Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W4LojAFBMoI9Ag1cMKa_ttW1AiE.cer
File: W4LojAFBMoI9Ag1cMKa_ttW1AiE.cer (raw, json)
Hash identifier: nUo/vN+0zhSo6vUYs4M0rw+z2FmQTbVcJb4IHIEDfdc=
Subject key identifier: 5B:82:E8:8C:01:41:32:82:3D:02:0D:5C:30:A6:BF:B6:D5:B5:02:21
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020AED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/W4LojAFBMoI9Ag1cMKa_ttW1AiE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Sep 2024 12:21:57 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 38624
IP: 117.120.32.0/21
IP: 2401:45c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133869 (0x20aed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 2 12:21:57 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A911069A/serialNumber=5B82E88C014132823D020D5C30A6BFB6D5B50221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:93:43:84:e5:f4:a3:c8:e3:cd:93:85:fa:eb:
31:66:6e:88:09:c7:6d:81:a4:3d:00:f0:65:ab:61:
71:44:a3:76:21:f2:99:e8:6a:10:22:42:6a:37:fe:
49:f8:9f:59:cb:ac:da:5f:01:91:71:0c:cb:72:80:
f2:a8:11:67:1d:a2:7a:66:cc:b9:c8:1b:68:8f:fc:
9e:3b:f7:8a:e7:d9:7b:b2:fb:83:06:dc:2c:72:ce:
2a:77:16:49:15:bc:c5:b7:d2:76:c0:9a:3e:32:c7:
94:e5:bb:77:dd:9a:b0:04:ed:8e:f2:57:4f:24:19:
22:95:1a:bb:07:db:15:eb:a7:70:d5:f6:00:b8:6c:
ce:60:fd:bc:25:06:b6:28:39:f9:88:fb:1d:85:74:
dc:69:32:85:fc:05:0a:9d:82:1d:70:c6:57:d1:0a:
5d:41:99:46:a5:a6:b4:5d:5b:ea:e0:04:48:78:47:
9a:ca:22:6c:a0:20:35:e9:4c:41:cf:75:c2:8c:c5:
97:65:32:27:ad:ac:2b:cc:49:7d:73:c0:86:c2:d6:
0e:0d:c7:5e:38:7b:38:fb:7b:e4:10:a8:0a:bb:1a:
c7:a3:53:8d:02:c7:46:4a:12:db:af:9f:ba:65:27:
f3:a3:0b:a0:ca:09:9a:f5:77:8a:5e:92:b0:b6:7f:
47:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:82:E8:8C:01:41:32:82:3D:02:0D:5C:30:A6:BF:B6:D5:B5:02:21
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/W4LojAFBMoI9Ag1cMKa_ttW1AiE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38624
sbgp-ipAddrBlock: critical
IPv4:
117.120.32.0/21
IPv6:
2401:45c0::/32
Signature Algorithm: sha256WithRSAEncryption
5d:af:8c:ce:00:fa:88:05:8d:42:5b:87:29:1f:19:39:f6:3b:
3e:a5:50:66:79:82:eb:f5:ed:cf:19:e4:d5:fb:83:59:88:18:
c6:83:41:94:e7:b3:d5:ba:22:f1:2b:c1:5b:c3:83:3a:e9:d5:
b6:6c:8f:27:2f:8f:f5:36:6b:7e:be:bd:0a:ad:a7:02:58:d9:
fc:f0:d0:f4:61:96:5b:2c:93:f7:f1:d7:f8:ce:51:5a:80:ec:
df:d9:31:c6:ab:89:5b:95:d9:19:3e:9d:3a:81:68:3a:16:0d:
6a:7d:e8:7d:e0:eb:39:cd:f1:10:92:11:5b:e6:60:23:3e:05:
f3:b4:14:7c:35:a2:08:67:7a:f6:53:95:39:53:45:66:79:fc:
d7:b3:fc:3b:03:09:df:43:88:a0:21:3c:d7:f3:3f:bb:28:96:
6f:39:5b:c3:47:46:38:95:52:4b:eb:91:52:e2:ee:11:86:a2:
4c:e4:3d:b9:84:88:e9:f3:4f:65:d7:df:44:4a:f4:3a:8e:c2:
9e:5d:6b:95:e7:44:0d:6d:8b:9a:35:e2:0b:8c:84:37:17:47:
2f:a0:43:fd:fb:3e:26:ca:83:e6:d7:95:53:61:cb:97:93:43:
42:db:c1:ca:e0:7f:c6:7a:f9:11:ff:45:34:8e:a7:18:0b:e0:
52:79:52:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:53 2024 by rpki-client on console.sobornost.net