Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gopH06xuawNgEcIzIxcKlzG60iQ.cer
File: gopH06xuawNgEcIzIxcKlzG60iQ.cer (raw, json)
Hash identifier: tkSvElZjLHtOvOpxRukuXmmE4RSM4pLM3Co10EVfFVM=
Subject key identifier: 82:8A:47:D3:AC:6E:6B:03:60:11:C2:33:23:17:0A:97:31:BA:D2:24
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021438
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C55CE/451A823A8B7B11EF8290327FC4F9AE02/gopH06xuawNgEcIzIxcKlzG60iQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C55CE/451A823A8B7B11EF8290327FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 16 Oct 2024 04:58:28 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 45.121.212.0/22
IP: 103.62.52.0/22
IP: 2401:8fc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136248 (0x21438)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 16 04:58:28 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91C55CE/serialNumber=828A47D3AC6E6B036011C23323170A9731BAD224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:3c:77:e6:57:87:1b:32:8f:70:1f:89:90:ac:
62:1d:3d:58:20:25:86:95:a0:3d:ce:cd:21:26:72:
3b:47:5a:56:71:f6:04:c1:84:d7:86:11:ac:ff:ea:
34:b0:90:ca:b7:f8:a1:ff:9a:4c:f5:ec:0c:6b:96:
a0:f7:14:87:1f:38:65:02:73:ce:17:52:62:40:5b:
cb:7d:61:b1:06:00:fe:9b:28:e8:cd:a0:e1:4d:46:
f7:c9:5d:99:5a:81:08:e8:9e:3e:a4:f6:ab:e0:86:
e1:c6:bc:20:de:c2:2b:74:59:e7:84:d6:fb:03:a9:
a4:8f:f3:a7:12:3b:09:42:21:43:bf:ba:75:a9:eb:
f5:d3:b0:74:98:60:24:b1:c0:1a:64:8a:11:c8:e2:
d4:ac:a4:3a:03:e5:9e:53:b6:6a:c6:8c:e9:bb:02:
5c:13:23:b1:09:7a:49:17:e7:54:38:b8:a6:3e:ee:
b5:04:99:11:b6:a0:a3:b6:6f:f5:04:9b:0e:91:2e:
ed:01:12:60:05:46:a1:04:71:db:7d:49:bb:9a:cf:
06:65:cd:1d:93:43:40:2a:75:cf:7c:58:00:42:08:
7f:84:bd:39:2a:50:2f:97:6b:94:84:e5:25:50:3b:
17:f8:21:fa:fa:0e:62:2a:ee:02:ff:e1:63:d2:52:
e7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:8A:47:D3:AC:6E:6B:03:60:11:C2:33:23:17:0A:97:31:BA:D2:24
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C55CE/451A823A8B7B11EF8290327FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C55CE/451A823A8B7B11EF8290327FC4F9AE02/gopH06xuawNgEcIzIxcKlzG60iQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.121.212.0/22
103.62.52.0/22
IPv6:
2401:8fc0::/32
Signature Algorithm: sha256WithRSAEncryption
22:fc:a8:04:4f:4f:b6:5b:d1:77:85:fb:6f:35:20:24:62:b5:
ec:f9:ff:71:0d:67:b4:d4:cb:47:6b:62:37:ad:6c:b7:7b:40:
dd:e2:83:15:a9:5f:23:b6:6a:26:c8:23:93:0b:29:bd:ad:9a:
32:60:f3:50:8f:90:a9:64:66:b6:37:f7:c5:c4:28:a0:ac:75:
99:be:ec:74:60:e5:59:7e:1c:01:71:bd:4e:f1:f4:82:4f:5f:
54:dc:f5:c6:dc:e3:3e:70:b3:da:dc:0e:73:43:d1:f1:2d:88:
8f:1b:cc:5a:25:78:6a:40:0b:ca:16:42:09:e3:73:2e:37:7d:
e8:3a:71:2f:7d:82:42:7e:17:af:bb:d0:8d:7c:91:31:74:a6:
f2:45:1f:4e:a2:f1:58:16:33:38:3a:05:7e:58:de:13:40:bf:
e5:06:4a:3f:14:4a:0d:2f:28:a7:08:5b:12:80:67:fa:ec:5a:
37:89:27:b2:ae:dc:55:88:dc:27:b6:8d:78:cd:1f:c5:bf:74:
aa:14:48:82:9a:8a:2b:1e:29:1d:3e:58:67:64:fc:28:96:50:
55:4b:da:86:76:f3:77:68:55:b3:06:80:13:4b:61:fd:90:bc:
46:22:db:08:19:b8:1d:34:91:e1:fb:b8:0f:e7:cb:78:9a:9b:
cd:08:4d:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:03 2024 by rpki-client on console.sobornost.net