Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyzAVuI-OIrjeBpSC92RFpY25Zs.cer
File: gyzAVuI-OIrjeBpSC92RFpY25Zs.cer (raw, json)
Hash identifier: frDSNbn+5B0/vm21fspKm0S21sDFL+oA7qpErqCtQLI=
Subject key identifier: 83:2C:C0:56:E2:3E:38:8A:E3:78:1A:52:0B:DD:91:16:96:36:E5:9B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020C41
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F1029/10897B322FB011EBA866CF34C4F9AE02/gyzAVuI-OIrjeBpSC92RFpY25Zs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F1029/10897B322FB011EBA866CF34C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Sep 2024 21:49:00 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136977
IP: 103.141.210.0/24
IP: 2001:df1:1080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134209 (0x20c41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 5 21:49:00 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91F1029/serialNumber=832CC056E23E388AE3781A520BDD91169636E59B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ca:6d:7c:88:5d:e6:05:90:2e:9c:c5:45:07:
96:fb:fb:a9:41:3c:fa:16:54:12:ea:f1:c0:b5:2f:
8e:ce:37:48:a5:20:bf:3a:1d:3c:37:b3:42:56:b7:
26:f2:2e:a1:22:89:e4:1a:a2:64:cd:50:ef:12:c6:
da:69:2b:06:80:e7:14:02:6f:44:e2:64:44:79:f9:
eb:68:91:5f:72:97:eb:b0:08:3c:8c:29:24:ae:1a:
98:b5:e8:60:77:ef:f6:1d:04:81:0d:c0:44:44:c0:
d7:77:05:68:0c:34:21:02:fc:83:d6:64:be:1c:03:
45:c4:e4:90:5a:4a:06:69:ca:80:5b:16:e1:cb:c7:
12:5f:b0:a2:f2:35:9a:aa:7d:a6:c3:72:4b:a1:a8:
fb:85:c1:09:9b:9a:bb:4e:d3:68:aa:57:99:0b:a8:
61:2f:a5:15:00:b6:01:12:2d:38:fc:60:68:7e:e4:
aa:75:58:1b:3d:09:63:e6:15:7f:50:9d:d4:64:b3:
cb:5b:ff:e0:2a:62:91:bd:c4:89:4f:a0:2f:da:02:
64:69:d0:a3:31:9e:6e:e8:4e:a3:aa:83:4a:6c:3d:
71:79:11:c7:73:8f:37:b3:c8:17:7a:a9:61:14:b6:
1f:96:0e:de:28:d0:d1:26:fb:e3:c6:55:51:41:ed:
38:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2C:C0:56:E2:3E:38:8A:E3:78:1A:52:0B:DD:91:16:96:36:E5:9B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F1029/10897B322FB011EBA866CF34C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F1029/10897B322FB011EBA866CF34C4F9AE02/gyzAVuI-OIrjeBpSC92RFpY25Zs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136977
sbgp-ipAddrBlock: critical
IPv4:
103.141.210.0/24
IPv6:
2001:df1:1080::/48
Signature Algorithm: sha256WithRSAEncryption
ad:f4:e8:70:05:1f:81:02:1d:bf:d7:b3:73:b8:85:63:45:93:
ba:e1:b2:62:d2:dc:ef:b4:bb:29:4c:87:62:43:05:8f:2b:c2:
40:e6:e0:a5:e8:6b:a4:f7:de:92:ed:86:16:ae:3b:de:5e:19:
1a:b4:56:a8:a1:dc:9b:16:ec:77:e6:01:db:67:5d:7a:19:6d:
c7:38:e8:3e:d2:c0:bd:6c:88:82:53:05:84:fc:76:54:61:ab:
ac:b7:9c:dd:a6:8d:95:e2:1b:ec:90:11:3b:58:9c:6a:19:bd:
27:9f:4c:63:c8:e2:43:b9:c9:80:0a:4b:73:e2:93:0d:3f:bf:
71:f4:d4:c4:b6:5f:22:be:ba:fe:da:6a:89:87:28:b0:e7:8d:
2d:f9:56:53:22:f0:56:60:56:c9:a4:fe:8d:03:9b:fa:c4:06:
b8:6f:cb:89:46:27:98:79:db:5f:63:46:eb:2d:20:2f:04:ef:
e4:7a:fb:a1:f0:8d:0c:93:e0:b6:6b:c8:d7:1f:ba:b0:03:20:
08:39:b2:8a:31:08:f6:b3:f8:45:7d:cb:02:06:ea:d3:f8:b1:
d5:70:34:8e:29:81:30:22:e5:b1:aa:34:a2:e5:86:68:9b:17:
3f:68:d9:4c:b0:bc:ac:8b:96:85:f1:ca:29:37:a3:3b:f6:38:
1d:06:e7:3b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:03 2024 by rpki-client on console.sobornost.net