Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt-EbmVUxwzKt4uPilp0Y-kwrA0.cer
File: dt-EbmVUxwzKt4uPilp0Y-kwrA0.cer (raw, json)
Hash identifier: rjAjlsPdyhLr/EWY4+aZeHc1554sSeCrKAM+pqb+8to=
Subject key identifier: 76:DF:84:6E:65:54:C7:0C:CA:B7:8B:8F:8A:5A:74:63:E9:30:AC:0D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020434
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/dt-EbmVUxwzKt4uPilp0Y-kwrA0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Aug 2024 14:47:33 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 139303
IP: 103.141.12.0/23
IP: 2405:a40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132148 (0x20434)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 1 14:47:33 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9147526/serialNumber=76DF846E6554C70CCAB78B8F8A5A7463E930AC0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bd:0e:a2:4a:e4:88:3b:25:3a:62:f2:a5:44:
c9:2c:0a:ba:7c:b9:96:fc:b3:e2:e2:c5:2c:31:4f:
23:c9:a9:10:13:42:78:0c:27:5a:df:ab:1d:af:98:
29:67:7f:71:49:ac:2b:e6:e2:b2:5f:11:0e:93:d3:
29:cb:da:fc:1a:98:ae:b7:b8:78:a4:c4:c8:6e:53:
ae:9b:d6:99:e3:f0:ef:e4:e1:2e:e3:6e:73:db:6c:
67:ce:2e:13:4e:a9:23:1f:f5:4a:81:44:54:01:86:
c8:78:8d:64:9d:42:4f:8a:6e:18:a7:1e:db:8a:20:
8f:39:2c:2d:fe:64:99:44:b1:3a:fc:99:a0:fd:60:
16:8f:2d:53:37:0b:b1:5d:90:a4:4a:7d:12:c3:d5:
4a:62:75:78:53:ec:d6:fb:72:2b:09:60:ff:3e:89:
3d:fc:ab:90:92:ab:0a:11:58:ee:b4:62:82:25:ee:
ba:60:41:1d:53:09:11:f9:06:6d:d2:38:d1:4c:1e:
a0:8e:6c:f4:16:5a:98:07:ee:74:2b:c5:3d:56:8f:
45:39:a1:8a:06:8c:83:9e:ef:52:e4:b2:cc:4f:01:
05:9a:9a:a4:29:7f:ad:29:28:7c:a1:a4:1f:b1:92:
ea:e7:c4:4b:0e:88:c9:af:15:df:9d:b4:48:ab:1a:
ca:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:DF:84:6E:65:54:C7:0C:CA:B7:8B:8F:8A:5A:74:63:E9:30:AC:0D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/dt-EbmVUxwzKt4uPilp0Y-kwrA0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139303
sbgp-ipAddrBlock: critical
IPv4:
103.141.12.0/23
IPv6:
2405:a40::/32
Signature Algorithm: sha256WithRSAEncryption
92:94:2b:55:fe:04:00:d9:8a:c7:a4:c7:2e:2e:72:b2:d1:c3:
8b:ce:22:2e:c0:5a:09:3e:23:d0:23:f8:f5:c3:5f:d0:a4:e7:
31:98:df:3b:62:6a:8b:da:72:94:7f:a1:55:90:14:e5:a9:51:
c2:fb:a2:a1:a8:1b:94:b9:a8:03:48:17:ac:f0:21:58:53:49:
33:11:43:f2:47:73:99:18:eb:f8:e2:8d:0e:51:90:53:fc:47:
fd:cd:a4:4f:41:16:c2:f8:16:2c:8f:0b:7a:bb:da:bc:7b:d4:
bc:69:87:e9:77:e2:1c:e3:e5:6a:f7:61:6e:71:a5:2b:49:bb:
55:b1:af:f0:68:08:be:a3:11:3e:9e:4a:7b:40:10:33:c3:7a:
4c:90:c0:85:9f:30:7f:9e:56:a6:1b:3e:43:5b:05:30:37:eb:
45:5f:5d:64:1d:4e:f4:aa:ef:b3:b9:57:c5:07:60:08:b4:a5:
45:90:cc:6c:76:98:d6:d9:cb:2c:69:fb:90:6c:72:1c:f3:ae:
d2:c5:dd:50:81:f8:29:80:c1:e8:83:86:e2:c0:c6:97:93:ce:
5c:3e:58:5e:b7:3a:77:4d:0c:83:f9:9e:f5:40:f0:67:7d:37:
1c:a0:09:7e:3f:da:9b:23:50:21:96:f0:98:b9:b9:8f:b6:af:
e4:c5:c1:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:58 2024 by rpki-client on console.sobornost.net