Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.cer
File: Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.cer (raw, json)
Hash identifier: QaA8jZihp6ONeDNIyAJWUCY6wIz9aEWAJg1du9EtakI=
Subject key identifier: 36:78:79:A0:B8:5D:D8:37:36:37:88:37:93:F5:5E:EB:3B:22:1D:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02134E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Oct 2024 07:46:33 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 152926
IP: 2401:a960::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136014 (0x2134e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 10 07:46:33 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A913647F/serialNumber=367879A0B85DD8373637883793F55EEB3B221DCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ac:8f:81:26:c9:2b:85:25:ec:e1:b5:aa:7a:
f3:a7:3d:76:fd:04:c7:03:58:0a:f8:87:e4:a1:24:
a8:67:d4:64:74:c0:a1:60:3d:e8:eb:3b:19:0d:e2:
87:bb:0d:cf:7f:a9:cd:c9:72:91:73:32:a9:51:cb:
4e:9c:61:b1:0b:94:f5:6c:2c:f5:0d:f6:32:79:92:
64:c1:68:2e:fc:5d:aa:4c:f6:27:c1:d7:4f:d7:1d:
1c:1f:06:42:18:fb:74:28:18:23:0f:bb:1b:63:d9:
d7:c0:1b:76:0b:ab:8a:5c:9e:43:32:ba:21:ea:e8:
af:7b:e6:34:ba:0c:3d:5b:3f:ad:c3:e3:68:7f:c2:
10:9a:49:ee:7c:f0:51:4e:c3:e8:75:90:f6:1e:91:
6f:63:35:73:ea:61:77:50:c4:fd:40:f4:0c:c6:b6:
41:19:af:07:83:62:ed:f7:ad:d1:38:5a:5e:7a:6b:
24:5c:3e:fc:9e:bf:c2:cc:a8:2c:68:e9:b5:6b:b2:
9d:35:15:6c:fd:28:da:e7:b0:2c:20:00:b3:14:a6:
3a:71:27:0d:d1:f0:cf:19:d5:65:0a:cb:e4:8b:fc:
d2:1a:86:77:ec:5c:44:30:63:0a:05:5c:fa:31:a8:
e6:86:89:22:b3:3b:e3:4f:4f:70:c4:f9:e7:8d:2e:
2a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:78:79:A0:B8:5D:D8:37:36:37:88:37:93:F5:5E:EB:3B:22:1D:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152926
sbgp-ipAddrBlock: critical
IPv6:
2401:a960::/32
Signature Algorithm: sha256WithRSAEncryption
49:8d:04:25:05:a5:1e:fb:37:12:63:16:3f:9d:77:79:39:bb:
09:00:4a:13:d0:bf:21:d8:b9:4d:6d:ff:9b:c6:db:90:56:df:
c7:67:1f:d3:b8:a4:d3:bb:89:84:c0:7a:3a:c6:da:27:3b:d3:
f8:1a:ac:b5:32:15:cf:b7:d8:2b:86:26:73:3c:84:4c:f6:05:
8c:b1:52:86:5c:9f:a5:43:f8:19:f2:d6:f5:eb:88:06:62:21:
f8:7e:8e:f4:d5:30:95:b1:f9:5c:61:fb:be:3c:14:e5:e2:66:
12:7c:48:9b:4a:7f:20:08:04:91:73:d5:a3:b8:0e:93:9f:c1:
18:49:2a:73:19:5a:4e:5b:ce:74:92:bc:7b:43:c1:fb:e2:0e:
83:a8:6b:7e:f2:b3:88:2b:4f:c3:1c:1f:a7:7e:f2:f7:2a:c6:
dd:4e:38:23:90:74:59:98:16:23:fa:85:a8:6e:5b:a4:87:57:
b5:d7:23:78:9b:9e:30:6e:f3:d0:cd:3a:85:04:b9:32:c4:62:
5c:83:84:5c:37:d8:38:af:3a:8d:a4:3c:4c:fc:f3:80:9e:3e:
45:7e:5c:19:43:42:5d:bc:f1:e4:ed:9b:45:42:90:5e:47:45:
ac:59:d2:8d:b4:6f:e3:66:83:49:cc:f4:57:c9:10:b1:86:00:
7d:2b:56:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:48 2024 by rpki-client on console.sobornost.net