Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer
File: up0rragmh4TwCuhYcC744p5ytLw.cer (raw, json)
Hash identifier: yc1G3dXiuWIt7lCOTj4Jgvz+iGxOyKXiiR37J/16gqM=
Subject key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F34B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 23 May 2024 00:29:23 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 17480
AS: 131248
AS: 149003
IP: 43.255.236.0/22
IP: 103.23.52.0/22
IP: 113.21.96.0/19
IP: 202.171.64.0/20
IP: 203.20.74.0/23
IP: 203.147.64.0 -- 203.147.87.255
IP: 220.156.160.0/20
IP: 2401:c00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127819 (0x1f34b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 23 00:29:23 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4b:8c:8a:e6:86:b3:c9:a2:d6:e1:3a:21:96:
17:88:f5:05:f9:65:f7:47:e8:c0:c7:57:d6:74:bc:
1f:c4:e2:01:07:72:ea:82:2c:d9:0e:0a:78:3f:8d:
06:16:17:e6:c0:35:b6:3f:97:86:9b:3e:01:dd:3d:
d4:78:d7:53:ba:18:05:0c:9c:49:04:d9:35:24:d0:
8f:30:cf:c4:8a:4f:17:07:5a:59:92:85:41:d0:ad:
22:21:fb:16:04:cb:8b:e1:9f:f6:19:65:0d:a5:29:
ef:a9:92:83:7b:d7:04:93:9b:de:f9:3d:8d:fa:78:
e3:7b:a8:47:32:4a:85:c4:41:a8:0e:11:f3:28:74:
74:68:cb:1d:07:39:f9:87:b3:0e:56:bf:ad:ad:9e:
77:d2:78:cd:dc:d5:8a:db:94:73:e5:b5:b7:82:58:
19:35:c7:e2:e8:87:10:39:f8:e7:92:91:27:aa:c6:
a8:68:e8:b8:94:d5:35:33:77:5f:a5:09:85:b6:12:
f5:b7:34:88:f4:08:05:fc:1b:24:73:c0:c7:62:2b:
21:c5:a3:0e:89:13:43:17:59:1f:8c:90:da:5f:a3:
6a:93:7a:c5:28:64:9b:51:c2:dc:d4:2d:54:a9:e4:
e6:7f:6d:51:3a:d8:6b:07:e4:e1:fd:63:68:9f:d6:
42:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17480
131248
149003
sbgp-ipAddrBlock: critical
IPv4:
43.255.236.0/22
103.23.52.0/22
113.21.96.0/19
202.171.64.0/20
203.20.74.0/23
203.147.64.0-203.147.87.255
220.156.160.0/20
IPv6:
2401:c00::/32
Signature Algorithm: sha256WithRSAEncryption
bd:8d:80:8e:a7:6f:99:4d:91:b8:23:64:3d:e3:81:c1:fc:8f:
8a:c2:1d:ae:5b:70:b7:f5:99:af:c2:bb:fa:9d:fb:f2:f4:68:
ea:f3:87:d1:00:cf:2a:ae:5c:d4:2a:c9:50:31:7e:d3:0d:a7:
85:2a:65:29:6c:55:e1:96:c8:17:51:d3:7e:14:a4:a2:51:59:
be:e9:40:7c:aa:e6:31:69:a9:21:ac:1e:ca:1c:30:ed:5d:e2:
fa:07:47:5e:1e:3f:40:8f:ba:17:3c:a1:17:d8:3f:5f:88:3c:
e3:35:ea:19:af:c3:c2:93:b5:48:e5:87:17:f5:bf:25:2b:58:
aa:25:cd:7b:20:17:4d:1b:b9:75:66:a0:49:29:1c:aa:7b:eb:
a1:c5:67:17:c6:33:a3:d6:e1:4c:b2:3c:cf:0f:fd:15:ae:7d:
d2:49:38:bf:13:10:33:b3:2b:c4:99:b9:fb:40:fe:58:e0:d7:
6b:20:6d:ae:3f:7e:50:97:c4:9f:29:67:1d:bd:71:a7:ce:9f:
01:7b:51:7f:5b:89:14:68:5c:be:d2:aa:ca:a9:29:63:da:ce:
4c:95:c7:c5:f6:40:46:73:93:44:b6:22:64:d7:1b:16:b8:73:
9d:e8:9a:f4:7f:37:14:42:86:cd:85:33:1d:2b:7d:98:45:7a:
9c:b9:91:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:12 2024 by rpki-client on console.sobornost.net