Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer
File: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer (raw, json)
Hash identifier: 2/dNTjdQYKPYMN6tYCrvIZqmfHsFlwtxP34Xt4qSiaY=
Subject key identifier: F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F4DA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 May 2024 16:07:57 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 132724
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128218 (0x1f4da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 30 16:07:57 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A917B12B/serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d7:ae:28:b7:bb:3a:c4:09:38:d1:dc:4b:af:
86:0b:59:68:52:36:19:ac:05:71:40:cf:9d:50:5e:
35:4f:3f:7e:00:38:fc:19:e8:d2:a4:ff:7b:f7:cf:
c6:ce:90:49:fc:2c:23:e1:14:42:a0:e9:f7:bc:12:
81:da:b7:05:42:46:dc:46:d7:08:76:8e:35:87:a6:
0c:5f:00:78:ba:67:87:4f:5e:19:a4:7f:c3:b7:69:
1c:ba:ff:be:3a:f2:cc:06:41:c5:8e:e2:82:58:5e:
a3:e9:ab:55:85:9c:bb:3b:38:12:e7:3d:13:49:08:
47:53:15:cf:17:32:e7:89:5f:61:e8:01:3c:56:7b:
a9:eb:33:43:90:6c:45:0e:2d:32:b0:21:2e:b0:3f:
ba:9a:69:6f:7a:5d:fa:d0:bc:34:6a:dc:53:ba:9c:
f5:4f:d8:e1:c5:e8:03:c6:9f:0d:10:65:4f:af:2b:
1c:b8:ed:e4:c4:c7:31:cb:dc:b4:cb:49:84:19:2f:
fa:83:30:f2:f5:12:69:8a:c4:50:d0:8d:8c:0e:a2:
8e:24:d2:e8:cf:df:2e:58:5c:6f:34:c1:c2:ec:b8:
f8:33:b6:b3:6e:6c:00:1d:01:22:5c:99:d4:cd:b5:
1f:1d:d8:8f:48:a2:83:3c:00:6d:b9:30:b8:f4:68:
84:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132724
Signature Algorithm: sha256WithRSAEncryption
71:60:e3:a7:31:8a:cf:c5:f5:32:a7:d9:0c:c6:03:76:21:78:
6d:93:4e:15:d8:32:21:cd:00:d4:21:49:44:43:14:b3:d2:f7:
f9:61:f8:4c:2a:84:a0:4f:7a:17:b4:5d:43:7d:fa:65:47:0d:
76:02:e1:1c:c1:f5:d4:1b:bc:69:b8:b2:8a:1b:40:70:c9:75:
49:79:bd:62:45:a0:14:61:38:00:72:c7:ca:49:3d:19:92:8d:
27:8c:1a:30:5e:03:a4:e9:e4:66:5f:3e:60:cb:de:f5:9f:3b:
c4:f1:db:9a:16:46:86:d8:7f:0f:b1:dc:96:3f:f0:af:9d:07:
c0:88:8c:ce:5e:ee:e5:de:5c:9c:e8:76:dc:1f:b0:01:2f:5c:
d7:ef:ab:a6:dc:8e:de:58:73:70:23:19:7a:dd:99:23:ed:72:
22:2c:2b:57:0f:b5:7a:0b:0f:79:e6:41:c2:91:ce:f8:6c:58:
17:aa:88:d3:36:ef:30:3d:7d:6c:75:4e:fc:40:49:a4:96:c1:
2b:bb:96:64:76:48:40:5b:e6:fe:52:8a:78:10:e2:c4:48:55:
5f:80:bc:6a:44:b2:f6:bd:2a:f1:e8:e5:e1:70:2e:7e:d9:50:
3a:5a:ca:33:18:80:10:85:41:cd:2d:c6:8a:8b:fc:8e:7c:2b:
9f:32:b3:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:39 2024 by rpki-client on console.sobornost.net