Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UpZOzEqmIVz16Xd-uB_kSaTyII.cer
File: 4UpZOzEqmIVz16Xd-uB_kSaTyII.cer (raw, json)
Hash identifier: 48kk8NcO1u358txQ8H9SQ5Nm3KQIfBMxVOSWnISPBS0=
Subject key identifier: E1:4A:59:3B:31:2A:98:85:73:D7:A5:DD:FA:E0:7F:91:26:93:C8:82
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020E5B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D4ACD/29031A3A756E11EF9CA46E51C4F9AE02/4UpZOzEqmIVz16Xd-uB_kSaTyII.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D4ACD/29031A3A756E11EF9CA46E51C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 19 Sep 2024 03:07:59 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153316
IP: 2001:df4:4540::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134747 (0x20e5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 19 03:07:59 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91D4ACD/serialNumber=E14A593B312A988573D7A5DDFAE07F912693C882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:55:ca:d8:d1:62:8c:b2:cb:32:4b:aa:0b:08:
fa:09:1f:3d:d7:a5:a3:bd:66:71:13:8b:c1:53:38:
c2:ee:c1:2f:34:f8:e4:c5:38:df:03:9c:9e:b3:a6:
5c:b0:95:1b:01:7a:c9:80:26:c6:0e:70:c3:4b:c9:
12:91:66:8e:32:e9:1b:a7:f6:5f:7d:45:f1:50:d2:
e4:a5:5a:d5:fc:57:c3:cd:92:27:7b:27:2d:b1:eb:
75:0a:0b:16:13:3e:4e:53:22:f3:52:d1:ec:9d:01:
67:da:ab:75:fe:58:57:05:c0:79:75:67:4c:b6:b8:
71:64:ef:af:59:db:d8:c1:b7:95:f7:73:27:46:2d:
96:fa:c6:16:73:70:6e:51:17:5d:a6:ac:c2:89:e6:
ce:62:15:9b:04:ed:7e:4c:92:35:b8:68:3a:89:44:
6d:25:c8:6d:6a:50:ab:45:7b:27:65:32:7b:18:fa:
e2:5c:f6:9f:58:64:87:49:3d:de:20:23:be:e1:9c:
be:4e:89:c0:be:90:99:1a:90:4a:c3:06:2b:cc:39:
e5:d7:52:9b:69:33:1f:27:9c:e9:5e:13:47:6a:66:
a7:b6:e2:2d:b1:30:44:24:bc:be:a4:cb:4a:5e:c0:
cd:ea:89:36:29:56:36:3b:ee:8f:b3:b1:d5:10:8d:
cc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:4A:59:3B:31:2A:98:85:73:D7:A5:DD:FA:E0:7F:91:26:93:C8:82
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/29031A3A756E11EF9CA46E51C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/29031A3A756E11EF9CA46E51C4F9AE02/4UpZOzEqmIVz16Xd-uB_kSaTyII.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153316
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:4540::/48
Signature Algorithm: sha256WithRSAEncryption
71:28:93:48:5c:76:9d:e0:b7:3b:ca:98:09:cd:b4:80:25:86:
f8:52:81:87:b1:52:de:90:30:40:6e:bd:99:df:c8:d0:d3:e4:
c6:ab:08:71:69:d5:65:fe:87:a4:25:da:89:95:d0:ae:74:dc:
51:91:a2:1c:86:03:3c:ab:97:9c:a4:7c:2f:04:6a:0b:7c:52:
68:57:5c:60:3c:28:b2:46:28:17:6e:d2:8c:c2:89:76:26:b5:
94:51:e7:0e:71:3a:c3:fa:56:19:90:6e:b8:2b:b1:10:7f:2c:
66:15:9e:bb:9d:90:1e:1f:62:1e:1e:f2:03:f1:fa:a3:78:ad:
a3:92:04:91:e3:32:7c:24:96:dd:45:03:e8:bf:ec:1a:d8:bb:
ed:d2:e2:26:c5:3a:44:e3:7f:a2:e5:17:1d:74:b6:78:69:46:
40:d3:27:22:dc:83:c4:16:73:95:03:fb:df:b2:75:ed:7e:ab:
89:f9:05:cc:78:e4:44:90:e4:59:15:f1:ed:04:2a:f1:76:c0:
c6:0e:fb:d6:4d:cf:c1:f5:ca:2e:0f:35:19:a0:0a:2d:6d:84:
84:dc:d7:9e:ae:78:cf:6d:40:59:f5:98:c8:f8:fc:76:4e:26:
83:04:43:6c:fd:ea:c5:2d:3b:9e:74:b7:42:c9:c6:e7:c1:fc:
68:ef:65:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:36 2024 by rpki-client on console.sobornost.net