Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer
File: CeskiT_4OKrchy_8N1hCf2rsIXI.cer (raw, json)
Hash identifier: F4Nd4WBdEvizNE2aFzk0KFV6Zv7ka2i4rF1pET0ISKc=
Subject key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020759
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 Aug 2024 17:19:22 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 142605
IP: 103.170.204.0/23
IP: 2001:df7:2780::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132953 (0x20759)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 16 17:19:22 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:65:31:8d:14:c0:d8:28:88:81:a5:71:b3:57:
20:9d:c3:5e:6a:a5:88:38:5c:5e:c5:49:89:4d:71:
1a:cb:1e:19:b7:c0:88:80:31:c7:f0:88:02:d3:80:
3e:6f:86:9f:3d:37:f6:48:12:49:b1:70:ab:d7:7d:
dc:6d:92:44:84:0f:62:56:eb:5b:33:6c:62:b6:7a:
e2:77:d4:62:97:ba:7c:55:b3:27:7a:1f:51:27:2d:
71:88:9b:61:f4:67:18:69:cc:8d:40:a8:c9:c0:84:
5e:ab:4b:82:b1:a8:32:13:e8:37:f4:0d:0f:75:15:
3a:e5:ef:c4:b5:48:3a:ac:72:94:d7:ce:a3:86:d5:
0e:ce:89:64:98:13:a7:3c:c7:9c:2a:1a:19:91:8c:
86:21:56:84:95:7f:72:12:b1:b5:85:68:97:64:21:
e3:30:87:ff:14:2b:9e:55:52:94:d9:7b:a3:55:8e:
f9:70:ad:52:63:10:48:96:14:64:90:5c:ad:82:c4:
ee:36:27:1f:60:49:e5:2d:de:6b:86:36:e3:1f:60:
fe:f5:7a:47:cb:a2:c3:24:3d:34:69:ac:ea:6e:7d:
1b:75:f0:c3:23:3f:bd:10:c4:ab:35:fa:17:df:8d:
01:e9:07:59:10:c5:57:e2:43:93:fa:18:6d:f7:ff:
0b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142605
sbgp-ipAddrBlock: critical
IPv4:
103.170.204.0/23
IPv6:
2001:df7:2780::/48
Signature Algorithm: sha256WithRSAEncryption
0a:36:0a:fd:a4:1f:d1:b8:73:65:78:b9:38:96:fe:15:e7:ca:
90:ef:86:96:d8:d7:6c:32:ca:54:ed:d7:97:f9:24:03:38:fd:
21:b1:3d:21:92:9c:0f:4d:cc:8d:21:d2:92:cc:a1:e9:22:8a:
3c:0f:b9:cc:97:bf:d9:ed:2d:d5:6b:86:c0:d7:b5:3c:73:9a:
64:5e:9c:bc:94:61:ac:33:4f:19:ab:60:68:ba:61:91:75:16:
10:ca:38:76:10:04:80:44:e6:d7:0e:53:31:9b:62:3e:cb:8c:
a3:8f:f4:93:10:b7:d0:7b:61:e2:15:56:50:ff:68:38:f9:0e:
c8:d3:fc:f4:43:a9:c1:d5:2a:c1:06:38:7c:72:12:00:0f:9e:
1d:53:d5:a4:97:51:e6:ce:1f:9a:30:ce:de:6d:38:d0:3a:7e:
a9:23:f7:64:51:aa:bb:fd:47:8e:25:bc:ea:3a:76:6d:d2:21:
bf:de:92:d8:f3:15:1f:7e:26:89:76:1a:ef:c2:ca:a8:a5:8b:
f3:af:ec:fc:30:a9:e3:bf:c6:b5:73:64:60:11:64:43:07:74:
c0:90:7e:46:8b:be:af:14:c7:3a:fc:54:93:4c:38:07:e7:ce:
d4:e7:bf:c9:44:d9:dd:3d:72:01:78:1e:74:88:4e:1d:fa:60:
9a:4c:03:78
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:21 2024 by rpki-client on console-fra.rpki-client.org