Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer
File: q6TDlMi5vRUbOziWObjG_4BwSfI.cer (raw, json)
Hash identifier: BvzGYG8STWrj2El2ksfWEgCU8DeVqy04TUztZi0yzIU=
Subject key identifier: AB:A4:C3:94:C8:B9:BD:15:1B:3B:38:96:39:B8:C6:FF:80:70:49:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F7DF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 07 Jun 2024 03:31:13 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 134099
IP: 202.36.47.0/24
IP: 202.36.172.0/23
IP: 2001:df6:3800::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128991 (0x1f7df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 7 03:31:13 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91F77FC/serialNumber=ABA4C394C8B9BD151B3B389639B8C6FF807049F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a8:4e:45:36:e9:19:d6:e7:17:08:39:74:e0:
f0:bb:76:e4:da:e7:cb:7f:60:df:90:f5:95:b5:df:
22:be:c3:ad:0e:64:01:49:5c:67:05:5b:7b:66:2d:
17:49:b6:16:d6:e9:c9:ad:6f:37:f9:8d:0e:8c:6c:
20:b3:50:c4:3c:47:4e:73:ff:b8:61:39:8e:7d:18:
18:d4:12:d8:ae:53:49:73:c9:c7:01:19:e9:ea:3a:
57:40:db:6a:64:d3:cf:16:ad:8e:f5:d8:cc:f7:d4:
57:25:d4:27:3f:17:60:e8:1b:25:7b:21:ee:f0:8b:
7a:79:b2:9d:05:cf:24:d8:a8:e5:f1:f4:a8:f0:4e:
85:bf:c6:ea:89:22:8a:51:d5:e8:b6:67:ac:7c:61:
d8:8e:71:cd:da:e5:03:88:03:3a:85:6b:70:fe:11:
a5:6d:58:b2:d7:f4:64:ec:25:b4:8c:bf:7e:2c:13:
46:a1:56:0f:9f:ae:11:9c:85:16:ca:f0:10:40:98:
86:b6:f7:a6:21:ef:a0:13:8b:29:62:70:55:79:46:
a4:35:50:36:9a:68:52:df:11:25:cc:6a:fa:0f:63:
65:5e:01:e4:46:16:cf:0e:9d:ec:ee:c4:24:6f:c5:
fa:07:4d:9a:bd:62:3d:0a:81:85:02:08:e0:50:4c:
a1:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A4:C3:94:C8:B9:BD:15:1B:3B:38:96:39:B8:C6:FF:80:70:49:F2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134099
sbgp-ipAddrBlock: critical
IPv4:
202.36.47.0/24
202.36.172.0/23
IPv6:
2001:df6:3800::/48
Signature Algorithm: sha256WithRSAEncryption
9b:c8:97:47:75:29:cd:72:73:18:d7:ab:b7:9c:25:43:6b:0b:
e5:2a:74:2b:ed:08:ca:de:a8:3f:44:35:29:a4:e6:19:4d:21:
1d:2f:cd:1e:0b:40:ad:4a:ac:7e:41:9b:2e:b5:69:26:48:14:
81:b2:bd:c8:e8:45:13:be:97:5e:bd:53:9c:7f:e6:e1:0c:51:
6d:2b:4b:12:db:fe:c3:ae:ed:04:01:52:ed:b9:42:48:16:21:
eb:13:c3:a5:13:08:db:1f:56:4f:66:c8:6b:bd:c4:4c:aa:0d:
e7:7c:90:e3:61:38:70:e8:38:d1:ff:db:0a:a5:0f:d5:f6:6b:
30:d2:f8:dd:32:bf:28:e6:96:3f:8e:a0:6e:ac:48:2b:cd:63:
c8:59:c3:6d:57:10:98:04:d4:b2:4b:3b:f3:9c:bc:d6:ce:7a:
ee:ff:4d:fe:f0:fc:b1:d3:f0:62:2e:dd:49:73:ac:00:7d:61:
1d:b4:65:1e:03:b3:39:ca:d1:94:1a:20:65:7a:e0:d0:f5:a6:
3e:62:13:2c:73:cd:bc:49:c4:e8:07:dc:6a:46:b7:18:e3:d9:
82:25:e1:87:d2:7a:38:4e:f2:a5:fa:c3:fb:ea:43:66:f5:54:
7c:9b:d1:ba:ed:9a:5c:65:ce:2e:29:ce:f7:f7:e1:9d:9b:88:
78:92:dd:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:09 2024 by rpki-client on console.sobornost.net