F:ED:ED:42:AD:B9:AB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FA51
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4FE6/BB09582C7DD411EA94BEAF79C4F9AE02/cjdHbP3kFQq5UJerug_t7UKtuas.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4FE6/BB09582C7DD411EA94BEAF79C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 20 Jun 2024 20:43:20 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 103.54.111.0/24
IP: 103.67.167.0/24
IP: 2001:df2:ea00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129617 (0x1fa51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 20 20:43:20 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91F4FE6/serialNumber=7237476CFDE4150AB95097ABBA0FEDED42ADB9AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f1:54:c7:6c:5e:ec:d2:aa:2b:74:40:df:59:
ce:26:dc:30:a7:c2:a2:10:0e:0d:b7:60:95:46:8b:
cd:26:7d:c6:3a:6b:9b:90:ab:8e:6f:82:27:86:8e:
3f:ad:a2:bf:79:d6:40:42:f3:67:e9:3b:ac:ed:8e:
d2:a7:d4:2a:45:6d:96:f5:9a:57:2f:30:9a:ec:00:
e3:b4:e1:ca:da:46:79:35:74:d9:61:30:54:cd:a5:
cf:ef:38:da:85:19:ff:f3:6f:9e:33:c2:fb:2d:34:
1c:82:64:54:01:60:f8:b5:cb:24:26:1c:8e:b3:93:
ce:8f:b4:ea:f3:09:12:f5:67:ab:f7:ab:48:8d:4d:
ee:6c:c8:a0:e4:33:9d:05:86:cb:53:f9:88:4d:17:
78:ce:dc:89:3f:9e:26:8c:8d:cb:5d:56:5d:5c:f7:
67:cb:9f:15:cd:2c:84:6a:bf:5b:be:ea:53:2f:59:
bd:9f:26:df:e7:d3:6c:ba:cf:18:00:4a:33:ca:9e:
82:5b:73:af:73:4c:15:e1:db:58:38:2d:54:25:b5:
42:1b:6e:1d:ea:1d:3e:f6:95:71:7b:f6:d3:a8:30:
4e:6f:25:52:07:93:1d:33:48:5a:30:d8:46:d2:b7:
e7:1f:df:3a:c9:da:a0:dc:31:f4:a7:2a:b5:75:36:
ef:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:37:47:6C:FD:E4:15:0A:B9:50:97:AB:BA:0F:ED:ED:42:AD:B9:AB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4FE6/BB09582C7DD411EA94BEAF79C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4FE6/BB09582C7DD411EA94BEAF79C4F9AE02/cjdHbP3kFQq5UJerug_t7UKtuas.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.54.111.0/24
103.67.167.0/24
IPv6:
2001:df2:ea00::/48
Signature Algorithm: sha256WithRSAEncryption
a0:3f:ce:38:71:9d:6b:b1:4b:f5:19:a9:d2:03:2b:51:89:6b:
ee:60:f6:3a:e1:7d:e2:80:ad:0b:dc:0b:f2:39:98:f4:89:1e:
b2:67:12:7c:51:98:76:62:a0:9f:e9:77:b8:2d:db:ce:68:4d:
24:cc:fd:d0:47:8a:33:de:24:3d:72:19:83:bb:37:12:e3:2d:
cc:3e:89:8f:0b:ed:f8:14:fc:7d:9c:0e:13:b6:20:0b:e8:6b:
f3:41:5c:aa:6a:02:60:5e:14:36:46:99:88:e0:55:fc:ce:6a:
54:55:93:63:b4:bd:06:a9:f1:20:19:ec:ab:a1:ac:36:51:03:
e6:06:48:17:da:c2:91:c0:cd:df:cf:5d:35:8e:b0:71:5c:16:
a8:82:ec:a6:64:73:3f:1d:83:e7:82:b4:fd:fa:76:88:ee:8e:
08:82:65:bf:96:5c:e9:f2:c8:74:d4:4b:fa:34:ce:39:05:04:
34:72:14:9c:a6:f4:ec:53:5b:11:69:1f:a9:97:c8:d1:46:90:
cf:10:3b:ab:9a:cf:05:a8:5d:5d:0d:fb:b2:be:4d:1f:7c:26:
9a:fb:35:44:ae:d9:03:55:6b:49:e1:85:d1:0d:fa:1a:20:e2:
14:e8:92:92:aa:06:0e:5e:12:ae:2d:b6:18:41:50:c8:ea:e7:
dc:d5:db:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:58 2024 by rpki-client on console.sobornost.net