Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer
File: ukny4CpjXdB19WQWbxEfX63lp8s.cer (raw, json)
Hash identifier: 1B0545pZvIaREQz2v9gmQZ9x9HfBz5rdC3/PZ/gx1hw=
Subject key identifier: BA:49:F2:E0:2A:63:5D:D0:75:F5:64:16:6F:11:1F:5F:AD:E5:A7:CB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FFBE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 12 Jul 2024 16:03:36 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 139862
IP: 203.5.32.0/21
IP: 203.57.250.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131006 (0x1ffbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 12 16:03:36 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A916988B/serialNumber=BA49F2E02A635DD075F564166F111F5FADE5A7CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b6:d0:d4:17:37:fb:89:6b:4a:89:e8:52:b7:
f6:56:9c:11:4f:33:16:93:d8:fe:71:5b:e8:16:8a:
99:99:0e:23:e9:2f:4f:81:71:8a:f3:b9:be:88:2e:
c7:2f:f9:9f:50:8a:b9:fc:c0:86:71:43:65:6e:8c:
2a:07:b9:66:84:ed:68:ed:3a:5f:1a:a6:f4:03:16:
f9:ae:4d:2e:67:c9:f1:31:6d:10:b2:18:75:36:bf:
d2:0b:1a:f8:dc:91:ce:d0:01:4e:57:c4:06:eb:5d:
78:94:73:7f:88:c8:77:fc:2b:59:72:7b:4c:b8:a6:
b5:7f:e1:75:b4:35:18:c9:cb:71:2c:4b:8d:96:5b:
ea:7f:04:1b:5e:3a:df:4d:60:62:96:ad:94:ea:97:
b7:b4:75:21:c6:ae:9c:ef:f7:2f:7a:9e:c4:3f:48:
d9:36:79:7b:4c:73:c7:81:ea:a5:b7:1b:69:7a:3a:
45:d0:8a:27:78:69:8c:2e:d9:03:b0:a4:8b:28:40:
cf:f8:1d:f8:e4:86:06:b8:3c:fb:20:c9:51:1d:54:
08:55:38:ad:d4:65:76:05:4f:62:e3:9e:89:1a:61:
65:f0:a4:a2:5f:50:aa:6a:22:99:2a:e5:56:83:0e:
8a:3b:64:3c:e9:56:2f:2e:ad:4d:2f:fb:30:4b:87:
cc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:49:F2:E0:2A:63:5D:D0:75:F5:64:16:6F:11:1F:5F:AD:E5:A7:CB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139862
sbgp-ipAddrBlock: critical
IPv4:
203.5.32.0/21
203.57.250.0/23
Signature Algorithm: sha256WithRSAEncryption
07:f2:a2:b9:f6:44:9c:99:a1:b9:c8:19:84:d7:4d:0a:78:4c:
59:66:cb:fd:78:8b:09:86:03:b1:f3:62:71:08:b5:94:04:b1:
f4:3d:96:6b:71:fa:b9:78:99:c9:07:bc:ee:2a:c5:42:e4:c8:
01:d4:7e:12:dc:c2:5b:ae:b9:f1:5b:06:b0:1d:e0:61:7a:9b:
dc:bf:27:1b:64:2e:ef:b5:6a:40:9d:bc:a2:34:a3:1a:a1:91:
e7:9b:75:a1:e3:eb:4e:fb:73:98:13:a5:58:74:ba:2e:a3:fc:
e2:8a:cf:94:6a:c2:dd:65:6c:1f:3c:91:a8:34:31:32:da:a2:
29:31:08:5a:cd:7f:bd:0c:a9:bd:cd:1b:4a:43:59:e4:f9:57:
7d:a9:b1:32:e3:3c:fe:91:3a:65:14:b0:7a:5d:4e:f9:06:08:
de:83:5c:e5:07:59:e0:e5:58:3e:ce:f5:9e:5e:92:01:58:7a:
5c:86:77:7b:7b:d4:16:fa:f4:86:a6:2e:6f:46:ca:5e:1f:53:
90:75:cc:55:e2:88:5a:0b:37:00:4b:72:3c:4b:d2:fc:56:33:
c5:d1:8e:22:a7:d1:39:07:38:c1:12:16:c9:0d:9a:91:19:92:
df:0f:5a:c0:7c:00:b6:f5:36:7e:23:bd:e2:95:fa:37:f7:37:
99:f7:0d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:12 2024 by rpki-client on console.sobornost.net