Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer
File: ll15uIln4ofmpRU6EE_BTsEYWxE.cer (raw, json)
Hash identifier: eBrAl3weedJCjTW/MzyNcEtBKnMKsH+XPW1jqFYk8yY=
Subject key identifier: 96:5D:79:B8:89:67:E2:87:E6:A5:15:3A:10:4F:C1:4E:C1:18:5B:11
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020466
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Aug 2024 00:08:17 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 103.30.252.0/22
IP: 103.70.180.0/22
IP: 103.103.168.0/22
IP: 103.193.184.0/22
IP: 2401:f6c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132198 (0x20466)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 00:08:17 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91DF859/serialNumber=965D79B88967E287E6A5153A104FC14EC1185B11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d8:54:98:d5:60:30:cf:ba:39:17:6e:10:84:
fc:24:5c:b6:52:a1:a6:27:cd:a4:89:a1:3e:95:75:
d3:40:33:10:83:89:d7:6c:df:0a:1b:e7:20:ae:d0:
c4:cd:e8:a2:f1:3d:6a:10:64:73:9b:67:2e:a1:ec:
e9:61:9a:52:7f:4e:c7:36:88:f4:aa:d7:0e:a3:13:
16:5c:e5:34:d1:1d:f8:ac:5b:a4:4a:51:95:0a:05:
bb:21:86:9d:a4:84:3e:5c:b2:2c:0c:d7:3e:fd:98:
4b:9b:f9:e8:23:fe:4d:f5:3f:7a:ae:0d:1b:82:0f:
0d:98:1d:a1:2c:2a:8a:5a:d9:9b:9d:06:58:6e:29:
3d:d7:cc:62:77:84:3b:a9:08:4e:e9:3a:38:d3:ec:
81:e8:61:9f:55:76:ee:99:56:0a:7d:c3:6d:67:c0:
40:4a:a6:ce:43:72:d0:96:eb:0a:68:2a:c6:bd:37:
99:de:3a:db:21:3d:7b:7b:42:5b:1b:8d:84:c4:ed:
0e:c5:63:04:11:a6:ad:ca:96:b4:6c:37:52:76:6b:
37:73:18:4b:33:27:46:57:47:2b:80:6e:ea:63:7e:
ba:e1:bf:33:be:7d:93:b6:2e:e7:92:4d:f6:bb:1c:
89:1e:2b:f0:99:54:08:6a:02:76:3e:ed:60:3c:bb:
51:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:5D:79:B8:89:67:E2:87:E6:A5:15:3A:10:4F:C1:4E:C1:18:5B:11
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.252.0/22
103.70.180.0/22
103.103.168.0/22
103.193.184.0/22
IPv6:
2401:f6c0::/32
Signature Algorithm: sha256WithRSAEncryption
c1:f4:e6:04:7a:e7:5d:55:f8:15:c3:6f:75:0f:e3:50:98:47:
cf:42:d4:4d:cc:58:e7:dc:2f:50:b6:f2:4d:14:67:bc:c4:3a:
ff:1b:c9:a8:74:35:b1:3a:7f:29:e6:20:f5:0d:c8:41:fc:39:
a0:e2:2c:6c:2b:55:ff:95:08:7e:e1:17:65:54:54:6f:12:1f:
4b:52:ee:a6:77:aa:a2:30:cb:04:6c:ca:42:ae:1f:53:48:50:
77:ad:0f:1e:8e:1c:e3:7c:be:3d:f7:ec:d9:60:2a:2d:10:90:
f0:ac:a4:a7:94:33:d7:2d:73:e5:15:01:87:b2:3d:4b:45:7d:
40:ca:cd:87:81:0a:5d:a4:4d:f9:0e:7f:36:5a:aa:df:9e:4a:
2e:c1:20:15:55:ff:91:87:16:04:c3:ae:05:50:50:34:c9:84:
1e:d1:4a:6e:c8:09:3a:de:ac:8c:e6:c9:da:6f:c4:1f:8f:c0:
a0:a9:bf:34:52:5b:d1:96:ba:16:fe:9f:29:4c:6d:ce:dd:c0:
14:5f:dd:35:88:57:db:9d:39:87:42:c2:44:69:f8:01:1e:7e:
91:bf:2c:45:73:6f:0e:9d:c1:91:de:bc:e2:9e:1d:8f:b4:b5:
d5:51:99:d6:e5:74:07:67:d5:71:9c:39:dd:ae:aa:da:24:67:
b4:5b:47:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:06 2024 by rpki-client on console.sobornost.net