Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5P-TjWiZ0S_Nwm8NnZgSJJy0tE.cer
File: w5P-TjWiZ0S_Nwm8NnZgSJJy0tE.cer (raw, json)
Hash identifier: kuFX/pj24wKJpaat5sv3YJPTRzBdD5hymEexYVGPdp4=
Subject key identifier: C3:93:FE:4E:35:A2:67:44:BF:37:09:BC:36:76:60:48:92:72:D2:D1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020960
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B1AE1/FC8243F464E811EF9C40F85AC4F9AE02/w5P-TjWiZ0S_Nwm8NnZgSJJy0tE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B1AE1/FC8243F464E811EF9C40F85AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Aug 2024 02:55:36 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 152172
IP: 36.50.110.0/23
IP: 2001:df3:48c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133472 (0x20960)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 28 02:55:36 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91B1AE1/serialNumber=C393FE4E35A26744BF3709BC367660489272D2D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:db:d1:79:54:53:f5:38:a0:b8:44:46:e9:ac:
c0:a1:c8:c8:ce:c8:2c:eb:bf:7f:dd:7a:9e:4e:6f:
9c:85:cf:e6:0a:20:e0:77:94:e5:85:0e:6e:9d:0f:
9e:be:17:03:bc:67:5b:2d:77:c7:9e:12:e4:0a:c6:
6f:af:f8:c0:b2:95:4b:77:4c:61:d8:f5:9a:f4:8d:
7c:fe:09:ad:68:b5:4a:02:3e:9e:64:ba:ee:61:9a:
57:50:50:92:30:a2:16:88:e8:3e:84:65:86:7a:f2:
e1:97:69:5e:d2:78:16:a8:15:af:8e:e1:06:12:95:
fd:ac:2d:6e:d0:86:7c:5b:39:22:4f:ed:f5:37:31:
89:61:50:2f:71:ab:f9:a8:4e:a8:52:0d:fc:4c:f7:
7a:09:83:1e:a5:42:f1:61:69:4f:53:3d:ec:19:67:
94:aa:98:24:97:44:13:c0:4f:d0:35:d7:58:c9:9c:
9a:b9:c2:1e:cc:18:72:e2:3a:56:2e:8e:65:6c:de:
c9:65:2b:67:c8:88:f2:4f:fa:4e:a4:de:dc:ff:87:
5d:20:8d:33:53:6d:72:92:ab:da:77:e0:e7:ac:3f:
cb:73:56:97:82:a9:2c:0e:65:c3:3f:dc:09:9d:88:
53:33:42:b6:74:04:3e:51:23:9c:dd:66:dd:8e:5b:
78:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:93:FE:4E:35:A2:67:44:BF:37:09:BC:36:76:60:48:92:72:D2:D1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B1AE1/FC8243F464E811EF9C40F85AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B1AE1/FC8243F464E811EF9C40F85AC4F9AE02/w5P-TjWiZ0S_Nwm8NnZgSJJy0tE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152172
sbgp-ipAddrBlock: critical
IPv4:
36.50.110.0/23
IPv6:
2001:df3:48c0::/48
Signature Algorithm: sha256WithRSAEncryption
8b:6f:0a:03:e3:a9:39:81:45:29:59:09:43:56:fb:c4:d5:57:
47:b1:41:10:e5:df:61:73:7d:1e:6c:1b:ea:45:08:cc:56:55:
ce:21:2a:3f:bb:8a:c7:57:a9:9b:3a:aa:d2:7f:97:66:98:a7:
40:96:a0:2e:ac:bb:94:fe:71:fe:ab:af:c4:cb:72:6d:16:25:
61:20:2c:dc:33:68:f7:89:b1:30:db:56:06:a4:68:82:54:16:
47:35:9b:08:a4:f3:b6:bb:f3:90:25:4f:b6:c1:f5:a7:c2:2f:
b8:92:4b:bb:2e:41:4e:a0:99:47:c9:8d:5b:e1:b7:66:f4:f1:
51:69:b9:ff:11:bf:87:94:9d:07:3d:53:d6:29:6a:e7:2a:6f:
a3:f4:a0:21:b7:dd:cd:d5:e9:56:33:2c:92:2b:5d:f2:9b:59:
bf:84:ff:0f:c8:8c:b4:0c:7b:0a:98:8a:56:a3:c7:f0:cf:dc:
2a:57:e0:cb:31:96:cc:68:2d:13:e0:99:3c:ac:d6:b9:11:cb:
7c:0c:4e:03:46:f3:f6:2e:46:31:68:ed:99:a6:7e:8e:ca:91:
6d:e5:ca:44:78:52:0e:47:6c:59:13:ae:48:b0:1b:c6:b8:ee:
b9:0b:f2:ea:3d:cf:3a:20:9f:38:5f:de:c5:06:34:eb:08:f9:
23:f3:7e:58
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:13 2024 by rpki-client on console.sobornost.net