Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DldBdtqmrGyXcGxmecfiTnC6rVc.cer
File: DldBdtqmrGyXcGxmecfiTnC6rVc.cer (raw, json)
Hash identifier: Zjr16SmTdkJaZHKzk8jc26ONHe2yWOCps0POLdQyzEU=
Subject key identifier: 0E:57:41:76:DA:A6:AC:6C:97:70:6C:66:79:C7:E2:4E:70:BA:AD:57
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02021F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/DldBdtqmrGyXcGxmecfiTnC6rVc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 24 Jul 2024 20:45:15 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 38138
IP: 114.129.8.0/21
IP: 2405:eec0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131615 (0x2021f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 24 20:45:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91C0BDE/serialNumber=0E574176DAA6AC6C97706C6679C7E24E70BAAD57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b8:cd:9c:6b:96:bd:85:e2:65:ee:9d:64:24:
b2:cf:70:47:03:ef:bd:52:38:7a:e3:db:e2:f2:fe:
b7:e6:53:54:6a:51:f2:9d:ea:9d:6e:1e:dd:b7:ff:
82:1f:a7:47:e4:4b:0d:ff:83:f0:e2:03:c2:98:c2:
4a:cf:61:f7:9a:29:0d:16:9d:69:1f:76:6c:18:94:
ba:35:e7:78:50:8d:18:ad:40:3b:24:54:b9:0e:ec:
2c:bd:17:9d:ba:91:46:0b:1e:0c:a8:eb:f2:55:db:
07:b7:4b:ff:9a:e5:14:56:be:24:29:29:81:95:d9:
b4:31:15:c9:ce:e7:9c:2f:f3:9f:99:33:d9:c6:5b:
e2:a8:4e:07:a6:a6:f2:c0:c3:08:14:b6:dd:f8:3f:
1d:cd:b8:4f:1c:ef:52:56:6b:39:2e:79:77:43:fe:
c6:30:52:c4:c8:b7:64:35:2d:54:e7:dd:f0:ec:3b:
27:e5:30:ae:a7:5e:1a:86:56:ed:bc:fe:19:f1:2b:
dc:3f:23:b2:99:57:02:f3:ba:cd:56:59:66:37:29:
0e:a3:d5:10:32:58:71:55:95:ca:a1:71:a7:6b:f1:
5d:5b:0e:49:e0:fe:81:bd:b7:a7:78:91:b5:12:d9:
b6:81:c6:86:65:f4:c9:7e:3f:7d:87:ba:3b:2f:04:
9b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:57:41:76:DA:A6:AC:6C:97:70:6C:66:79:C7:E2:4E:70:BA:AD:57
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/DldBdtqmrGyXcGxmecfiTnC6rVc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38138
sbgp-ipAddrBlock: critical
IPv4:
114.129.8.0/21
IPv6:
2405:eec0::/32
Signature Algorithm: sha256WithRSAEncryption
34:36:01:73:83:f0:c5:bc:fc:75:e4:2b:9d:f2:5e:da:98:02:
f5:9c:86:87:88:d9:9d:df:7b:bd:c6:08:e8:ca:af:3e:d4:71:
6e:fb:33:48:2f:d6:d5:d9:82:71:21:92:a3:28:3d:d2:79:5a:
c8:dc:cd:94:9f:71:3f:cd:c5:64:32:0b:91:94:b0:e6:93:63:
6a:fd:f4:f0:18:2d:47:df:74:d9:b7:5c:29:32:7f:1d:6f:b7:
a3:fb:cf:24:85:15:c2:91:af:66:f1:a9:55:ed:4c:57:78:2b:
3a:e1:e1:22:aa:14:5c:96:b6:5a:41:e2:7f:d4:be:ff:fa:6d:
a9:c2:37:ac:df:4d:f1:a5:2c:4b:a9:a0:61:7d:56:77:0f:50:
13:04:0f:cc:c0:03:0a:ea:7a:8e:9c:d4:eb:1b:71:9d:b5:05:
99:c5:aa:f0:94:72:1d:e1:4a:42:d8:8b:39:d2:4c:e1:a6:f1:
39:e1:93:af:5a:40:08:ed:af:49:95:79:81:cf:5e:cd:e6:3a:
d4:39:a5:dc:6e:86:79:24:39:cf:82:96:ab:63:c8:97:82:55:
87:9d:d0:ce:fa:c9:f0:63:74:ef:a4:45:0c:7e:1f:c2:71:65:
8d:6b:64:5e:e9:f9:f5:e0:6e:a0:25:5a:5f:ac:d6:00:9d:e9:
23:f3:f1:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:41 2024 by rpki-client on console.sobornost.net