Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKFbyZFsWyyhjjWQUVAeVGQsCNM.cer
File: lKFbyZFsWyyhjjWQUVAeVGQsCNM.cer (raw, json)
Hash identifier: yZGnimAc2iMlnX5jht/xVtZBsREf26w6XYL8Lh2XBdE=
Subject key identifier: 94:A1:5B:C9:91:6C:5B:2C:A1:8E:35:90:51:50:1E:54:64:2C:08:D3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0213BF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 13 Oct 2024 14:08:51 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 55785
AS: 55948
IP: 43.252.68.0/22
IP: 103.247.152.0/22
IP: 2403:4d00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136127 (0x213bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 13 14:08:51 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A916B0A3/serialNumber=94A15BC9916C5B2CA18E359051501E54642C08D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8e:b6:c7:77:51:76:dd:22:09:b4:a1:73:bd:
c4:2d:d1:2c:12:a8:ea:42:51:82:9e:3c:7b:e8:c9:
48:8b:10:4f:45:29:64:01:60:29:5b:55:16:e0:0c:
cd:70:29:30:7a:35:4a:bb:58:d8:2c:7e:e7:74:17:
ea:49:bd:5b:82:6e:fb:b1:26:41:6e:21:79:0d:72:
06:98:81:9c:ab:35:fa:94:bc:32:9c:21:80:f4:dd:
ac:19:7c:96:da:f1:00:59:d5:27:10:a6:7a:c3:b5:
d2:96:68:63:5e:5e:c0:57:f9:fd:55:46:da:d0:1f:
01:3f:08:b2:b7:94:03:93:3c:c6:95:ad:a8:d7:05:
b3:17:68:11:4c:8b:cc:9a:95:61:b5:0d:fe:28:94:
01:6f:03:df:94:ff:1f:7c:fc:d7:ad:13:16:cc:b7:
cb:c8:eb:b5:fd:c8:e4:3e:4b:0e:89:9f:ed:ae:cf:
34:40:31:9b:a4:eb:5a:47:c7:6b:c5:ef:68:19:4a:
b8:4b:f4:76:44:0a:14:91:e9:67:bb:28:70:23:56:
d1:a0:18:35:b1:d8:9c:37:17:ed:11:cd:2b:df:78:
6a:73:35:fd:67:d0:72:03:93:3f:bb:79:68:f4:42:
27:d4:17:36:ce:a2:af:a3:c6:8d:2e:02:39:92:f2:
57:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A1:5B:C9:91:6C:5B:2C:A1:8E:35:90:51:50:1E:54:64:2C:08:D3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55785
55948
sbgp-ipAddrBlock: critical
IPv4:
43.252.68.0/22
103.247.152.0/22
IPv6:
2403:4d00::/32
Signature Algorithm: sha256WithRSAEncryption
50:59:55:98:44:01:6b:56:28:73:b0:dd:5f:4f:e9:1d:f5:2c:
13:08:ac:fa:0d:62:39:1f:59:3d:07:fe:80:b6:f1:4a:3a:c6:
8b:87:0b:23:5d:eb:77:71:3e:41:5e:c9:a8:b8:d7:70:c2:c3:
d5:df:71:5f:ba:65:31:7d:45:2e:3a:36:51:8b:e9:ba:4e:8f:
5b:78:57:db:da:c8:c4:aa:86:b7:e4:c8:71:3d:e7:a5:61:8c:
64:2f:02:8c:0e:6a:2c:2a:64:79:ca:5a:16:40:81:c4:87:a2:
5a:5e:56:98:c2:84:93:31:be:b3:81:8a:30:8e:5e:a4:38:56:
30:d9:1b:1d:74:ec:8d:dc:cb:f9:ec:49:17:e6:bc:6b:12:44:
98:9b:2c:5b:bf:42:ea:3d:11:07:19:2e:ee:40:2b:f1:69:f0:
45:d4:2e:84:ec:10:a8:5d:f7:de:a5:8d:7b:94:3a:2f:ad:39:
97:60:07:89:7a:49:58:98:b4:b2:ed:bd:ed:a9:91:16:1f:f9:
8a:24:58:99:a9:bb:00:8a:de:1b:8e:ce:72:dd:3a:c5:e3:e7:
46:85:13:23:6c:89:ae:d7:b0:d8:68:77:31:06:7c:c7:3b:2d:
2a:0b:0f:9b:4b:d1:71:50:bd:5a:7e:55:57:f5:27:2a:92:d0:
20:97:da:b2
-----BEGIN CERTIFICATE-----
MIIGNDCCBRygAwIBAgIDAhO/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTAxMzE0MDg1MVoXDTI1MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNkIwQTMxMTAvBgNVBAUTKDk0QTE1QkM5OTE2QzVCMkNBMThFMzU5
MDUxNTAxRTU0NjQyQzA4RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDjjrbHd1F23SIJtKFzvcQt0SwSqOpCUYKePHvoyUiLEE9FKWQBYClbVRbgDM1w
KTB6NUq7WNgsfud0F+pJvVuCbvuxJkFuIXkNcgaYgZyrNfqUvDKcIYD03awZfJba
8QBZ1ScQpnrDtdKWaGNeXsBX+f1VRtrQHwE/CLK3lAOTPMaVrajXBbMXaBFMi8ya
lWG1Df4olAFvA9+U/x98/NetExbMt8vI67X9yOQ+Sw6Jn+2uzzRAMZuk61pHx2vF
72gZSrhL9HZEChSR6We7KHAjVtGgGDWx2Jw3F+0RzSvfeGpzNf1n0HIDkz+7eWj0
QifUFzbOoq+jxo0uAjmS8lfPAgMBAAGjggMpMIIDJTAdBgNVHQ4EFgQUlKFbyZFs
WyyhjjWQUVAeVGQsCNMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTZCMEEzLzcxQURFMUZFRDgyODExRTRBQTdDOEE0N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2QjBBMy83MUFERTFGRUQ4MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi9sS0ZieVpG
c1d5eWhqaldRVVZBZVZHUXNDTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDANnpAgMA2owwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAIr/EQD
BAJn95gwDQQCAAIwBwMFACQDTQAwDQYJKoZIhvcNAQELBQADggEBAFBZVZhEAWtW
KHOw3V9P6R31LBMIrPoNYjkfWT0H/oC28Uo6xouHCyNd63dxPkFeyai413DCw9Xf
cV+6ZTF9RS46NlGL6bpOj1t4V9vayMSqhrfkyHE956VhjGQvAowOaiwqZHnKWhZA
gcSHolpeVpjChJMxvrOBijCOXqQ4VjDZGx107I3cy/nsSRfmvGsSRJibLFu/Quo9
EQcZLu5AK/Fp8EXULoTsEKhd996ljXuUOi+tOZdgB4l6SViYtLLtve2pkRYf+Yok
WJmpuwCK3huOznLdOsXj50aFEyNsia7XsNhodzEGfMc7LSoLD5tL0XFQvVp+VVf1
JyqS0CCX2rI=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:06 2024 by rpki-client on console.sobornost.net