Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer
File: ck2EEAslmZMZA4aasFIgd2yLrEI.cer (raw, json)
Hash identifier: vmxYInC1zk2+AGtLCSO7MESL6nDZlTvSqXiWfeHFvas=
Subject key identifier: 72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020FBD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 26 Sep 2024 16:00:22 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 132685
IP: 103.73.194.0/23
IP: 103.126.242.0/23
IP: 2001:df4:7a00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135101 (0x20fbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 26 16:00:22 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A916A39E/serialNumber=724D84100B2599931903869AB05220776C8BAC42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:31:26:86:99:14:c9:da:df:bd:e2:87:a9:eb:
a9:5b:67:82:ef:25:68:84:ba:2d:20:b6:47:f2:fb:
c5:9a:5b:2e:24:23:ca:bd:b7:5f:67:e0:0c:86:87:
c6:74:8d:f5:34:41:12:ed:a6:fe:28:a1:ee:ab:03:
49:9d:4d:4e:1d:fb:da:59:8c:74:ad:d0:dd:02:d9:
13:3f:b4:38:5d:0f:3c:3d:45:f9:2f:c3:ce:67:f9:
51:c1:d5:45:c5:10:cd:8b:dd:44:47:e2:07:ee:99:
31:33:4c:e0:f0:33:a8:c0:10:b1:32:fe:f9:a7:6c:
b8:95:bf:cd:83:16:2c:22:12:dd:15:40:74:d3:e4:
84:fc:3b:fb:65:9c:ed:e5:99:e1:3e:de:a7:7b:48:
f9:77:ef:aa:54:96:6b:99:ea:65:7f:18:37:13:42:
a1:fa:17:02:64:4d:57:c4:59:07:a8:b0:4c:8f:67:
a7:ce:9a:df:a7:28:60:94:f9:5b:3d:ef:31:69:26:
0f:d4:01:97:50:c1:c1:65:0c:c1:2b:53:71:27:c4:
39:7b:79:c2:5a:5a:1c:85:4c:80:fd:30:e5:d3:8b:
81:2f:87:94:a4:6d:72:07:26:fc:7a:d7:f6:33:1f:
5b:21:ff:47:89:83:22:63:b5:34:83:1d:8c:af:0b:
7b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132685
sbgp-ipAddrBlock: critical
IPv4:
103.73.194.0/23
103.126.242.0/23
IPv6:
2001:df4:7a00::/48
Signature Algorithm: sha256WithRSAEncryption
40:19:3f:3f:a1:54:41:20:7c:94:a3:b2:76:cc:48:fe:27:7f:
74:90:1e:64:11:8c:23:41:f5:3e:0d:c3:e1:44:ad:b8:33:a2:
50:8f:ff:d2:e3:21:e2:28:ec:ae:de:19:5d:a7:a7:15:e5:c0:
86:83:fe:13:8e:fc:1b:70:18:5a:37:06:19:75:53:d1:b9:2a:
88:d2:57:a2:5c:45:fa:d2:90:93:27:d9:7c:89:55:88:ad:dd:
c5:36:28:1d:7c:4b:3d:aa:47:c0:82:f2:30:3e:4c:29:d5:12:
14:9b:5d:c5:46:12:7f:7f:1c:4a:bd:6e:95:c8:c9:52:9a:15:
63:5f:4b:58:5b:2b:cf:0f:68:61:db:0f:cc:87:83:ad:db:40:
f1:53:87:51:4b:0b:f3:05:8e:b6:82:4b:50:9e:5b:8e:ef:0c:
e3:91:9e:63:30:60:cd:e4:7b:5d:73:12:0e:76:f0:6e:4c:1a:
6e:9c:65:7b:14:a0:fb:25:cd:1a:03:29:9f:75:84:1c:b4:2c:
c3:2a:5d:07:0e:53:8a:7e:16:e4:89:d7:53:fb:65:de:2c:8a:
f8:d9:8a:7c:7f:67:2d:be:f2:07:8c:a4:81:47:51:e4:98:35:
50:45:6b:af:cd:ff:6c:ce:01:44:35:23:8c:50:f1:ad:48:98:
ae:b1:9a:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:58 2024 by rpki-client on console.sobornost.net