Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer
File: wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer (raw, json)
Hash identifier: et6YrVOcNJriBu1GjmTRglmVTNIGYQpN0WruJ/W7g+o=
Subject key identifier: C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02020B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 24 Jul 2024 17:01:39 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 151498
IP: 103.234.126.0/23
IP: 2001:df2:a8c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131595 (0x2020b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 24 17:01:39 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A917FED9/serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2f:28:8e:42:c7:9b:05:7c:5f:94:c2:f7:fe:
2a:d1:d2:f9:de:d5:d6:43:a7:27:f1:30:57:89:0d:
a5:cd:a0:8f:38:78:0b:83:d0:bc:72:1b:38:76:a5:
38:29:7d:27:a6:f9:2c:ca:1a:41:9c:c0:98:09:f7:
47:00:e5:ec:ae:e9:7e:0e:01:c1:93:5e:37:7b:5c:
98:7a:ea:50:a2:72:74:c3:62:e1:15:93:52:f7:c7:
71:3f:0b:48:fe:ab:4d:b2:84:87:7a:e3:03:20:f2:
90:e2:23:cc:43:c0:2f:7b:c1:95:50:50:08:85:5f:
42:35:ae:77:f0:c5:cd:4f:d2:1c:95:a4:20:10:f1:
fc:93:85:2c:81:ab:1f:03:52:ed:36:fd:9a:da:d2:
67:58:37:13:c5:73:51:87:15:aa:d0:4f:25:df:c1:
dc:bf:61:e5:cb:6e:c1:9a:7f:a3:a2:ab:0e:96:02:
8b:22:66:f7:e0:00:8a:6e:17:f4:3c:4b:46:25:d1:
cd:ea:55:15:2b:48:87:3e:90:53:8c:b9:9c:94:9a:
f5:11:5f:5f:56:f3:fb:14:90:6a:82:50:43:99:2c:
a3:c2:90:d1:59:79:93:d6:2a:36:8c:84:5a:52:a6:
23:d2:f9:09:fd:41:55:a3:18:f1:cb:2d:39:a2:e8:
2b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151498
sbgp-ipAddrBlock: critical
IPv4:
103.234.126.0/23
IPv6:
2001:df2:a8c0::/48
Signature Algorithm: sha256WithRSAEncryption
7a:38:77:1d:2a:de:39:a9:73:4f:04:96:17:94:d0:a2:41:fc:
63:36:f9:25:d3:30:e0:50:b1:6c:1a:97:c4:af:a2:af:1c:2a:
76:8d:9a:9a:46:08:d3:e1:07:1a:b7:85:6f:d4:7d:41:ef:ef:
25:e9:ef:2b:cc:2e:2b:61:0c:63:7e:5a:c0:ea:20:a0:07:11:
44:7b:98:44:de:b4:4a:79:34:43:8e:94:e5:cc:b1:7b:9c:d0:
53:7f:37:7d:da:00:a6:6c:f8:5c:c3:e0:76:56:63:05:e7:b8:
24:b9:53:79:eb:8d:26:fb:e5:7d:3b:65:20:7c:6d:d3:b7:3b:
aa:e5:34:e4:f0:8a:5e:54:f8:46:30:b4:fd:5e:f1:0a:37:c6:
f2:4e:a3:7d:84:a9:d3:64:09:b4:6f:21:4c:db:e2:87:50:53:
b8:20:a3:8d:3a:0b:c6:44:cb:c3:73:ca:2a:bb:49:e1:d4:69:
36:d2:f8:26:30:22:15:aa:f9:ee:1b:7c:ad:1f:9a:64:8f:41:
0d:3b:88:06:d1:32:31:7d:ac:f5:01:a1:88:7b:e3:f4:13:99:
c5:11:f1:4e:c0:bd:94:91:fe:4f:c5:5f:1d:15:ef:35:75:1a:
50:b0:05:08:f4:3e:dd:2f:94:db:76:c2:ba:81:ff:96:a3:e0:
fa:ad:44:4b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:13 2024 by rpki-client on console.sobornost.net