Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wapc5S4RUztkHjtoWrMjxGl2pAE.cer
File: wapc5S4RUztkHjtoWrMjxGl2pAE.cer (raw, json)
Hash identifier: WLA2Oi4bdBzimh29gXb5wSwLEqcWZl2fVLnX8bRsBTY=
Subject key identifier: C1:AA:5C:E5:2E:11:53:3B:64:1E:3B:68:5A:B3:23:C4:69:76:A4:01
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0211DB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/wapc5S4RUztkHjtoWrMjxGl2pAE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Oct 2024 13:53:36 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136902
IP: 103.98.85.0/24
IP: 103.119.208.0/23
IP: 2401:24a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135643 (0x211db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 3 13:53:36 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A912ACC3/serialNumber=C1AA5CE52E11533B641E3B685AB323C46976A401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2f:48:44:ca:d1:c4:8b:a3:f1:e6:b1:eb:1b:
71:e4:3d:87:17:49:8d:0f:6e:d1:00:2a:1c:fe:0e:
9b:d5:cd:ce:ab:55:85:f3:29:80:89:f6:78:56:94:
b7:07:0c:04:47:d1:45:1f:c0:5f:cf:93:f3:ce:ce:
cc:35:59:2e:e7:0d:1b:6a:d8:b2:43:14:9e:84:6c:
13:67:f8:b8:73:b0:cd:84:7e:29:db:ec:37:e1:f8:
d1:9b:6c:aa:47:23:30:2a:5d:62:a1:93:00:95:c2:
1a:7a:fc:c3:6c:46:44:1a:18:5b:a1:dd:49:bf:c7:
ee:dc:cd:7c:85:59:da:84:44:40:61:71:75:cd:e4:
dc:c3:96:11:0a:ed:82:1d:d0:f1:2c:4c:54:66:50:
ec:33:66:20:ed:c6:ec:3c:c6:b2:74:6f:2b:0b:b2:
04:f8:d8:8f:b1:01:9b:ed:96:d5:01:23:c9:61:89:
4b:fb:1e:f6:74:84:36:d6:8b:b3:db:0a:8f:b0:0f:
74:31:07:c0:1a:22:ff:a2:a7:b7:c3:da:cf:d6:59:
e1:b0:d1:78:d3:86:36:e9:e0:0d:d5:94:76:97:55:
a5:3b:d3:5a:55:f9:55:90:1b:6e:02:45:a8:96:fa:
b9:35:f9:69:9e:f0:b8:34:33:2c:14:8d:63:71:34:
fd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:AA:5C:E5:2E:11:53:3B:64:1E:3B:68:5A:B3:23:C4:69:76:A4:01
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/wapc5S4RUztkHjtoWrMjxGl2pAE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136902
sbgp-ipAddrBlock: critical
IPv4:
103.98.85.0/24
103.119.208.0/23
IPv6:
2401:24a0::/32
Signature Algorithm: sha256WithRSAEncryption
ab:4d:7c:9d:c8:3c:7b:1c:13:ce:dd:53:ea:d7:e1:48:92:cb:
6c:69:f7:a0:33:81:af:f4:92:cd:3f:ef:7c:71:ac:b6:c6:cb:
99:45:21:c1:95:f9:1c:6d:a1:a1:58:00:d0:b6:a2:c1:e2:47:
81:f2:41:0b:07:04:31:9b:bb:73:99:6e:79:9b:5f:8a:9f:df:
fd:d3:38:aa:ca:55:9c:57:8a:d1:90:3b:a2:78:4e:b1:6f:30:
12:e7:85:bd:2e:d8:6a:4f:84:be:d2:4f:fc:4c:fb:c5:69:dc:
74:dc:14:c3:42:1f:6d:4b:c9:cc:d0:e5:f2:71:e1:da:59:3b:
b1:76:e3:2e:fa:a0:b2:8d:59:1c:26:9f:92:d5:01:8a:9d:27:
c2:3e:02:a7:a3:2c:af:39:5e:c7:b6:44:f1:5b:eb:b9:5e:66:
2c:23:7f:b3:65:7a:13:ab:aa:37:b7:b0:75:94:f9:32:b8:4c:
68:af:fb:81:64:e4:dd:5e:3a:2b:b2:47:5c:67:f9:ae:e9:5e:
21:4c:4b:2d:f7:75:23:71:b7:2f:5d:8e:a7:ed:36:13:14:10:
ce:98:81:a0:4c:1c:d0:f9:21:e2:bd:4b:cb:66:d6:11:ce:35:
11:43:1f:f0:b7:e4:41:b5:64:c6:82:34:9d:d4:f5:42:84:e1:
e9:93:b8:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:14 2024 by rpki-client on console.sobornost.net