Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer
File: uOVJaYlT9l5x-4S20zjAisF4Glo.cer (raw, json)
Hash identifier: +zhsaeSMiDvmpfLTmnPzzbbzjCemg1T7PP/pFzYJ7IE=
Subject key identifier: B8:E5:49:69:89:53:F6:5E:71:FB:84:B6:D3:38:C0:8A:C1:78:1A:5A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F699
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 02 Jun 2024 21:50:44 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 140626
IP: 103.151.60.0/23
IP: 2001:df3:ab80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128665 (0x1f699)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 2 21:50:44 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91B5C70/serialNumber=B8E549698953F65E71FB84B6D338C08AC1781A5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:90:7d:fb:bd:ef:96:ff:99:37:34:cc:e7:8d:
d4:b3:9a:3d:9e:2e:46:46:4b:4b:5d:26:a4:e4:64:
17:78:8b:2b:ea:f9:b5:d0:75:6b:8a:ab:2c:70:69:
66:b1:aa:d7:8b:95:e6:f8:11:df:02:f0:67:91:8d:
d9:ad:b5:6b:60:b6:91:e6:b8:d5:54:3b:2a:ad:0c:
45:a0:8c:3f:9e:b1:21:f7:b3:42:a7:af:bb:96:d9:
68:03:3c:9c:95:ed:71:45:8d:84:83:23:50:92:54:
42:88:ac:36:ba:94:55:2e:3f:ce:78:5a:ea:d3:a6:
20:01:cc:39:62:c7:be:22:4a:44:10:1f:69:44:64:
71:f3:13:d3:ee:68:3d:83:d3:94:98:c1:f8:50:e9:
c8:7d:1b:c5:c4:a8:35:e2:cd:af:31:dd:8f:b8:f7:
a2:a3:24:f8:c5:34:51:45:68:70:47:d5:14:d5:42:
b3:99:1d:f4:39:12:21:86:68:93:67:32:9e:6f:6e:
d1:6f:d1:75:a6:8c:46:48:90:fe:01:9c:39:de:fa:
ed:2f:2c:68:e0:42:67:fe:0b:65:bb:22:15:3c:8b:
9a:6e:a8:2c:30:dd:94:8d:47:6f:04:1a:83:16:b0:
20:91:9b:8c:5c:6c:85:e3:71:14:e1:31:49:b0:3a:
92:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E5:49:69:89:53:F6:5E:71:FB:84:B6:D3:38:C0:8A:C1:78:1A:5A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140626
sbgp-ipAddrBlock: critical
IPv4:
103.151.60.0/23
IPv6:
2001:df3:ab80::/48
Signature Algorithm: sha256WithRSAEncryption
18:36:4d:24:b3:c6:0c:0e:20:28:76:60:ba:30:e0:6e:97:26:
f3:47:c1:de:63:f6:fb:55:a6:72:64:93:a5:66:49:d4:0b:fb:
21:98:f0:0e:f0:db:be:c9:dd:e3:e6:e0:5b:4a:07:21:f9:47:
e2:91:93:05:71:3e:e9:30:87:95:9e:00:50:ce:7f:0e:e9:2f:
81:09:bc:77:21:c7:b0:39:9e:3d:e7:b7:69:42:e8:00:0d:e5:
5a:fd:04:3f:b7:2c:e0:e6:ae:7b:e1:a2:87:8b:6d:b2:db:3e:
47:8b:0a:59:32:79:88:43:42:7d:66:c0:7a:d7:86:69:ff:fd:
2c:4f:94:e3:00:ba:9f:34:4f:e8:b0:11:fc:10:63:ac:e1:60:
fd:6e:97:df:8a:cf:be:8e:7e:82:22:88:9f:d1:06:53:a0:87:
8d:cd:7e:9e:76:03:cf:d3:ad:68:ff:6d:cf:cd:6a:50:7a:31:
7b:63:de:b2:79:f4:a0:24:3f:91:cf:9e:0b:60:d0:f8:6b:06:
f4:cb:b8:c7:17:1c:7e:0c:af:88:39:3d:72:eb:4b:f7:99:98:
b9:c7:79:11:d8:e4:d1:19:11:d7:1d:bc:a6:aa:f2:fa:ec:2a:
a1:37:2d:d6:63:60:b1:da:54:b7:c0:16:9f:3e:54:74:0c:57:
bc:37:9e:87
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:12 2024 by rpki-client on console.sobornost.net