Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyMz5kxMiwtYbe-Te7liSCG4wd8.cer
File: gyMz5kxMiwtYbe-Te7liSCG4wd8.cer (raw, json)
Hash identifier: 0Ht+Fh/I/cl57+YZpLE5+LyYJte7QhFzcBdaXz8tkkM=
Subject key identifier: 83:23:33:E6:4C:4C:8B:0B:58:6D:EF:93:7B:B9:62:48:21:B8:C1:DF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F307
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915DB55/5AAFD7E6C71F11EA9FB1E378C4F9AE02/gyMz5kxMiwtYbe-Te7liSCG4wd8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915DB55/5AAFD7E6C71F11EA9FB1E378C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 21 May 2024 15:50:30 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 139034
IP: 103.138.186.0/23
IP: 2001:df0:4d80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127751 (0x1f307)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 21 15:50:30 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A915DB55/serialNumber=832333E64C4C8B0B586DEF937BB9624821B8C1DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e2:d5:e0:a8:3d:84:3e:8a:b9:fd:f7:39:4c:
19:47:d5:26:35:d4:29:4a:cf:2a:d0:0b:7c:cd:93:
87:c3:b1:fb:8c:9d:13:73:a3:2d:d6:78:99:fb:7d:
cc:cc:81:c4:7d:94:98:d5:c5:60:c2:49:5b:e3:d6:
72:fe:9b:b9:3b:c3:c3:81:a8:85:5c:54:2f:b3:a2:
cb:f0:4a:2c:50:8f:45:80:7a:37:36:2d:a4:b0:24:
91:f3:ec:10:9e:b4:c5:d2:d7:36:c2:e3:50:b2:2a:
68:17:60:2b:df:db:21:ef:f1:62:e0:bf:cf:e4:a0:
bf:af:8c:3f:d8:b4:4c:97:49:b0:f2:ea:4f:a7:a5:
f9:a2:27:8d:ed:f0:98:4c:01:0a:ce:dd:6a:f8:28:
2e:d8:89:12:71:7f:38:4c:65:13:d0:9f:b4:db:dd:
95:2a:b6:39:00:29:e5:0f:bf:36:7b:fe:b9:d1:a2:
8a:3a:80:ac:0d:1c:db:03:0f:be:9f:8c:95:5b:72:
65:3f:3d:4d:b7:86:27:d9:51:f4:27:9e:e3:75:ff:
d1:1e:49:4b:4c:7b:e3:97:b9:7b:d2:df:6d:fe:4d:
50:a8:7c:16:2d:2d:e2:4b:27:6f:bf:f3:c4:66:9e:
65:66:fb:23:0d:b3:84:b4:28:3f:6c:9a:0a:8a:48:
c8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:23:33:E6:4C:4C:8B:0B:58:6D:EF:93:7B:B9:62:48:21:B8:C1:DF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915DB55/5AAFD7E6C71F11EA9FB1E378C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915DB55/5AAFD7E6C71F11EA9FB1E378C4F9AE02/gyMz5kxMiwtYbe-Te7liSCG4wd8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139034
sbgp-ipAddrBlock: critical
IPv4:
103.138.186.0/23
IPv6:
2001:df0:4d80::/48
Signature Algorithm: sha256WithRSAEncryption
91:d0:f0:37:33:49:51:3d:bc:ad:e3:d4:4e:d3:c8:46:99:90:
49:cb:2b:12:ac:68:fb:10:43:9e:31:b9:20:76:11:76:ec:be:
95:7a:03:ca:f1:68:a5:cb:16:41:d6:ef:58:4a:d6:82:d3:c0:
f2:07:c4:5a:37:a8:6e:5c:b2:8b:40:c1:43:a3:1f:88:4e:f9:
76:cd:58:04:6e:d0:7e:60:08:be:e9:5a:d1:a3:22:a6:98:3b:
fc:82:07:53:81:9e:4e:fa:aa:ae:43:fc:93:61:fb:0a:6f:40:
45:91:f6:c7:af:35:60:57:ca:99:1f:ed:e5:96:df:b6:34:70:
b9:27:46:3a:83:ac:51:22:5e:4e:64:04:1c:36:ad:95:a2:c9:
11:c7:38:3a:b2:62:93:4e:c3:86:f0:90:1b:ab:96:99:49:23:
b5:d8:b5:af:a6:79:50:35:66:7c:37:9e:a0:6f:7a:56:15:59:
0e:99:c8:2a:ae:b3:22:28:a9:f1:3d:53:67:f9:97:86:31:7f:
21:42:ee:b5:3f:30:a8:70:72:40:6c:2d:54:1c:4b:19:b2:a6:
b7:1b:2d:15:6d:c1:bf:89:be:c1:30:13:2a:58:b6:52:1c:3a:
75:43:cf:4a:3d:21:ef:b8:25:1b:38:d3:3c:6b:48:3c:c1:54:
86:df:a1:49
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:03 2024 by rpki-client on console.sobornost.net