Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer
File: joN3gQz5wgS7ElhPPltfBQNoJG8.cer (raw, json)
Hash identifier: abc0YC5XLXsSsBHvY2CrufX2PBwPq1PAfwa3W/57fro=
Subject key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02084D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Aug 2024 04:40:19 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 58631
IP: 103.5.28.0/24
IP: 103.192.197.0/24
IP: 103.193.8.0/23
IP: 114.129.43.0/24
IP: 2001:df0:247::/48
IP: 2400:c760::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133197 (0x2084d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 22 04:40:19 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b0:51:cb:18:97:6e:4e:80:23:c7:d2:0c:7b:
9b:aa:bc:dc:5e:d0:d2:52:9f:2e:10:20:6f:dc:6b:
65:ae:3e:74:3c:65:a1:0c:d7:a3:e5:57:13:d4:b7:
ab:1a:62:78:10:61:7a:73:05:ec:a0:54:f4:6c:df:
23:8f:a9:68:1f:b1:91:60:32:6f:38:77:c7:e2:c2:
17:e7:c1:5a:e3:36:62:91:07:38:26:37:57:50:56:
66:e5:a4:80:8e:18:5a:96:37:f5:1a:49:24:5e:ce:
ac:bf:89:03:6f:8a:a6:18:43:97:56:e2:71:f6:65:
00:b6:24:b6:97:64:38:7d:9a:1a:0d:9b:f8:0f:05:
ea:72:e9:60:34:bf:a8:42:12:b2:ae:12:15:48:d3:
37:1c:43:2b:04:f3:72:7c:97:7b:b1:a0:58:0d:a3:
98:fa:9e:c7:05:d9:b8:c4:6e:5b:85:e6:2b:1c:92:
98:c2:39:37:d5:a4:af:17:e8:39:e6:80:71:92:f7:
1c:d9:fb:99:6b:71:83:26:e6:25:c4:75:ad:73:98:
29:28:fe:54:37:c6:58:6e:f3:93:c2:3e:b8:2d:4d:
b0:56:db:0c:34:97:de:3c:f2:df:80:70:8a:cb:02:
7d:2a:52:7c:cd:06:e6:02:47:79:fb:29:c1:13:bf:
c0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58631
sbgp-ipAddrBlock: critical
IPv4:
103.5.28.0/24
103.192.197.0/24
103.193.8.0/23
114.129.43.0/24
IPv6:
2001:df0:247::/48
2400:c760::/32
Signature Algorithm: sha256WithRSAEncryption
61:92:56:00:55:92:9f:11:67:ce:69:1d:d7:b3:38:06:b2:18:
2b:62:fb:fc:a9:a2:89:a1:fd:a9:ae:2f:95:1b:63:1b:52:b7:
b5:55:55:52:2e:df:07:cb:9a:b7:65:59:57:09:c5:27:4a:59:
20:99:a3:ec:b0:ea:19:37:54:b8:11:06:71:9f:2a:b4:9a:3e:
da:af:10:7c:f8:ba:3c:a9:43:12:ac:17:db:b6:56:f7:33:d7:
af:1f:7c:a2:ba:b9:6e:df:47:a2:6c:20:fc:b1:f4:a3:a3:ba:
4d:12:d6:0f:bb:1d:6f:33:36:2a:8a:3f:9b:15:86:8f:93:f6:
91:31:6a:c1:01:1b:d6:dc:e1:2d:41:8a:04:5f:b4:0c:08:b7:
1f:85:3d:3a:fb:e6:b1:2c:1a:7b:7c:10:27:ab:2c:d8:84:bc:
b8:7c:48:aa:5a:04:88:96:8f:50:7e:08:d6:50:00:5b:bc:10:
f0:98:d9:e9:fb:6a:45:30:06:ee:73:02:80:c3:14:6d:87:4c:
4e:e4:ab:6c:21:64:db:01:1f:2d:2f:47:65:ce:db:8f:7a:0d:
b7:a3:e5:26:70:50:83:90:a2:f1:de:c4:f1:0e:b1:43:5a:26:
fe:c7:6f:47:e0:ac:13:82:bc:0a:53:d7:3e:83:68:32:8f:77:
99:8c:38:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:04 2024 by rpki-client on console.sobornost.net