Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUIqDEz_JI1Rc1jr33tOgCuswOc.cer
File: wUIqDEz_JI1Rc1jr33tOgCuswOc.cer (raw, json)
Hash identifier: 29WRwKHCwXl2ysjZrn659lni2gIR2Gt98n1wJBXkht0=
Subject key identifier: C1:42:2A:0C:4C:FF:24:8D:51:73:58:EB:DF:7B:4E:80:2B:AC:C0:E7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020E9E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EB45A/1E448A481DA111E29F56079308B02CD2/wUIqDEz_JI1Rc1jr33tOgCuswOc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EB45A/1E448A481DA111E29F56079308B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Sep 2024 15:06:56 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 45945
IP: 43.245.124.0/22
IP: 103.1.148.0/22
IP: 124.150.140.0/22
IP: 2401:fd00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134814 (0x20e9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 20 15:06:56 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91EB45A/serialNumber=C1422A0C4CFF248D517358EBDF7B4E802BACC0E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5e:a8:19:00:68:79:77:28:3a:4e:ef:17:e7:
85:dd:5a:db:82:77:13:f8:45:0a:04:2c:03:a6:16:
61:37:91:34:28:d6:85:fb:49:6d:47:a6:1b:3f:7f:
ad:f1:07:f4:ff:71:b5:1b:6d:58:66:3f:91:52:11:
cf:93:26:51:53:1d:de:88:58:e3:7d:6a:31:e4:0a:
71:2f:eb:0e:57:36:5b:3b:ac:1a:7b:6a:06:de:4b:
8f:7e:bb:f6:84:94:76:74:23:d8:8a:e1:67:31:48:
88:a0:e0:59:bd:a3:da:0a:33:b1:a2:c5:c9:c5:0d:
34:f4:81:74:52:c5:a4:0b:fc:67:1c:36:af:d0:73:
a1:2c:70:5e:ec:4f:40:96:c3:11:34:6a:62:84:cd:
54:27:7b:c4:ae:7f:db:c1:b3:7f:98:23:fc:3d:15:
99:b0:8f:fb:66:2b:84:e1:d9:76:a8:29:1a:22:84:
37:c0:68:2f:a9:77:da:bd:ed:89:21:c9:c3:8c:90:
c4:f0:ff:af:50:36:f5:61:a6:6f:90:78:e2:6f:70:
ac:67:12:3a:c1:a2:ff:93:a1:34:07:55:67:b9:0c:
cb:63:8c:51:f3:89:d6:99:06:cd:7b:a7:30:48:c4:
52:67:c7:4a:97:60:db:f5:e7:02:87:f5:d4:86:31:
90:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:42:2A:0C:4C:FF:24:8D:51:73:58:EB:DF:7B:4E:80:2B:AC:C0:E7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EB45A/1E448A481DA111E29F56079308B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EB45A/1E448A481DA111E29F56079308B02CD2/wUIqDEz_JI1Rc1jr33tOgCuswOc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45945
sbgp-ipAddrBlock: critical
IPv4:
43.245.124.0/22
103.1.148.0/22
124.150.140.0/22
IPv6:
2401:fd00::/32
Signature Algorithm: sha256WithRSAEncryption
75:3c:68:01:8c:1b:74:a2:d5:40:c0:96:16:46:f6:2d:37:f1:
e7:2d:fd:a5:de:b2:4d:92:70:95:ad:83:ce:81:e2:0b:80:5f:
1b:92:8e:76:d9:67:1b:ca:91:47:56:2b:f2:f8:23:69:51:e5:
84:91:d1:c2:df:9f:7d:87:55:6c:f4:c8:27:d8:9a:ac:3d:b8:
a2:55:18:ba:87:96:5f:2d:1b:5d:06:ae:a4:30:20:35:d0:1b:
be:93:51:e3:77:eb:01:ba:85:e5:e6:7f:5f:dd:66:7a:84:f6:
75:e9:d9:59:8c:61:3b:7c:fa:aa:81:96:19:f8:00:83:ef:b0:
15:0d:37:9b:ea:48:94:90:3d:be:7d:de:85:eb:6a:44:e6:bd:
a5:92:1f:23:8c:8d:7b:7c:05:ad:0d:cd:6d:79:04:85:28:ac:
35:e8:3b:ef:e6:14:46:b9:fd:db:8b:6b:92:bb:c6:6d:51:7d:
db:8e:a0:97:3a:64:4f:5d:35:64:30:37:8b:f9:a5:3a:e1:b9:
c2:29:4e:3d:cb:3e:91:9b:e9:1d:d3:6c:66:46:06:0e:51:54:
89:fd:12:6a:c2:19:07:ba:81:a1:59:58:94:6b:19:1d:f7:8b:
14:57:7b:ff:20:f1:93:4e:49:aa:b5:c9:59:52:98:ab:c8:16:
d1:13:69:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:13 2024 by rpki-client on console.sobornost.net