Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.cer
File: ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.cer (raw, json)
Hash identifier: CMID3U9LsW4Etg4+PRI/3JbN3dQsLPjWlNz01/H3Wmk=
Subject key identifier: 85:AE:62:19:F8:62:69:41:4B:E1:76:B7:82:5F:16:CD:DD:42:42:D4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0206D6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 15 Aug 2024 08:04:26 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 134713
IP: 103.197.168.0/22
IP: 220.158.224.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132822 (0x206d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 15 08:04:26 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91E9EBA/serialNumber=85AE6219F86269414BE176B7825F16CDDD4242D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ce:5b:4f:18:b3:f9:b3:c8:90:83:6a:3f:79:
10:bc:2c:ce:22:0c:3d:51:21:9d:92:de:76:f6:98:
5b:91:00:8b:61:e4:67:02:a8:6b:d2:b0:40:f8:79:
db:a0:57:8f:47:4a:14:24:83:b4:43:64:e1:b2:b2:
8f:f6:1d:49:eb:da:fc:46:e1:4c:61:a0:11:3c:f4:
cb:cd:5b:dc:f7:3c:c0:d6:30:53:52:20:36:e6:8b:
89:83:a5:65:2e:42:5d:f0:05:b7:e3:c5:94:6d:b7:
6c:80:00:e2:52:1f:7c:dc:5f:60:36:12:86:fa:8f:
9a:4a:38:d3:d6:82:18:7d:33:28:b2:4c:22:a0:7b:
4f:d6:95:f9:63:97:56:f3:c4:2f:61:02:20:95:1c:
8c:62:ea:09:f1:b1:70:e4:3d:91:37:84:51:66:23:
06:bf:72:08:a9:96:b1:eb:7a:aa:ff:34:00:26:f6:
53:0a:ad:d0:e1:1d:37:e6:e1:06:be:4e:ac:b6:cb:
05:b6:05:64:e1:8a:e2:52:23:b5:6b:51:ea:42:c0:
24:cc:e4:ab:24:9a:f7:5a:3a:8c:30:57:52:04:be:
d2:26:52:4d:d3:3b:fd:d6:ad:e3:f6:eb:b0:0a:46:
35:4e:88:a6:0a:cb:31:d6:81:21:a2:5a:ce:04:0f:
a0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:AE:62:19:F8:62:69:41:4B:E1:76:B7:82:5F:16:CD:DD:42:42:D4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134713
sbgp-ipAddrBlock: critical
IPv4:
103.197.168.0/22
220.158.224.0/22
Signature Algorithm: sha256WithRSAEncryption
ca:82:c6:c6:a2:f7:16:3b:97:ec:f9:6b:8b:83:46:3c:74:72:
58:5b:9d:e0:a6:68:79:33:4d:ae:48:3d:3e:7b:ec:eb:54:fd:
27:78:79:2c:73:75:f4:07:96:64:e6:cb:a4:c6:59:57:b4:2f:
40:3a:e2:cf:4d:af:38:df:be:ee:b6:b0:2d:e7:b7:74:85:05:
ee:62:6a:52:ba:56:a6:0b:d1:06:ba:cf:ef:6c:74:22:e0:87:
3d:7d:50:96:4f:62:b0:be:0f:8a:ee:00:ed:00:b1:43:ba:f9:
5e:10:1c:74:de:d3:b2:8c:55:72:f8:c0:d2:96:19:16:55:c1:
f6:85:64:5b:90:20:c6:76:41:7d:78:2a:10:a7:63:57:db:dd:
99:61:b0:fe:16:94:8c:82:85:c4:d5:3f:da:4d:f7:9d:e4:94:
08:4a:75:d1:b6:1f:fc:da:5a:11:95:58:87:14:c2:41:d8:86:
e2:76:a4:62:32:66:b3:30:1d:e9:a1:be:66:26:77:8a:e3:7f:
91:4b:99:ed:04:66:70:2e:54:98:60:c5:19:b9:97:0b:ba:b9:
de:b0:bf:86:34:58:4f:13:66:b4:28:a0:23:77:af:cc:61:7c:
d4:58:56:75:1a:a3:70:c7:23:be:cc:4e:43:ce:bd:79:76:d2:
b6:04:93:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:03 2024 by rpki-client on console.sobornost.net