Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vZJia0ALsU3kGlBTnZYPxd1h3Dc.cer
File: vZJia0ALsU3kGlBTnZYPxd1h3Dc.cer (raw, json)
Hash identifier: mZeFfK9Ya2LunF9GD/c0GB/fqLpaG4BguTvlZvV524E=
Subject key identifier: BD:92:62:6B:40:0B:B1:4D:E4:1A:50:53:9D:96:0F:C5:DD:61:DC:37
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020DF1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91943F0/CA6B94CC74F811EFB3427984C4F9AE02/vZJia0ALsU3kGlBTnZYPxd1h3Dc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91943F0/CA6B94CC74F811EFB3427984C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 17 Sep 2024 13:29:01 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 137841
IP: 103.115.112.0/22
IP: 2402:e640::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134641 (0x20df1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 17 13:29:01 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91943F0/serialNumber=BD92626B400BB14DE41A50539D960FC5DD61DC37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ae:85:b2:8d:de:bd:77:b0:c0:eb:16:8f:85:
49:e8:ab:9d:0f:ea:49:28:9d:95:e0:ed:3f:ff:10:
2f:76:fd:f2:68:84:6d:e6:c6:6b:ab:37:8a:38:3f:
0b:35:41:23:5d:35:32:b1:8e:e3:ba:44:3f:cd:46:
0a:f9:1a:44:9a:21:66:ec:e2:bc:c0:74:70:36:da:
01:22:4f:a3:27:42:fd:bb:32:b8:ff:ac:46:e5:ee:
83:ca:54:73:4b:e2:62:28:a0:27:c9:c1:7c:1c:82:
11:35:e7:83:a7:42:c2:29:25:7a:17:4b:e8:95:c5:
57:0d:ae:3b:f5:ac:4e:e5:31:e1:f8:19:d5:ac:ec:
dd:74:03:94:a8:fb:25:0e:4c:a2:d8:43:bc:e2:67:
a1:0c:37:ed:da:c5:9a:19:0c:da:7d:f9:19:cb:9d:
e9:ab:2f:8a:aa:98:e6:00:67:f1:96:0b:d0:0e:24:
5b:a3:6c:04:05:25:20:27:c6:6f:26:06:85:6d:cd:
38:b5:37:b0:e2:3b:40:66:33:69:4e:04:7c:2b:e7:
81:3e:73:16:43:37:61:4e:7f:cf:0e:e2:6f:a3:7e:
4a:0d:99:02:e3:78:50:bf:13:a3:d6:9f:e1:34:1f:
79:f2:3c:4b:e5:f6:f9:b2:58:75:e0:f5:a0:c6:07:
e6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:92:62:6B:40:0B:B1:4D:E4:1A:50:53:9D:96:0F:C5:DD:61:DC:37
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91943F0/CA6B94CC74F811EFB3427984C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91943F0/CA6B94CC74F811EFB3427984C4F9AE02/vZJia0ALsU3kGlBTnZYPxd1h3Dc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137841
sbgp-ipAddrBlock: critical
IPv4:
103.115.112.0/22
IPv6:
2402:e640::/32
Signature Algorithm: sha256WithRSAEncryption
8f:bc:41:0d:bf:71:7d:2a:00:f4:14:5f:e0:d8:48:f0:e5:fc:
46:a0:30:86:72:cd:65:63:7d:3e:6d:5a:c0:1c:98:0e:6f:25:
a6:23:4c:db:ae:ce:13:c2:91:18:d6:83:aa:56:b8:5a:49:c3:
2b:9f:e6:5f:71:34:f7:7f:df:7b:90:97:74:1c:43:82:80:00:
60:8e:de:a4:a5:5d:93:f9:b5:bc:8d:9c:c4:96:4b:80:50:fe:
b5:b7:6c:2f:e3:b6:ff:5c:50:e1:df:d1:0b:42:62:94:36:37:
14:0a:77:9c:fe:b2:e5:a5:91:25:3e:71:d2:ef:87:4d:2d:d6:
59:b6:b0:29:09:79:e2:cf:7c:a9:7f:cd:68:62:06:82:20:ea:
cc:c2:31:7a:fd:67:91:85:76:ba:a2:66:60:d0:db:23:9d:19:
23:33:51:46:cd:c8:31:d1:e5:12:6a:c4:87:e3:cb:64:45:b6:
79:ac:71:51:55:e1:86:02:0e:56:5a:08:0e:a6:4a:6c:ce:2b:
34:03:cd:f0:0e:b8:ac:3b:d1:fe:c5:ec:83:81:c5:d7:50:51:
af:d1:d0:2a:07:42:7e:d4:16:35:15:22:e5:b1:15:91:3d:2c:
15:fa:f6:f8:40:dc:3c:ce:b7:22:b7:57:8e:cb:1a:96:36:6e:
a5:f6:4d:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:13 2024 by rpki-client on console.sobornost.net