Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer
File: iiZW272QAzaEH_UDU2_5kY_rJcY.cer (raw, json)
Hash identifier: vkccWo9cD6K8AdUNTIP1or4MUuwGdksThQJUXejccJM=
Subject key identifier: 8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F443
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 May 2024 19:22:21 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 9554
AS: 135436
IP: 103.219.172.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128067 (0x1f443)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 28 19:22:21 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91A267C/serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2d:93:04:a7:09:65:cb:0e:c6:89:20:52:e0:
50:2f:54:88:c0:49:83:3c:cc:05:47:ee:23:ab:39:
e8:65:f1:23:64:54:bb:53:bc:e7:9f:3a:81:56:b6:
2c:c3:66:73:88:78:c9:28:5f:70:d9:68:8b:fc:e3:
64:38:33:c9:70:99:ba:ce:e9:16:68:3e:a9:32:1d:
1a:e8:c3:ee:23:a6:52:06:49:dc:24:aa:3a:00:67:
67:5d:18:87:4b:c8:b0:bb:99:63:c0:5e:a0:44:18:
d0:6f:e1:0f:1f:c6:da:71:70:21:0e:49:6e:28:36:
76:e6:78:d3:3f:af:a3:b5:f4:5e:0f:4a:4b:b8:07:
e3:86:a6:f7:e5:c1:3b:e3:bc:e0:30:10:0d:81:97:
65:83:af:26:6d:79:49:f9:8c:fe:ba:4f:21:ef:54:
2e:20:22:77:12:57:46:3c:b0:d9:71:a1:0e:b3:27:
dc:8b:12:91:4e:96:06:e7:4f:8f:ed:4e:95:9a:d3:
e9:a2:88:32:97:2b:96:b3:bc:68:44:27:1f:6b:72:
ab:21:ef:cd:d2:e6:91:84:46:78:91:94:12:6d:37:
d9:86:a8:a1:e3:87:b9:b6:3e:67:56:33:54:89:22:
1d:e1:da:d7:57:b9:e8:1b:7b:32:3f:b8:ca:44:e5:
71:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9554
135436
sbgp-ipAddrBlock: critical
IPv4:
103.219.172.0/22
Signature Algorithm: sha256WithRSAEncryption
89:7f:65:96:42:da:49:ed:02:4e:b2:f8:7a:c8:e8:6a:bf:5f:
aa:2d:c5:10:13:b7:5b:a1:7c:4f:18:0f:75:8f:1e:3a:d1:57:
96:a4:83:58:36:c6:68:88:0b:e8:24:0f:0c:05:50:cf:4d:69:
b4:3d:aa:f7:74:b4:ae:75:b8:d6:26:82:66:61:6b:db:70:6a:
c7:6d:6a:da:a4:1c:06:76:da:43:df:5b:70:7c:18:02:f7:da:
3d:38:fc:ed:07:7e:14:5a:89:60:25:2e:1f:f9:c6:31:49:4d:
92:38:8d:a8:3d:72:a5:bd:b0:b2:f8:4e:14:ff:6d:d6:e8:2b:
8b:e5:9d:e5:40:d7:56:14:6e:2f:ee:31:f6:3f:69:1b:71:fc:
e9:d5:1a:df:68:e9:92:0a:2e:4a:1e:84:9b:1d:19:20:8c:a9:
01:a1:76:40:6c:c8:a0:4e:c7:bd:cb:49:e7:20:4a:aa:7c:97:
32:8e:d2:aa:f6:ae:77:6a:b2:2b:dc:01:cb:e9:68:6b:a6:1b:
5d:b6:ae:86:1a:fd:7b:6e:61:6a:a9:68:a0:4e:6d:5e:ee:a5:
c0:b9:52:22:f3:aa:eb:b9:d2:b5:20:9f:a6:80:d7:52:c4:fe:
88:53:63:05:44:c8:ec:c2:a8:31:3c:17:be:0c:f9:bc:c7:90:
cd:d6:60:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:04 2024 by rpki-client on console.sobornost.net