Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer
File: rUk9yaPSQDSDYoWHBR93lRWJFnk.cer (raw, json)
Hash identifier: rf+8HOkeVVS4wtRSKd9rKpK8EogqMewOR/Aa0UChT1w=
Subject key identifier: AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0205A3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 07 Aug 2024 16:15:09 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 150134
IP: 103.172.136.0/24
IP: 2001:df7:7180::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132515 (0x205a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 7 16:15:09 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A918B418/serialNumber=AD493DC9A3D2403483628587051F779515891679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ec:03:69:ff:03:c1:68:78:f2:9b:f2:eb:0e:
0b:b2:a6:db:23:1e:0a:da:12:fc:aa:00:de:5b:e3:
1f:5c:dc:f8:6d:56:37:32:7e:8c:e1:f1:e3:d4:f3:
14:10:94:20:d0:89:e9:11:1c:18:7b:04:5d:fa:2d:
4d:64:5f:27:3a:c0:b6:48:1f:7d:bb:f8:01:ec:ac:
98:c1:31:94:e7:23:ed:7a:f9:e6:d3:63:26:7a:4e:
2f:a1:b6:5c:52:03:3d:96:2d:1e:05:ab:c8:74:99:
75:57:82:e5:6e:82:1e:b2:97:c6:89:ce:a6:63:97:
e0:4c:12:6e:dc:12:28:50:16:15:52:cb:d8:66:05:
cc:c7:ba:de:35:f2:b2:ec:2d:3f:48:dc:8b:3f:3d:
20:7f:2f:24:5a:4f:71:37:fb:89:ef:4c:64:7f:d2:
a7:69:84:8e:55:63:3b:a5:c1:0e:9c:1b:23:e2:3f:
32:40:38:5d:f6:97:0b:d0:9c:b8:f3:95:f1:5b:4d:
31:4e:dc:f5:35:4e:1b:ef:59:19:a8:ce:f2:5a:a4:
49:35:80:d2:05:25:36:7f:ac:c3:3e:be:7e:ed:04:
44:f8:b5:5d:fe:5e:ab:5d:14:1c:14:7f:4e:0c:41:
62:4f:51:82:12:a7:f6:79:61:22:35:78:fc:16:46:
bd:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150134
sbgp-ipAddrBlock: critical
IPv4:
103.172.136.0/24
IPv6:
2001:df7:7180::/48
Signature Algorithm: sha256WithRSAEncryption
84:18:6c:28:69:8f:89:ed:e3:bb:da:68:67:5d:a3:dc:32:1d:
8b:e4:b3:64:4a:c0:14:58:3e:48:f3:2b:dd:b3:3b:16:20:45:
23:12:1f:b3:e1:4f:f4:2f:aa:cb:ce:e3:b6:e6:52:5b:d2:4c:
ad:33:3f:8b:a7:1d:3a:0e:b2:52:73:a8:23:b0:df:f5:11:34:
37:d4:46:c2:e7:8f:b1:03:53:d0:34:01:10:8b:0a:a0:e6:03:
07:3a:44:0b:a6:ee:b4:56:55:7a:db:e0:92:76:ae:24:5e:e6:
14:12:07:a8:8d:66:64:97:55:77:e6:de:47:0c:cf:c9:c7:b2:
ae:d1:61:d7:6d:4a:6c:ab:06:26:63:90:c4:c3:e9:e2:b5:76:
b0:6d:1a:d1:f2:cf:68:f4:15:c4:62:93:32:47:1e:f3:be:34:
1e:b5:78:40:70:27:7b:42:3f:08:ba:02:d1:40:96:a4:32:06:
27:2f:b8:76:da:f6:7d:0b:43:a5:09:b7:ee:d8:8c:1a:27:03:
8f:47:de:ab:ed:40:2e:d2:d1:2e:1a:f3:1c:81:6d:5c:81:eb:
a6:75:59:f9:11:7f:ac:ce:4e:68:db:ec:32:64:47:61:7f:cd:
26:9a:30:ac:63:ed:78:58:26:22:2a:c8:bc:57:8a:94:fa:04:
66:02:2d:62
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAgWjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgwNzE2MTUwOVoXDTI1MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOEI0MTgxMTAvBgNVBAUTKEFENDkzREM5QTNEMjQwMzQ4MzYyODU4
NzA1MUY3Nzk1MTU4OTE2NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDO7ANp/wPBaHjym/LrDguyptsjHgraEvyqAN5b4x9c3PhtVjcyfozh8ePU8xQQ
lCDQiekRHBh7BF36LU1kXyc6wLZIH327+AHsrJjBMZTnI+16+ebTYyZ6Ti+htlxS
Az2WLR4Fq8h0mXVXguVugh6yl8aJzqZjl+BMEm7cEihQFhVSy9hmBczHut418rLs
LT9I3Is/PSB/LyRaT3E3+4nvTGR/0qdphI5VYzulwQ6cGyPiPzJAOF32lwvQnLjz
lfFbTTFO3PU1ThvvWRmozvJapEk1gNIFJTZ/rMM+vn7tBET4tV3+XqtdFBwUf04M
QWJPUYISp/Z5YSI1ePwWRr2bAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUrUk9yaPS
QDSDYoWHBR93lRWJFnkwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThCNDE4L0FEMERDNDgwMUM0RjExRURBQUQzMTM4NkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4QjQxOC9BRDBEQzQ4MDFDNEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQ
U1FEU0RZb1dIQlI5M2xSV0pGbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAkp2MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ6yIMA8EAgAC
MAkDBwAgAQ33cYAwDQYJKoZIhvcNAQELBQADggEBAIQYbChpj4nt47vaaGddo9wy
HYvks2RKwBRYPkjzK92zOxYgRSMSH7PhT/QvqsvO47bmUlvSTK0zP4unHToOslJz
qCOw3/URNDfURsLnj7EDU9A0ARCLCqDmAwc6RAum7rRWVXrb4JJ2riRe5hQSB6iN
ZmSXVXfm3kcMz8nHsq7RYddtSmyrBiZjkMTD6eK1drBtGtHyz2j0FcRikzJHHvO+
NB61eEBwJ3tCPwi6AtFAlqQyBicvuHba9n0LQ6UJt+7YjBonA49H3qvtQC7S0S4a
8xyBbVyB66Z1WfkRf6zOTmjb7DJkR2F/zSaaMKxj7XhYJiIqyLxXipT6BGYCLWI=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:10 2024 by rpki-client on console.sobornost.net