Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f83sMfr6flJ9p6lwOTIED4RVgVk.cer
File: f83sMfr6flJ9p6lwOTIED4RVgVk.cer (raw, json)
Hash identifier: BBf9h8uG+SK2gUzEiFqVPMW51+MwjdWY93cnmRy0mMs=
Subject key identifier: 7F:CD:EC:31:FA:FA:7E:52:7D:A7:A9:70:39:32:04:0F:84:55:81:59
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021101
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Oct 2024 16:20:59 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 140934
IP: 103.190.16.0/23
IP: 2401:c8a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135425 (0x21101)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 1 16:20:59 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9179BF7/serialNumber=7FCDEC31FAFA7E527DA7A9703932040F84558159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bd:59:d0:3f:7a:3e:7f:13:43:54:c5:43:a6:
88:e9:52:fa:8e:52:21:d2:c4:c8:50:2b:9e:72:b3:
9c:6b:66:8c:ea:0b:f5:20:ef:7e:87:03:5d:5e:67:
81:3c:c5:a6:2b:3d:b6:b0:ef:22:0a:74:20:5e:09:
85:cc:b3:b4:c8:9f:ce:5c:d2:be:60:2d:0e:80:66:
95:d4:2c:34:ab:9f:4b:56:42:76:7b:2b:8f:a5:03:
61:c5:f7:03:ad:68:d9:36:d7:10:b1:a9:c2:ea:b0:
fa:6f:e6:49:31:80:2f:86:aa:b2:ac:f4:86:54:ba:
6c:4d:63:41:1c:e5:7a:aa:4a:f2:2e:c9:69:eb:10:
71:31:cb:d4:c1:a9:05:f4:a8:33:23:8d:ef:34:88:
87:14:0e:63:d0:4c:08:e8:ca:08:a3:1b:e2:1f:74:
d3:0e:b0:57:85:c2:d0:a5:b1:0a:9a:7a:4f:e0:4a:
a3:7f:7d:47:93:8a:b5:e7:dd:be:03:8a:10:e8:e0:
bd:0c:c4:f1:dd:3b:0b:8f:9c:2d:b3:5c:3c:c2:51:
57:c8:04:0a:e8:eb:35:f8:6c:10:e8:3d:c3:b8:74:
43:dd:8c:5a:46:9d:47:32:2e:e4:e6:7f:ce:54:f1:
7f:a8:af:18:04:6e:31:3b:41:8f:30:f8:0c:e3:f4:
3d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:CD:EC:31:FA:FA:7E:52:7D:A7:A9:70:39:32:04:0F:84:55:81:59
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140934
sbgp-ipAddrBlock: critical
IPv4:
103.190.16.0/23
IPv6:
2401:c8a0::/32
Signature Algorithm: sha256WithRSAEncryption
7a:57:cb:3a:a7:b4:71:b0:7f:a6:f4:7d:00:1d:da:4e:c4:f6:
5a:49:42:52:f6:ef:7e:2b:d3:a8:a8:04:f1:cc:08:56:75:79:
98:3a:64:aa:49:74:61:1d:2f:1c:c3:7c:48:58:d3:9c:45:96:
84:c3:9f:2e:43:83:75:d8:38:44:ad:c2:69:57:de:44:0f:b8:
3d:4b:de:25:7e:59:7e:06:bf:20:ef:1a:f9:72:fc:db:46:0d:
3e:ae:7a:f8:da:0c:2c:6f:7c:87:53:e1:f4:66:fa:ad:b0:85:
b4:69:fd:88:bc:01:df:d2:38:a9:28:b5:bd:7a:6b:a0:38:42:
5d:0f:a6:7d:0a:b2:ed:12:eb:d4:6d:6f:ed:af:df:1a:3a:8e:
47:0e:8a:fa:6f:49:37:d3:fe:d9:3b:3c:38:f3:d4:77:69:68:
b6:c6:91:72:1a:fc:de:d1:36:4f:c0:58:d0:ef:bd:2c:03:43:
1c:6f:17:5c:f3:20:03:5a:42:5e:c1:27:02:19:67:1a:30:4f:
b5:b6:b7:bc:83:c6:27:46:0b:d7:83:1a:75:63:39:b3:80:02:
0a:30:06:a9:86:e3:30:43:55:0a:0f:68:10:03:7a:80:91:dd:
04:f4:5f:e6:9f:f6:40:7c:29:7b:15:b1:f5:c8:d7:c2:30:ae:
ad:b4:51:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:02 2024 by rpki-client on console.sobornost.net