Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.cer
File: EhjedbJYi2Yzpr-IzTiPMcQ6ycA.cer (raw, json)
Hash identifier: HsU5+unn4uWIDiSMPLUTrXT52+9nw7hAUTac30qORmA=
Subject key identifier: 12:18:DE:75:B2:58:8B:66:33:A6:BF:88:CD:38:8F:31:C4:3A:C9:C0
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 60FD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 15 Jan 2025 13:34:41 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 157.15.52.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 01 May 2025 17:06:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24829 (0x60fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 15 13:34:41 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A913C07A, serialNumber=1218DE75B2588B6633A6BF88CD388F31C43AC9C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ce:5a:44:69:0a:0e:35:dc:bc:56:50:ed:1d:
5a:23:46:06:d0:37:7e:7f:d9:12:e9:d8:0d:72:cb:
4f:4e:04:ee:ae:2c:2b:f7:56:ce:5b:4b:a4:51:28:
c2:00:74:9a:58:36:d0:ad:df:94:52:48:77:1d:c1:
b6:38:1d:bc:db:90:b0:c8:c9:1a:7d:c3:09:c8:2e:
73:42:ec:a7:08:58:c1:c1:71:31:03:9d:b8:89:ab:
4c:be:25:aa:03:2e:65:e0:a3:5f:07:77:03:a0:2d:
31:16:33:2c:cb:85:13:68:a3:f8:a3:87:95:cf:8c:
0f:d2:14:40:fa:a3:3b:16:95:a8:f8:7c:ce:84:f4:
53:20:6e:6f:f1:a7:5a:cc:2b:df:30:70:9d:2e:9c:
94:01:bf:10:b3:e0:21:d0:da:fe:ce:26:be:45:48:
59:21:1e:a3:11:ab:c9:e5:ca:4a:90:55:9c:8f:de:
49:e7:b9:35:2d:fc:ee:e4:dc:da:7b:06:95:c9:29:
b5:ae:eb:a3:4c:ca:82:d0:8a:49:bd:0a:ec:b4:e5:
96:a8:b9:40:b7:47:b7:8b:d7:cc:c3:3b:93:57:08:
a5:ca:83:1a:bc:11:05:ba:bf:1f:23:ad:ca:c8:58:
fe:d5:f7:4a:b1:a5:09:42:dd:2b:cf:8b:dd:3b:60:
10:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:18:DE:75:B2:58:8B:66:33:A6:BF:88:CD:38:8F:31:C4:3A:C9:C0
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.52.0/23
Signature Algorithm: sha256WithRSAEncryption
c3:f4:92:9d:42:78:3d:2c:4d:a0:26:40:1a:c4:bc:54:e0:ae:
68:07:7f:50:5d:00:64:88:ad:21:a8:e2:6f:9d:54:d4:11:c8:
bc:e5:35:46:2a:6c:60:d2:b0:11:66:ce:9a:2a:04:47:8a:11:
64:7e:f2:a8:59:ee:02:7f:69:4d:52:b4:c0:3f:b5:d3:4d:b8:
63:2b:b2:2e:e8:15:1f:62:b2:d2:17:81:03:4c:fc:cb:01:44:
31:b0:22:d9:58:f5:db:e1:c3:01:41:56:b7:56:d6:54:72:54:
3c:ee:3f:f5:a0:c5:0f:57:e3:39:3f:e9:d3:3f:bc:29:36:e1:
97:fc:34:0d:6f:f2:5a:4c:42:71:db:ae:05:f8:d1:47:dd:96:
83:d6:fb:34:42:15:f1:f9:7f:0d:d7:79:21:f3:94:b8:7b:1c:
76:31:19:b5:a9:ad:9a:65:3c:35:40:a3:80:e2:30:e3:4e:49:
78:9f:e3:23:71:95:ef:78:2a:43:4d:f7:87:b9:20:94:6c:74:
96:62:c7:8c:35:f8:9a:f5:47:53:da:c8:eb:92:f6:a7:f4:22:
c7:db:db:9d:de:d9:30:32:b0:47:2a:74:4b:27:7f:68:36:33:
57:e2:bd:bc:2b:13:d2:32:fa:8f:8a:9b:dd:50:73:7f:c0:38:
47:7c:07:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 20:39:27 2025 by rpki-client on console.sobornost.net