Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer
File: xGIlbhG2PuqR1z02Q867tRojUK8.cer (raw, json)
Hash identifier: NdH7Jzg561W+u9LxDOEjdXi9Rzd5WzM93/+iyFXFwKo=
Subject key identifier: C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F0E1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 09 May 2024 19:05:56 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 137577
IP: 103.114.8.0/24
IP: 2001:df4:e700::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127201 (0x1f0e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 9 19:05:56 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91A210A/serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5c:af:df:c7:ee:8b:87:df:06:21:44:bc:48:
16:e9:7e:3b:11:6a:97:db:1a:39:11:2f:61:d3:62:
56:1d:77:ae:67:de:92:ff:57:44:8b:ec:07:86:02:
18:81:ce:51:2a:54:63:bd:33:d9:38:99:df:68:b9:
0a:d9:1e:75:c5:0a:f9:e9:01:05:ed:b2:c7:c2:cb:
00:ed:80:9c:3d:ea:4f:a8:e6:eb:66:72:68:9d:d2:
d6:1b:1e:8d:a4:13:af:25:75:ff:0c:d4:4d:59:32:
18:82:7b:c5:59:a3:05:fb:3d:a2:02:ac:d6:52:89:
ba:a9:92:4e:f0:6f:c8:d8:2f:9d:16:ce:ff:0e:d9:
77:b4:f6:52:ef:24:70:f2:fb:a0:eb:81:53:e8:81:
a2:1c:e8:bc:bc:c4:9f:07:1e:50:4b:ba:9b:07:b3:
65:ba:b9:29:01:b5:8d:ce:8c:ae:6a:fd:64:be:32:
02:a6:fb:e0:08:da:51:a4:2e:4f:c1:ce:25:91:bc:
0f:aa:fe:65:e2:3b:bc:83:09:e2:2d:3b:15:01:6a:
40:b9:82:9b:12:20:f8:a2:26:76:af:f0:de:20:59:
f1:c1:63:c1:ba:4d:9c:5e:2f:15:6b:48:07:10:31:
9a:96:b6:c8:d7:36:ca:19:35:16:d7:30:8a:80:90:
12:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137577
sbgp-ipAddrBlock: critical
IPv4:
103.114.8.0/24
IPv6:
2001:df4:e700::/48
Signature Algorithm: sha256WithRSAEncryption
a4:da:71:0a:3e:1c:6e:23:68:9e:e3:00:0e:01:e3:8a:06:43:
5f:5f:ca:ba:a6:58:00:2d:ff:b0:bb:74:a6:bb:5e:a9:d5:30:
2a:48:6b:9f:47:8d:c9:06:d6:1b:9a:62:72:34:41:21:38:af:
9c:0b:49:8a:a4:4c:ae:96:cf:64:0c:a5:53:6e:41:80:9b:1b:
72:e7:8b:d0:e4:f9:3e:f6:c2:5f:aa:f1:7f:85:7c:5c:04:8d:
e6:40:ee:10:93:43:54:51:dc:22:22:aa:57:6a:c2:c1:a0:32:
e0:d2:77:79:15:45:c8:d9:99:ef:5d:f3:3c:4c:69:8f:ef:aa:
45:aa:7b:f5:91:83:34:da:65:1a:86:0b:fd:0c:73:a4:a5:df:
8b:27:ef:b7:36:dc:11:05:5e:27:c9:f7:43:26:94:b0:f6:05:
d8:91:00:8d:bd:9b:b6:c2:5f:22:3c:14:08:4e:31:83:33:34:
d1:d9:0a:ee:98:4f:77:3e:a4:00:64:97:8b:b0:49:6b:8e:05:
92:ef:5c:87:40:de:72:e7:9e:29:e6:ab:58:db:46:93:01:cc:
69:a8:91:40:40:9b:2c:b5:a9:d3:bc:4c:fb:23:58:4c:98:5d:
ef:70:91:28:ac:ec:dd:7d:d2:ad:04:72:8d:81:9c:a5:8c:68:
87:05:db:42
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:14 2024 by rpki-client on console.sobornost.net