Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer
File: KaAJAT90Md42nADKtUcWypNFJtM.cer (raw, json)
Hash identifier: aPHQx25gPazRKaAN2iaDwaYFw4m8roDdMWLoVmgx11g=
Subject key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02134A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Oct 2024 07:13:50 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153341
IP: 2001:df4:4ec0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136010 (0x2134a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 10 07:13:50 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:61:14:9f:e6:bd:ea:ba:ec:bf:4e:6c:61:9f:
24:32:4e:1c:c9:ae:40:73:a8:c1:37:23:bd:1c:a7:
2e:d0:47:85:31:c3:e5:10:17:87:25:d5:92:9e:fb:
cf:73:a7:1c:5b:e8:e4:39:04:4f:7d:16:45:9e:d9:
9f:b5:76:15:17:3c:0b:dd:31:b0:59:64:61:5a:86:
33:a0:cd:dd:4b:c8:66:51:3a:8e:9b:f8:15:7c:78:
b8:a3:77:9d:3e:c3:61:9a:b5:61:74:70:be:bc:b8:
b6:68:cf:59:32:70:9c:ff:e2:ee:ef:5e:c3:71:78:
9e:60:4a:49:38:9f:16:dd:5d:ad:e0:c6:b1:67:5e:
84:98:d7:44:cb:8c:1b:52:53:52:a8:40:a6:91:9c:
75:0f:a8:03:a7:de:e1:da:10:62:1c:21:fa:8b:a5:
b5:a8:4d:ac:4e:cc:f0:ac:ad:5b:55:b0:70:37:cc:
91:bd:6f:eb:eb:c9:0e:ff:f7:17:fe:34:ed:bb:2a:
01:bd:46:2c:8e:07:31:00:3d:13:9b:20:22:c5:de:
e5:a8:a9:70:c4:03:07:e8:a9:37:09:ff:f6:18:82:
7c:71:45:66:cb:7d:53:b9:0e:41:3d:cd:36:4b:84:
3e:99:be:48:c1:75:53:3c:87:63:73:2f:58:12:d0:
6a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153341
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:4ec0::/48
Signature Algorithm: sha256WithRSAEncryption
c8:f1:23:96:46:d5:14:ae:64:f7:09:0c:3d:28:06:4b:31:6c:
63:34:56:0b:b0:1b:76:ca:10:08:b2:e7:40:44:b7:02:84:74:
1b:d9:a4:6f:a1:2e:d8:84:19:a2:1f:aa:db:3c:f0:53:4a:56:
1e:56:42:c4:90:dc:5f:35:0b:93:ca:43:da:12:08:91:3d:0c:
24:62:b1:ee:ea:6f:b9:de:cc:55:2c:ec:23:72:4e:9d:76:9d:
30:5a:1c:5e:26:43:4a:bc:83:fa:6c:d8:18:d4:87:06:2d:5f:
a3:9e:23:d2:11:57:3c:f5:01:9f:06:cb:3a:01:19:00:11:9e:
f4:66:29:c1:5f:29:36:a6:88:b4:f7:27:d7:95:9a:22:b9:45:
38:e2:5b:9d:0c:61:32:96:c7:78:28:1f:bf:33:79:dc:bb:2a:
4e:26:5a:fa:5b:1f:38:89:12:05:26:43:b1:10:25:26:6a:ae:
3a:ff:66:d9:7a:4d:ce:c6:ef:ae:37:7e:23:ea:15:3d:48:bc:
0c:05:36:e3:39:fe:82:4d:d0:3d:9d:ae:12:50:a9:7b:cc:44:
20:fa:9c:1c:ef:d7:98:cf:42:57:74:e8:3a:53:fa:07:c8:79:
0b:2e:6a:d8:00:19:fa:58:f5:44:56:84:d9:b1:c3:b6:b4:f4:
64:44:30:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:46 2024 by rpki-client on console.sobornost.net