Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1brjnJ3ohf0Z-icgfZLdd-4fR4.cer
File: j1brjnJ3ohf0Z-icgfZLdd-4fR4.cer (raw, json)
Hash identifier: mYbs4TT5h3cUt8JddxpT4moYu7gOPzuoriyRFYlU8yg=
Subject key identifier: 8F:56:EB:8E:72:77:A2:17:F4:67:E8:9C:81:F6:4B:75:DF:B8:7D:1E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F85C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C81E8/951252081A4311EAA1A5F161C4F9AE02/j1brjnJ3ohf0Z-icgfZLdd-4fR4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C81E8/951252081A4311EAA1A5F161C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 10 Jun 2024 20:08:54 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 137575
IP: 103.113.244.0/23
IP: 103.115.22.0/24
IP: 2405:2440::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129116 (0x1f85c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 10 20:08:54 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91C81E8/serialNumber=8F56EB8E7277A217F467E89C81F64B75DFB87D1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fa:30:eb:74:e9:35:48:6a:7f:56:40:38:dd:
1a:75:c4:9c:bc:dd:fd:e8:c7:e0:93:5d:fd:62:c5:
40:fe:aa:cf:34:71:54:4e:c3:d3:6a:b1:f1:30:a8:
73:c3:4c:39:68:3d:43:9b:5d:0c:81:75:64:04:f0:
98:dd:03:1c:3a:f0:bd:3d:4f:90:e9:44:c7:a1:79:
7b:d3:30:7e:5d:36:72:0f:45:b6:7f:e3:f0:4b:09:
1b:4c:aa:21:1f:c2:4d:ba:7d:84:a1:00:60:50:f6:
13:24:ef:37:7e:39:fc:7e:bd:40:b9:b4:00:1b:a9:
5d:60:1f:ff:0b:58:c8:dd:63:8c:fe:e8:f7:6a:e8:
17:f6:77:f5:6a:35:7e:a1:9c:3f:33:58:1d:55:2d:
53:f4:08:38:61:d3:e2:b6:a3:dd:04:68:68:2b:be:
ee:1d:09:41:90:74:71:23:b0:fa:00:a2:c3:7f:a3:
12:68:be:fc:29:3d:af:ba:5b:d6:49:e1:4f:03:a2:
8a:a0:44:13:0d:18:52:a5:4e:a2:ab:ef:a6:8d:d9:
22:df:70:f9:1d:98:76:1b:e8:bc:fa:1c:8f:ad:1d:
50:84:38:c0:92:dc:3e:63:c4:e0:da:7a:64:62:1b:
b5:b7:be:0f:db:76:d9:e7:e6:51:ca:89:92:f5:d9:
c7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:56:EB:8E:72:77:A2:17:F4:67:E8:9C:81:F6:4B:75:DF:B8:7D:1E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C81E8/951252081A4311EAA1A5F161C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C81E8/951252081A4311EAA1A5F161C4F9AE02/j1brjnJ3ohf0Z-icgfZLdd-4fR4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137575
sbgp-ipAddrBlock: critical
IPv4:
103.113.244.0/23
103.115.22.0/24
IPv6:
2405:2440::/32
Signature Algorithm: sha256WithRSAEncryption
8e:2a:70:23:58:cf:e9:64:e7:25:19:c7:d6:35:43:ee:2f:fa:
0a:a3:e9:73:00:bd:b0:c4:82:53:33:ff:33:49:1f:85:25:2f:
92:09:4f:dc:9c:31:82:6d:8f:cb:ba:09:ab:0f:99:1f:f2:39:
a8:2c:19:54:ca:3d:f2:58:2a:da:41:2d:4a:03:99:f1:ee:7c:
dd:57:f6:d1:35:98:7e:50:0e:bf:72:98:82:f6:dc:cb:13:ff:
5b:00:e6:f6:b9:8d:ae:73:bc:03:9c:1a:70:10:1e:f4:86:cd:
c4:40:d1:b0:87:1d:1d:d5:14:c4:34:00:15:b4:0c:ec:c3:7f:
bd:9b:bf:df:d6:04:dc:f9:8b:16:fe:56:06:b1:c6:33:05:43:
4d:c2:b3:51:83:be:ff:7a:ae:9f:3a:01:62:54:6d:dc:83:6e:
0d:19:96:59:45:fb:ba:ab:a7:ec:64:2a:78:c5:1b:60:92:a4:
ac:33:f9:06:d0:c4:9c:e1:06:11:a2:70:a6:0a:9f:26:6a:b0:
1a:20:49:21:bc:05:bd:0c:1b:15:11:26:9d:f1:9d:49:6d:09:
64:70:97:3f:b3:78:d2:f8:a8:97:96:1c:b2:5d:a0:5e:5e:e5:
c9:29:d9:a1:2c:26:3c:55:51:50:ab:cb:31:1b:cf:bf:cd:02:
9a:07:bc:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:04 2024 by rpki-client on console.sobornost.net