Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer
File: uMGYUq7H2lGkUL59p9lYc77eNzQ.cer (raw, json)
Hash identifier: URz3DUduPK9NyCaamXMykKVo9d5xCXh3upHEZv1xblQ=
Subject key identifier: B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021350
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Oct 2024 07:52:46 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 139032
IP: 103.138.180.0/24
IP: 103.142.50.0/24
IP: 2001:df0:4b80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136016 (0x21350)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 10 07:52:46 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A917C78E/serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:de:74:15:c0:96:d9:46:7b:83:f8:77:f5:53:
c1:47:2a:62:81:93:b5:e0:12:8f:32:23:f8:ef:3f:
e4:79:4f:9b:f0:6d:b9:ec:1f:68:83:64:76:69:01:
41:f8:b9:b0:e0:f3:a6:c8:6b:01:20:a7:ee:3d:ed:
7e:b9:b2:1f:2f:b8:33:8d:06:d5:80:10:36:7d:3f:
51:38:02:33:cc:e5:10:98:43:3e:e5:e5:55:70:f6:
dd:63:95:5c:b2:53:15:75:4b:e5:b5:a2:46:31:e6:
e0:31:5b:48:42:48:37:1d:ed:25:8c:c0:89:fd:b2:
08:30:c6:3f:63:bc:69:ae:40:0a:ce:af:67:f9:d9:
9d:ad:fc:cf:21:f4:64:4f:2a:cd:76:e5:c0:95:aa:
de:3a:ee:0a:f1:10:6d:cc:58:10:45:bb:61:17:52:
dc:97:85:94:46:77:80:1b:5d:b2:c7:35:d8:58:91:
c8:65:f6:2b:00:1b:c4:2a:57:22:1d:b9:c0:ef:21:
f1:79:10:e8:6b:cf:86:cc:ad:cc:e3:e7:00:c1:6b:
08:46:13:4a:2c:5b:c1:ee:32:78:62:35:fa:3d:19:
cf:3e:45:b9:e6:13:fa:c7:6a:dc:83:f2:d9:55:44:
60:df:ca:65:17:2c:06:37:1e:ba:1b:d4:24:59:8f:
4c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139032
sbgp-ipAddrBlock: critical
IPv4:
103.138.180.0/24
103.142.50.0/24
IPv6:
2001:df0:4b80::/48
Signature Algorithm: sha256WithRSAEncryption
92:41:73:d5:69:6b:42:cd:34:20:e2:a7:44:79:10:59:b6:b1:
39:b0:63:06:3f:9a:64:94:83:fd:64:5e:5e:99:cf:43:6c:a5:
19:81:f3:af:2f:fe:0b:fd:67:12:84:bd:72:a5:ca:39:4b:24:
8e:fc:39:67:87:3b:d1:37:89:68:ab:c6:9c:7d:ef:a3:02:d7:
ad:e3:da:25:ac:9e:fd:eb:19:21:f3:cc:a4:90:26:4a:af:94:
56:14:c3:57:aa:ee:42:f0:b5:ae:fb:b3:64:96:bf:11:d3:c8:
2b:53:67:3a:56:67:f7:21:8f:5f:e9:9a:2f:4d:2e:1d:77:2d:
ce:a7:bf:9f:1e:ae:58:08:f6:34:ea:86:b1:19:a9:4f:c5:9b:
c6:a4:c5:c7:5e:48:80:49:f5:5d:5b:96:07:51:2f:30:4a:c8:
ba:fe:86:65:05:bd:d6:56:7d:4d:23:a3:42:bd:e2:7c:d1:17:
11:db:60:01:ec:18:99:b9:05:3d:2a:62:14:05:d2:01:2b:5d:
5d:56:3c:6d:c3:54:10:e2:19:d9:8c:21:ae:77:58:8b:e0:37:
94:5e:c6:5b:6a:2f:73:be:8e:f3:eb:39:36:62:7e:cd:5c:d4:
e4:29:c8:37:42:4c:37:9c:b8:08:15:28:e6:46:68:08:b0:59:
5d:4a:cd:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:12 2024 by rpki-client on console.sobornost.net