Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer
File: pBhnIpZRYlTNTMrUSSUeGdG26V0.cer (raw, json)
Hash identifier: FI/d1eGrGxSzuIIwIEAdu335gqiCl67WN4Q1PwyW3Vw=
Subject key identifier: A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020485
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Aug 2024 14:48:21 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 142555
IP: 103.169.68.0/23
IP: 2001:df6:ed80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132229 (0x20485)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 14:48:21 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9a:6f:db:42:27:bc:19:ee:62:aa:60:fb:99:
b6:5f:96:c0:4e:54:3d:44:c1:62:ad:0c:96:3d:c6:
90:0a:ef:e2:10:8a:23:e9:4e:3f:10:c7:b7:ff:6f:
34:88:5c:4d:58:73:eb:76:3f:85:47:ef:c9:a2:de:
70:7c:e1:48:fc:5d:c3:92:0a:60:7f:68:74:e9:61:
75:32:3e:69:c8:07:a9:39:dc:2a:bf:2c:d5:c2:bf:
a1:70:b2:a1:9f:7d:6c:57:99:13:40:00:07:91:c7:
e4:ce:57:48:88:49:9b:ce:23:db:5e:10:c1:e6:ab:
18:da:17:82:8a:1a:a3:f0:41:29:19:3a:01:bb:d1:
33:24:e8:78:49:bc:cd:ab:ea:fc:2d:0d:9e:79:9f:
ff:6f:c4:75:f8:ab:bb:41:47:80:d6:db:26:6d:6e:
ba:bf:3d:80:97:2e:e3:46:3e:2b:21:b9:44:73:36:
8e:b1:43:74:cd:fa:d7:9e:13:6a:09:ab:d5:15:42:
6d:ea:f4:c5:b2:9c:9f:30:93:4e:fc:49:91:ea:49:
aa:6b:2f:e2:84:c6:2f:f6:65:6f:51:2a:dd:9f:8e:
ec:01:3b:67:1d:83:62:f3:52:f3:45:28:41:0b:c9:
19:39:51:9f:f5:f2:57:ec:bd:73:78:95:c6:3d:17:
27:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142555
sbgp-ipAddrBlock: critical
IPv4:
103.169.68.0/23
IPv6:
2001:df6:ed80::/48
Signature Algorithm: sha256WithRSAEncryption
14:0a:5d:6b:31:1c:9f:95:b6:0e:48:50:74:65:37:1c:a0:0f:
81:28:83:74:98:12:39:57:c0:67:ed:d0:db:c8:52:99:87:03:
12:63:2b:0d:73:a3:17:b6:89:62:eb:aa:7a:e5:65:95:82:23:
2f:13:ea:9b:5b:53:25:40:25:3b:1b:24:66:2a:62:02:5b:0b:
96:d0:ab:28:6f:9c:5d:80:03:79:72:d7:91:7d:56:7f:4b:c2:
7b:59:b0:f7:46:b3:87:03:0e:69:bf:5b:f8:19:2c:c2:95:e9:
ee:a5:f4:20:6d:b2:73:92:fb:17:41:48:f0:c2:64:f7:66:80:
2c:9a:87:17:c6:d0:9a:bf:b1:ec:9b:3a:f0:30:cd:21:a2:79:
e0:38:fd:b9:e2:40:8a:49:5f:c4:19:bd:df:48:b7:2b:e3:80:
2a:2e:72:f6:07:75:94:89:8e:d0:94:40:87:16:6f:d4:6a:b3:
57:9a:85:bc:7d:e6:c6:66:53:54:7d:20:76:1e:aa:53:2e:73:
52:26:e4:15:51:64:dc:75:0d:c7:59:dd:25:09:3a:a9:f7:b1:
07:f1:13:04:b2:8d:94:b1:e1:29:87:df:57:d9:5e:2d:a7:a4:
73:e9:c0:a1:01:88:e5:2d:2b:93:1d:e8:a1:b4:ca:8c:4c:d4:
aa:08:ef:6b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:08 2024 by rpki-client on console.sobornost.net