Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dUx6CJILdd5uGzejtUuNUyXY33M.cer
File: dUx6CJILdd5uGzejtUuNUyXY33M.cer (raw, json)
Hash identifier: qg3yxmm2gfPZrXeH8tDb90As8TD+rwt+PhUMSx/P3Uc=
Subject key identifier: 75:4C:7A:08:92:0B:75:DE:6E:1B:37:A3:B5:4B:8D:53:25:D8:DF:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02089E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/dUx6CJILdd5uGzejtUuNUyXY33M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 23 Aug 2024 15:50:13 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 149296
IP: 103.129.52.0/22
IP: 2403:7840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133278 (0x2089e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 23 15:50:13 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9160C86/serialNumber=754C7A08920B75DE6E1B37A3B54B8D5325D8DF73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:74:2f:9f:a0:ce:2d:c2:0a:aa:7b:10:29:eb:
a4:c2:8f:35:80:8e:31:aa:ba:74:6d:f7:18:a6:4d:
88:b3:a4:db:05:7d:b3:1a:71:ab:6d:b0:5c:f8:ed:
2f:fe:b3:53:93:a2:67:c3:ae:c3:de:dc:7a:7a:51:
d5:2e:bf:75:fc:0a:fc:6b:0a:5a:50:e8:66:ea:90:
96:55:cf:ce:77:8f:d0:0a:4d:c0:0e:ea:09:9c:cc:
82:11:ec:24:a3:23:e9:54:c5:d4:ee:0d:43:1e:2e:
e9:c5:3e:37:c1:54:ff:ae:bc:ed:88:1c:27:51:e5:
09:a7:68:10:7c:dc:2f:81:32:8f:99:44:87:ad:b5:
d7:a1:b3:33:ca:5c:d4:dd:6a:01:c9:5a:00:f3:35:
d2:73:25:dc:c6:51:1c:17:71:18:4b:eb:23:c4:8e:
98:b4:48:23:68:6c:52:d1:14:af:a7:89:63:1f:56:
71:42:3e:d2:d3:bb:40:b4:f4:c0:e5:f0:18:3f:a6:
7a:6e:4c:75:ed:88:ea:d4:c6:93:99:aa:33:aa:81:
fa:4e:c4:af:75:76:c1:12:71:2c:38:52:ba:a2:60:
74:f2:8c:df:35:17:97:82:4d:24:2a:42:aa:07:91:
16:2a:c8:71:a7:5f:c7:60:f9:1d:78:17:52:cb:10:
f6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:4C:7A:08:92:0B:75:DE:6E:1B:37:A3:B5:4B:8D:53:25:D8:DF:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/dUx6CJILdd5uGzejtUuNUyXY33M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149296
sbgp-ipAddrBlock: critical
IPv4:
103.129.52.0/22
IPv6:
2403:7840::/32
Signature Algorithm: sha256WithRSAEncryption
3a:51:76:ff:f5:55:be:4d:7d:d3:1e:2f:8c:1e:2c:ab:79:6a:
5f:fa:42:43:e0:f0:44:11:00:17:5f:0a:83:09:89:4e:be:36:
3d:05:25:a1:ac:b0:a0:7f:40:31:06:5d:1d:b9:21:65:f1:6c:
99:32:96:aa:bf:e7:09:4b:ee:70:c3:ed:0e:81:eb:f7:7d:a6:
b6:de:ee:58:0b:08:00:4c:e1:46:d5:e4:30:dc:c5:46:8c:ab:
79:03:13:0e:70:fc:75:45:52:82:ba:ce:62:8e:a1:67:23:95:
db:31:a8:c1:a7:69:31:99:d3:a4:58:82:b1:cc:f9:b1:a0:00:
99:72:32:9b:fc:9d:36:12:be:b3:79:e6:4b:a9:4c:21:b4:04:
3a:42:4a:a0:fe:b1:30:bf:18:37:dd:60:92:5f:d0:c7:e0:4f:
bc:8b:f2:85:bb:e0:3d:05:70:a1:58:95:18:1c:d7:db:34:59:
36:f9:f2:1b:30:65:1d:fb:d4:18:57:4d:ae:ab:1f:10:3b:b6:
3f:a4:f3:7b:aa:68:2e:4d:70:10:cc:55:1a:7a:83:ba:30:02:
de:96:9c:0c:1e:ac:0f:51:01:06:f9:3c:41:82:b7:8a:33:17:
09:65:45:30:0a:96:8f:a8:78:3d:ea:3e:c9:2e:4a:df:b1:4a:
06:dd:dc:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:58 2024 by rpki-client on console.sobornost.net