Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxT-rYcguxji2eIkk4K433VEbYs.cer
File: wxT-rYcguxji2eIkk4K433VEbYs.cer (raw, json)
Hash identifier: WZwCOkTXs2T+4oREbCMmkJWW+GkofH8CgerAofnhFqs=
Subject key identifier: C3:14:FE:AD:87:20:BB:18:E2:D9:E2:24:93:82:B8:DF:75:44:6D:8B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021177
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CFCD3/C4727A10EF8411EB929B0650C4F9AE02/wxT-rYcguxji2eIkk4K433VEbYs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CFCD3/C4727A10EF8411EB929B0650C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 02 Oct 2024 08:06:44 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 136519
IP: 103.170.140.0/23
IP: 2001:df7:1c80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135543 (0x21177)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 2 08:06:44 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91CFCD3/serialNumber=C314FEAD8720BB18E2D9E2249382B8DF75446D8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:37:8b:0b:11:ca:41:07:03:39:8e:f4:4a:3d:
8b:64:19:38:b2:b3:bb:49:20:28:d1:fa:de:80:1a:
21:1e:74:f6:c6:ca:6c:c8:a5:7d:47:d5:01:67:20:
c8:da:86:98:7e:32:39:7a:83:da:8e:a2:d3:33:c3:
0f:bf:08:ad:8a:59:3f:2f:c6:10:ed:b6:d9:ea:a8:
5f:96:0e:cc:ac:4a:a9:c9:13:bd:32:d6:b1:94:a3:
e1:a3:c0:36:ea:98:d1:02:86:2d:b5:9e:ce:48:7c:
3f:17:e1:22:ca:58:04:47:4a:32:06:66:aa:e5:ae:
ca:d6:2b:bb:de:51:4b:df:3d:1a:4b:2b:9e:da:df:
29:fa:61:7a:0c:ea:b4:5e:01:a0:4c:f2:1e:f8:62:
4e:4c:65:0e:fc:01:95:16:fe:4f:e4:14:83:e6:e6:
e5:15:5d:05:6f:a6:13:f2:68:79:c0:e5:b4:7d:2c:
86:d0:45:cf:54:c1:87:2a:3d:09:e9:d5:5d:1e:91:
58:31:1a:ca:a0:44:6a:ce:40:88:46:7d:f6:a4:62:
c8:5f:74:aa:ed:09:a7:e6:d3:47:9a:0a:a4:ea:aa:
a4:3f:64:47:8f:6b:68:f2:a2:47:d0:c1:54:b9:a5:
b0:8d:4c:e9:db:d7:63:fe:e5:80:18:93:ce:a6:88:
fe:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:14:FE:AD:87:20:BB:18:E2:D9:E2:24:93:82:B8:DF:75:44:6D:8B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CFCD3/C4727A10EF8411EB929B0650C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CFCD3/C4727A10EF8411EB929B0650C4F9AE02/wxT-rYcguxji2eIkk4K433VEbYs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136519
sbgp-ipAddrBlock: critical
IPv4:
103.170.140.0/23
IPv6:
2001:df7:1c80::/48
Signature Algorithm: sha256WithRSAEncryption
a0:1a:04:ee:a3:a1:73:ee:30:30:78:c8:8e:ab:43:81:9f:7c:
e1:04:df:85:b2:e0:e3:a3:ac:d1:60:20:df:fb:11:6e:dc:46:
cf:5e:7f:f7:e5:3e:68:10:72:30:dc:dc:2f:e5:8a:9f:af:e4:
bc:94:bf:42:bc:e7:ac:dc:c3:22:d2:66:63:1d:26:22:96:b4:
af:5e:50:f1:e4:b7:58:52:a2:87:55:30:b6:bd:76:2a:1c:91:
0f:8d:b6:e0:7d:01:98:44:cf:f3:b3:67:23:24:79:20:01:e7:
27:f1:41:f6:c8:1f:1e:9a:11:a5:81:2d:25:d1:f6:b9:b4:4d:
37:45:28:0a:a7:8c:a7:a1:77:0b:2c:3c:49:4b:e5:d2:eb:54:
1b:9d:51:cd:3d:94:41:bd:bc:2a:d8:42:82:07:31:df:e1:9d:
9d:09:7b:8b:18:31:b6:6b:ba:fe:e3:67:f8:d6:21:27:e8:de:
9d:bb:f8:3d:2d:50:de:87:ed:6d:4f:32:c8:7e:41:8a:d7:2c:
ee:26:18:0f:70:41:92:30:a1:da:ee:47:99:a0:67:1b:39:f6:
ff:87:31:b8:e1:e8:e9:19:af:7c:21:ba:e8:95:1d:f4:8e:c5:
6e:5d:78:d7:3b:30:36:68:3b:98:27:bc:5d:61:fb:45:37:85:
2c:70:8d:19
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAhF3MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTAwMjA4MDY0NFoXDTI1MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0ZDRDMxMTAvBgNVBAUTKEMzMTRGRUFEODcyMEJCMThFMkQ5RTIy
NDkzODJCOERGNzU0NDZEOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDSN4sLEcpBBwM5jvRKPYtkGTiys7tJICjR+t6AGiEedPbGymzIpX1H1QFnIMja
hph+Mjl6g9qOotMzww+/CK2KWT8vxhDtttnqqF+WDsysSqnJE70y1rGUo+GjwDbq
mNEChi21ns5IfD8X4SLKWARHSjIGZqrlrsrWK7veUUvfPRpLK57a3yn6YXoM6rRe
AaBM8h74Yk5MZQ78AZUW/k/kFIPm5uUVXQVvphPyaHnA5bR9LIbQRc9UwYcqPQnp
1V0ekVgxGsqgRGrOQIhGffakYshfdKrtCafm00eaCqTqqqQ/ZEePa2jyokfQwVS5
pbCNTOnb12P+5YAYk86miP59AgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUwxT+rYcg
uxji2eIkk4K433VEbYswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNGQ0QzL0M0NzI3QTEwRUY4NDExRUI5MjlCMDY1MEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDRkNEMy9DNDcyN0ExMEVGODQxMUVCOTI5QjA2NTBDNEY5QUUwMi93eFQtcllj
Z3V4amkyZUlrazRLNDMzVkViWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhVHMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6qMMA8EAgAC
MAkDBwAgAQ33HIAwDQYJKoZIhvcNAQELBQADggEBAKAaBO6joXPuMDB4yI6rQ4Gf
fOEE34Wy4OOjrNFgIN/7EW7cRs9ef/flPmgQcjDc3C/lip+v5LyUv0K856zcwyLS
ZmMdJiKWtK9eUPHkt1hSoodVMLa9diockQ+NtuB9AZhEz/OzZyMkeSAB5yfxQfbI
Hx6aEaWBLSXR9rm0TTdFKAqnjKehdwssPElL5dLrVBudUc09lEG9vCrYQoIHMd/h
nZ0Je4sYMbZruv7jZ/jWISfo3p27+D0tUN6H7W1PMsh+QYrXLO4mGA9wQZIwodru
R5mgZxs59v+HMbjh6OkZr3whuuiVHfSOxW5deNc7MDZoO5gnvF1h+0U3hSxwjRk=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:14 2024 by rpki-client on console.sobornost.net