Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wg3R4FYYZcBSLH4nS87SSTC78EU.cer
File: wg3R4FYYZcBSLH4nS87SSTC78EU.cer (raw, json)
Hash identifier: q2eNprTfwV76VuGl7St7cMLwpSMU5Ht+XoZHOzzBP10=
Subject key identifier: C2:0D:D1:E0:56:18:65:C0:52:2C:7E:27:4B:CE:D2:49:30:BB:F0:45
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0208D4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/wg3R4FYYZcBSLH4nS87SSTC78EU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 25 Aug 2024 17:16:08 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 132376
IP: 103.15.136.0/22
IP: 2001:df1:5900::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133332 (0x208d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 25 17:16:08 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91B08F7/serialNumber=C20DD1E0561865C0522C7E274BCED24930BBF045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fa:4f:27:05:7d:df:9f:48:6c:7c:01:17:d9:
dc:e7:26:cc:8b:45:63:a4:39:0d:57:a7:47:73:f0:
9f:a5:bc:d2:4c:2b:c3:80:bb:69:21:a7:d1:6c:7e:
27:1d:c9:45:50:65:93:46:50:d6:6e:09:a1:3f:ef:
f6:9c:d6:2a:df:7b:fb:48:dd:c9:b8:9a:3f:6d:f0:
a7:de:17:8e:e6:bb:24:28:7b:5f:ff:9a:e7:0c:83:
d4:32:30:69:11:14:9a:09:79:9d:a4:db:f1:68:90:
ab:58:b1:a6:70:81:58:48:2b:6f:a4:c4:1e:15:85:
a2:12:91:be:1f:d5:21:12:14:3a:0c:a5:fa:7f:a2:
f3:01:9b:50:42:71:b4:96:09:41:86:0c:7d:6a:51:
2e:08:87:cc:7a:50:3a:e9:49:e4:1a:4f:bb:21:e8:
ac:67:12:58:d3:08:b0:88:e2:53:97:7a:52:aa:5d:
68:d4:70:16:e4:a3:cc:e1:32:78:1c:cc:c0:eb:5f:
04:f4:52:14:fa:21:7e:e0:f3:de:0e:aa:61:f2:aa:
f7:bf:64:1b:15:06:f4:e7:4b:a7:96:90:b1:88:5c:
76:3c:9a:f4:60:e0:da:aa:a1:cc:c6:27:f1:2c:7d:
c1:d0:53:73:3b:a7:f0:ab:d3:d7:08:8f:d9:51:78:
54:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:0D:D1:E0:56:18:65:C0:52:2C:7E:27:4B:CE:D2:49:30:BB:F0:45
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/wg3R4FYYZcBSLH4nS87SSTC78EU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132376
sbgp-ipAddrBlock: critical
IPv4:
103.15.136.0/22
IPv6:
2001:df1:5900::/48
Signature Algorithm: sha256WithRSAEncryption
74:5e:4c:e7:75:b0:41:c9:d1:a8:f5:05:20:4e:5a:b3:d8:54:
94:d2:c3:97:1d:d0:24:f7:60:f9:de:93:c8:df:dd:ce:05:45:
24:bc:fd:2f:1e:ae:a8:ab:8d:bb:8b:22:4e:17:d2:52:3f:22:
85:e5:5e:c6:9f:a1:41:e3:72:fa:75:b4:61:ac:08:45:6b:1e:
87:54:32:a1:5f:dc:e2:fe:95:66:30:00:6d:b2:3e:cd:3c:f8:
93:e3:12:b0:a8:b8:dd:62:68:af:ad:61:ff:5c:f3:22:be:fc:
3f:90:d8:fa:34:b6:37:91:ec:fc:9d:23:e6:f7:4b:1e:9f:3a:
a0:a4:d1:f9:96:d9:35:54:a4:18:ad:f0:dc:5e:f3:e5:37:f7:
4d:c8:60:77:5b:d0:a4:db:29:d9:d7:45:f0:a1:e8:c5:c0:2f:
7b:92:b5:1e:34:3b:f3:2a:52:4b:6d:cb:48:96:63:b5:84:01:
6c:51:41:c2:e0:65:2d:9a:2a:5f:3e:2a:69:10:4e:b1:be:9d:
39:36:23:69:fe:92:63:12:9b:0a:48:65:69:e3:ae:57:b3:d8:
df:f4:e7:d4:72:bd:84:37:21:18:85:c0:0a:0a:b0:73:41:82:
38:d1:dd:47:28:2b:85:7c:44:17:ed:9b:a3:8e:bf:98:8c:3c:
7c:f5:08:fb
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAgjUMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgyNTE3MTYwOFoXDTI1MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjA4RjcxMTAvBgNVBAUTKEMyMEREMUUwNTYxODY1QzA1MjJDN0Uy
NzRCQ0VEMjQ5MzBCQkYwNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCZ+k8nBX3fn0hsfAEX2dznJsyLRWOkOQ1Xp0dz8J+lvNJMK8OAu2khp9Fsficd
yUVQZZNGUNZuCaE/7/ac1irfe/tI3cm4mj9t8KfeF47muyQoe1//mucMg9QyMGkR
FJoJeZ2k2/FokKtYsaZwgVhIK2+kxB4VhaISkb4f1SESFDoMpfp/ovMBm1BCcbSW
CUGGDH1qUS4Ih8x6UDrpSeQaT7sh6KxnEljTCLCI4lOXelKqXWjUcBbko8zhMngc
zMDrXwT0UhT6IX7g894OqmHyqve/ZBsVBvTnS6eWkLGIXHY8mvRg4NqqoczGJ/Es
fcHQU3M7p/Cr09cIj9lReFSLAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUwg3R4FYY
ZcBSLH4nS87SSTC78EUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUIwOEY3LzQ3MTQzODBBRDU5NDExRTc4RTdDOTE0M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCMDhGNy80NzE0MzgwQUQ1OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi93ZzNSNEZZ
WVpjQlNMSDRuUzg3U1NUQzc4RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgUYMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCZw+IMA8EAgAC
MAkDBwAgAQ3xWQAwDQYJKoZIhvcNAQELBQADggEBAHReTOd1sEHJ0aj1BSBOWrPY
VJTSw5cd0CT3YPnek8jf3c4FRSS8/S8erqirjbuLIk4X0lI/IoXlXsafoUHjcvp1
tGGsCEVrHodUMqFf3OL+lWYwAG2yPs08+JPjErCouN1iaK+tYf9c8yK+/D+Q2Po0
tjeR7PydI+b3Sx6fOqCk0fmW2TVUpBit8Nxe8+U3903IYHdb0KTbKdnXRfCh6MXA
L3uStR40O/MqUktty0iWY7WEAWxRQcLgZS2aKl8+KmkQTrG+nTk2I2n+kmMSmwpI
ZWnjrlez2N/059RyvYQ3IRiFwAoKsHNBgjjR3UcoK4V8RBftm6OOv5iMPHz1CPs=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:14 2024 by rpki-client on console.sobornost.net