Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer
File: RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer (raw, json)
Hash identifier: ePqYEKXv6KxEkaL19+DyCOKq8ctBcZhXPS/TgP58Vms=
Subject key identifier: 44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021002
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Sep 2024 09:29:55 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153347
IP: 2001:df4:51c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135170 (0x21002)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 27 09:29:55 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91807BB/serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1d:b8:97:f0:eb:c1:18:ee:94:8c:37:c4:9d:
6e:63:48:11:36:fc:ee:ba:d7:23:83:e3:e0:c9:54:
91:86:ff:de:8c:3e:4a:3c:b6:88:68:ef:0d:ec:d5:
b3:1f:85:d4:f3:8f:f8:97:ba:72:83:20:0a:ac:60:
30:be:8c:e3:cc:33:97:b6:90:e6:00:ba:1b:5b:33:
fb:10:ed:e3:a4:31:9d:a7:71:a6:1c:ac:b1:6f:82:
98:45:4f:ed:a6:30:a6:58:e5:eb:54:35:5d:94:8f:
a6:67:44:34:65:fa:d4:03:49:7e:40:8f:1d:f0:64:
e1:dc:f2:da:8c:65:ec:14:9c:ef:d9:61:9b:cb:7e:
00:25:e8:da:05:76:be:e5:2e:ab:0e:3c:dc:db:bb:
a9:c0:24:b2:01:dd:fb:14:22:90:0e:dc:d6:9f:7c:
73:28:1d:10:57:dd:3d:cc:5b:ca:46:a6:d6:fc:7f:
0b:49:72:4e:07:23:63:69:59:e6:11:0f:31:10:6c:
7d:b2:c8:48:a0:9f:b5:d1:85:20:f2:5f:12:4d:86:
dd:1a:8c:24:f5:4a:e2:88:32:6d:84:8c:9c:49:4f:
0f:3b:68:14:cd:08:b3:bd:54:36:4f:11:9a:70:e3:
6a:4b:b3:16:76:59:85:14:39:fd:34:b3:7f:da:85:
a0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153347
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:51c0::/48
Signature Algorithm: sha256WithRSAEncryption
7d:34:ef:ad:9a:03:d2:f7:1d:c6:83:68:8b:9d:0c:c8:fd:35:
b4:f4:4c:c2:b7:a5:44:1e:10:37:18:13:b5:8c:87:0a:85:cd:
8e:15:02:03:0f:b2:16:4d:4f:f7:ab:ea:87:d5:c3:b7:41:cb:
18:6a:48:68:92:9c:ec:02:6c:fc:6a:57:60:f1:45:d4:90:a3:
e8:db:2d:0e:c3:25:13:4e:cc:2e:f4:a2:0c:28:c8:34:9f:a9:
45:c5:5e:41:dc:17:b1:cf:5a:e0:d9:3b:1e:35:b9:e4:f3:c2:
30:e2:ef:b1:5d:89:45:2a:df:a5:c9:ea:73:d4:e9:d6:41:48:
a8:1e:9e:7c:c6:90:00:e6:20:06:08:a5:6b:2b:fc:2e:9b:03:
72:ee:75:21:8e:06:7a:e7:39:0f:81:40:e8:7d:12:f7:de:63:
d7:4b:7e:e6:88:1d:71:f8:a7:54:14:45:ce:0d:b6:5e:6c:57:
d6:b6:2f:98:d6:fb:20:ad:55:db:7e:85:ee:77:97:e3:d5:c8:
cd:d9:39:01:09:ef:82:cb:03:9d:09:08:45:48:c7:80:bc:43:
7f:57:ef:d6:1e:b1:32:bc:da:1c:29:5a:14:5a:92:f0:51:c0:
a8:be:bb:dd:5a:40:fe:ea:84:62:d5:58:47:87:71:78:d9:3e:
f2:26:2f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:50 2024 by rpki-client on console.sobornost.net