Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGcGY3lQ742ue-vRyadLsfJl1Bc.cer
File: gGcGY3lQ742ue-vRyadLsfJl1Bc.cer (raw, json)
Hash identifier: DtI1JYuxfKy9jwmkfz3TqkNIbmZVhWiYKD1cte6A7Tk=
Subject key identifier: 80:67:06:63:79:50:EF:8D:AE:7B:EB:D1:C9:A7:4B:B1:F2:65:D4:17
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020D7F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/gGcGY3lQ742ue-vRyadLsfJl1Bc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 13 Sep 2024 18:13:06 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 7606
AS: 10084
AS: 131088
IP: 27.106.192.0/21
IP: 43.250.232.0 -- 43.250.234.255
IP: 103.2.116.0/22
IP: 103.79.72.0/24
IP: 218.100.43.0/24
IP: 218.100.52.0 -- 218.100.54.255
IP: 218.100.76.0/24
IP: 218.100.78.0/24
IP: 2402:9200::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134527 (0x20d7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 13 18:13:06 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A919EF51/serialNumber=806706637950EF8DAE7BEBD1C9A74BB1F265D417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0b:96:0f:86:dd:cc:e8:72:3b:ff:cb:fd:9b:
01:48:b8:e3:ca:a3:d1:30:60:be:87:e6:ee:cd:51:
36:75:58:3e:82:2e:93:96:29:c3:82:d6:f9:78:2c:
9c:70:64:eb:c4:ae:6b:7a:9d:07:24:dc:44:9e:1c:
2a:5d:c2:71:00:a1:07:0d:0e:7c:af:06:31:09:e2:
b9:1a:99:43:7f:d3:67:d4:b7:d0:78:17:ed:65:e2:
76:20:e1:e0:27:43:03:49:73:5f:4b:00:c6:f6:68:
d7:19:ef:5a:75:2d:40:33:b0:ae:e2:e0:c4:73:9f:
91:d0:4f:f4:5c:c6:a5:ac:5a:e0:be:b9:73:37:b4:
84:11:8a:a6:a3:d7:74:c5:ac:7f:8b:d0:ea:ea:18:
44:ce:ab:ba:cf:73:34:83:d7:a0:18:57:2a:b0:a2:
bb:03:d3:32:ec:7d:83:ee:21:dd:68:68:b3:b5:28:
36:d6:96:16:48:eb:42:38:e8:d9:d5:d0:fb:61:0f:
58:89:6d:36:43:5c:c4:fc:62:b1:5c:0b:09:50:e7:
22:19:87:4a:21:33:be:43:d1:88:58:33:23:fb:58:
2f:5a:48:ea:8a:5c:5c:d9:6a:81:02:9d:18:35:6d:
28:50:c5:41:ba:58:bb:d8:06:55:99:38:50:86:32:
ab:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:67:06:63:79:50:EF:8D:AE:7B:EB:D1:C9:A7:4B:B1:F2:65:D4:17
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/gGcGY3lQ742ue-vRyadLsfJl1Bc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7606
10084
131088
sbgp-ipAddrBlock: critical
IPv4:
27.106.192.0/21
43.250.232.0-43.250.234.255
103.2.116.0/22
103.79.72.0/24
218.100.43.0/24
218.100.52.0-218.100.54.255
218.100.76.0/24
218.100.78.0/24
IPv6:
2402:9200::/32
Signature Algorithm: sha256WithRSAEncryption
72:8b:66:44:18:a0:81:a2:de:8f:36:34:11:66:8e:cc:68:e5:
8b:5d:4d:79:64:fc:b1:5a:08:b2:d9:8b:bc:ce:c5:94:44:93:
96:2d:a4:48:6a:36:d6:c5:a1:a2:40:39:5d:4f:98:4a:5b:b8:
07:0e:ef:c6:9c:6f:81:18:6c:f1:09:fa:0e:92:78:43:47:8c:
86:4e:1d:a6:af:a1:c7:39:57:26:0c:51:02:60:20:67:aa:08:
a0:b6:24:91:64:a7:04:23:e8:34:c0:8e:da:8d:b2:33:23:5c:
ae:4d:e1:f4:ff:8c:b1:73:e7:a9:6a:ca:96:c5:0e:09:53:3f:
e3:41:0f:a9:01:66:dd:ef:e3:3e:4c:94:4c:22:ed:5a:a4:d5:
2b:62:15:90:d0:6f:60:83:83:6c:8e:56:d3:3b:af:ee:13:04:
15:c7:d6:5e:69:fb:7b:d1:6a:13:52:fc:23:53:42:09:8e:ac:
1e:b0:bb:c2:64:95:f1:ac:10:aa:b9:a7:fc:7b:eb:c9:32:df:
dd:97:74:ee:60:29:60:5c:23:02:4f:01:8d:a7:13:fe:48:f8:
6b:98:8a:3f:1e:71:f8:2a:ec:57:71:d6:f0:51:99:e0:0f:ca:
48:6a:58:a9:f4:92:7f:19:1e:d1:97:26:93:b9:ec:41:b0:b0:
e8:48:bf:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:02 2024 by rpki-client on console.sobornost.net