Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer
File: r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer (raw, json)
Hash identifier: GenCmcThs7nuwdnzk2fwAr4wd6ICMxybhsDFTY11GOA=
Subject key identifier: AF:67:13:2D:83:7D:57:6F:FF:77:72:27:A3:72:5D:60:1E:D9:10:5D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0205D8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 08 Aug 2024 16:49:29 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 149859
IP: 103.189.10.0/23
IP: 2001:df0:cac0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132568 (0x205d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 8 16:49:29 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A917414E/serialNumber=AF67132D837D576FFF777227A3725D601ED9105D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:47:04:bb:53:77:ea:74:79:27:f2:8b:8c:a1:
00:83:94:92:7c:d4:18:5a:8f:19:59:cc:2a:75:11:
8f:09:b2:14:46:34:35:62:cd:8e:70:10:88:d7:9e:
f3:80:43:e2:fa:81:41:8b:5f:a5:f6:7b:be:f8:e5:
d4:97:58:c2:0b:f8:66:ed:93:83:16:23:42:93:df:
44:41:bb:72:e2:1c:07:82:51:73:18:74:15:eb:40:
74:f8:0c:b0:af:02:86:b7:d8:cb:3f:53:f6:6c:0b:
5a:f5:71:48:8d:d2:4f:33:ff:b4:df:78:e2:5d:af:
99:9e:2c:4b:c3:be:98:6e:95:83:58:47:a2:62:e2:
d0:ea:9a:15:9c:06:30:ee:ee:66:fa:95:90:93:45:
e1:3d:2d:e3:09:2f:c3:72:d2:3a:fa:fb:79:4d:95:
30:56:9b:0c:e8:fe:1f:30:be:0c:ee:7a:1f:e0:11:
eb:ee:65:d5:2f:9e:bb:d0:9d:ca:62:dd:d3:4a:04:
9b:7c:39:b4:18:83:be:2c:4c:32:a0:28:e9:3a:3a:
00:01:2a:55:8a:36:ac:cc:52:99:b7:2f:91:d4:52:
4e:fa:ee:62:12:fa:09:98:b4:49:a7:44:68:f8:53:
98:41:46:07:c1:95:f3:fe:80:ae:b3:c5:b6:06:01:
bf:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:67:13:2D:83:7D:57:6F:FF:77:72:27:A3:72:5D:60:1E:D9:10:5D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149859
sbgp-ipAddrBlock: critical
IPv4:
103.189.10.0/23
IPv6:
2001:df0:cac0::/48
Signature Algorithm: sha256WithRSAEncryption
43:98:08:f3:01:b0:fe:8c:a4:30:c6:a1:7f:c5:71:67:c0:f1:
29:0a:bd:51:bf:0a:1b:84:70:a8:be:ba:93:13:8a:e2:30:0e:
20:16:f7:0d:9e:92:5c:43:4b:da:31:be:00:9b:37:00:dc:6d:
a7:27:de:46:20:a0:bd:bc:dd:4e:91:5b:94:d5:49:86:09:f0:
ea:8d:3c:a9:f9:86:4a:a4:ae:6b:a1:a9:91:6c:3d:45:43:2c:
48:dd:b7:ac:31:7c:ba:52:ac:ca:0c:5c:bf:d8:5c:d3:93:b7:
5c:e6:05:12:a2:48:3b:fd:05:68:7a:2c:b6:21:98:4e:08:0f:
26:dc:63:e2:3b:d6:b7:8b:2d:20:71:82:bb:73:ef:9f:ff:02:
cb:68:ef:dc:9a:9a:bc:2e:ff:fe:eb:d9:bc:56:60:71:04:2a:
18:9b:7d:27:0f:be:3b:b8:e9:61:7a:1a:f8:f3:9a:e1:78:35:
e3:c6:8a:c7:a7:69:92:7b:23:52:66:73:10:da:4f:d4:98:dd:
f2:4b:d9:22:bb:f0:f3:67:b9:43:d3:a1:24:6a:89:d9:cf:65:
d6:b6:5d:0a:bb:a5:d1:32:08:80:d4:4e:37:bc:fa:ba:af:cf:
d2:e9:40:88:c9:3d:5e:c0:ee:02:d2:5b:4e:fb:6f:93:f1:5c:
70:3f:dc:07
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:09 2024 by rpki-client on console.sobornost.net