Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qq7HHKNN7wjYjud72RwVcXXMPAk.cer
File: qq7HHKNN7wjYjud72RwVcXXMPAk.cer (raw, json)
Hash identifier: OfIUXn+OifSu7evIQ1R0IlxG4xbtKOWLo7tZPV4l0D8=
Subject key identifier: AA:AE:C7:1C:A3:4D:EF:08:D8:8E:E7:7B:D9:1C:15:71:75:CC:3C:09
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F813
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 08 Jun 2024 17:38:28 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 103.151.4.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129043 (0x1f813)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 8 17:38:28 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91A6353/serialNumber=AAAEC71CA34DEF08D88EE77BD91C157175CC3C09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:10:eb:11:64:91:3d:96:fc:4b:9e:d0:16:e3:
b5:a1:29:73:e2:c8:b6:c1:38:ed:f9:44:1e:ec:59:
49:b9:73:a1:47:0b:42:ee:65:d0:f7:a7:43:1f:54:
6b:a9:49:2c:82:bd:9d:68:28:4a:f5:92:ea:7c:c2:
2e:c1:f0:c0:69:27:0e:47:43:73:02:9c:bf:05:7d:
e3:65:3b:a3:1f:fe:f3:20:e4:33:7e:7b:af:b6:f6:
44:ab:ec:9f:4b:fd:63:9e:37:af:8e:19:e7:3b:aa:
90:6c:a1:71:fa:c0:68:f0:f7:51:26:5f:26:17:1e:
5c:80:3d:0e:cd:d7:98:ce:1a:49:b8:f7:9b:ea:51:
0d:34:e0:5c:13:bb:6f:f8:87:5b:c3:ea:94:f8:63:
36:a3:00:ca:52:72:a6:12:cb:f6:20:ee:27:52:57:
c6:aa:7a:31:c3:1b:13:ac:1d:a4:32:3f:f1:36:4b:
11:c1:26:44:52:51:5a:d2:69:89:c2:7f:d3:d2:31:
f8:88:54:b0:39:05:cd:fb:9a:b6:2e:11:c5:e0:91:
7a:e3:a2:26:2d:d4:a2:ab:75:5b:59:e6:c8:90:46:
9a:09:b5:7b:4a:be:76:ef:3e:d1:13:4d:f6:57:4a:
16:2c:ad:ab:23:18:f5:88:2a:23:7d:4a:f0:95:55:
5d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:AE:C7:1C:A3:4D:EF:08:D8:8E:E7:7B:D9:1C:15:71:75:CC:3C:09
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.4.0/23
Signature Algorithm: sha256WithRSAEncryption
01:19:58:87:67:83:f3:af:ab:1d:8d:55:a6:2c:e1:c0:7e:bf:
84:74:25:66:27:a4:fe:5c:34:69:68:2c:c6:50:70:b4:d0:14:
fd:03:2b:14:47:b8:fa:ce:73:bd:a7:6c:66:c7:39:03:7d:c3:
7d:8c:e7:9f:d8:06:e3:07:f2:b4:4a:b3:15:31:f8:42:cb:79:
a6:9c:3d:8a:37:64:a0:c3:12:a4:84:62:b0:ee:72:a0:0c:1a:
76:4c:63:9d:01:ab:ce:e9:2b:43:bb:7f:b3:86:fb:df:20:a9:
61:b1:9c:de:86:3e:0d:e1:81:43:83:ea:6b:64:53:ed:4c:b9:
2f:52:6e:7a:c6:7d:15:49:72:33:2a:ff:1c:89:22:89:3f:b0:
f2:3f:b7:b6:e8:c5:ee:87:66:5e:0b:4d:31:a0:d3:94:c8:f6:
6a:05:56:90:58:91:80:32:df:b7:93:b3:43:51:6a:df:76:2c:
c2:fb:8d:a0:cf:05:f5:ec:29:d8:34:8b:14:dd:92:e5:13:7b:
aa:a5:dd:04:a7:71:78:5f:db:05:70:22:8b:74:35:ed:15:84:
90:ca:e6:f3:98:6b:17:ed:54:16:9e:10:9f:95:e9:04:ea:ca:
7e:28:7e:16:68:bb:b9:e4:7b:7c:0d:e6:2a:65:53:26:7d:05:
5a:77:fb:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:09 2024 by rpki-client on console.sobornost.net