Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer
File: x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer (raw, json)
Hash identifier: JF5NRtQJwibSVhX83xJqUCxptEeqqhEftiT96U/Douw=
Subject key identifier: C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FBE6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 28 Jun 2024 01:00:22 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 133523
IP: 103.73.115.0/24
IP: 103.232.218.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130022 (0x1fbe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 28 01:00:22 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91E01B2/serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7c:13:a7:e8:c7:3a:f4:a2:9c:c6:84:93:cb:
3b:84:b2:67:e0:a7:ff:e0:9a:57:7f:07:23:1f:9f:
50:06:36:8a:88:14:88:70:0b:63:10:85:c7:dc:30:
e9:5a:6b:1d:07:3b:35:95:70:31:c9:15:35:fc:c2:
c2:d1:01:34:16:a5:1b:a3:0f:ff:d2:cd:70:45:09:
0e:8f:74:d8:7f:62:7e:11:e1:7e:3f:eb:b3:4f:56:
98:e7:fb:d3:17:e8:59:59:b7:6a:33:61:44:da:86:
02:99:07:4b:35:26:91:ad:7b:d6:cf:75:9f:50:b1:
95:5e:a1:fe:6f:60:2d:05:14:ad:f2:a6:e8:d2:0d:
51:34:6f:6e:cf:f3:ab:f7:e5:a6:b2:72:6c:88:17:
0c:d2:a3:ea:9b:09:d3:0b:07:21:f5:4d:e1:82:d7:
d8:dc:71:61:32:45:c1:90:46:90:bf:a8:60:74:96:
8b:c5:7e:cd:7e:ed:48:f1:d8:ac:7a:87:c9:37:5a:
6d:af:7f:d8:f9:e0:3a:ef:b7:c9:14:d5:53:05:cf:
3f:2b:a7:ab:c9:46:e1:6a:48:2c:7d:52:10:a8:54:
88:92:0c:c4:87:be:3b:4b:a8:c8:5d:41:00:46:b0:
62:b5:79:f9:7c:67:00:79:0c:54:66:6e:51:75:32:
94:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133523
sbgp-ipAddrBlock: critical
IPv4:
103.73.115.0/24
103.232.218.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:7e:f9:84:79:ea:eb:3a:83:86:88:59:28:aa:e9:73:fa:eb:
e6:58:03:81:a0:13:60:bf:e4:35:c2:b9:5d:b9:39:fa:76:13:
b1:c0:f1:18:bb:37:b6:ab:ec:7c:09:b3:44:62:9f:0c:c0:48:
da:58:57:c6:a5:b5:37:be:a6:60:84:e5:98:0f:fd:1f:0e:bc:
e1:56:5f:fe:11:03:09:a3:04:d1:c4:0b:bd:27:6e:45:86:e4:
78:68:b8:8a:fe:4b:b1:d2:c1:3c:a6:97:8e:2e:4d:bf:f3:58:
48:22:96:1b:2a:9a:88:28:b5:10:fd:64:ec:63:5a:8c:fa:04:
0a:4b:4b:00:f0:e4:25:75:6d:4b:1c:43:63:77:27:64:5d:31:
ca:58:54:3a:70:15:23:07:c3:5f:62:aa:87:e1:c1:dd:fa:70:
a3:27:3e:c9:7a:c2:16:f9:63:17:fd:47:f1:ba:72:e1:71:f2:
c4:2f:80:b3:0e:80:db:21:28:79:82:87:37:f6:a5:dc:48:d2:
82:d2:1d:d0:9c:50:a9:8d:d1:b0:51:02:a4:d5:2f:5d:70:e5:
90:80:0d:53:2e:80:61:53:a0:c1:17:4d:42:7e:87:56:1c:90:
51:15:2a:bc:55:49:1e:fa:e6:13:47:b4:8e:fc:75:d1:31:1c:
da:c5:9d:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:14 2024 by rpki-client on console.sobornost.net