Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer
File: YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer (raw, json)
Hash identifier: hTHccNwSxzXC1CqThGIR0lasE63sZRVUMX/rpBJefyU=
Subject key identifier: 61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021352
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Oct 2024 08:19:34 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 153353
IP: 2001:df4:6540::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136018 (0x21352)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 10 08:19:34 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91C2F8C/serialNumber=611E1C149528F17A0EC799C39D562619C9A15100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:67:06:94:78:cb:cc:7c:d6:f7:7c:a9:52:7b:
c9:d2:cd:2c:40:0a:84:57:96:71:dd:e7:83:41:ca:
94:58:c8:3c:4e:98:b3:bf:c5:e1:ad:e3:36:d2:c9:
67:fc:68:7b:8b:3a:a5:26:7a:a5:73:5d:e1:84:47:
eb:16:b8:d9:a9:25:0b:7a:86:29:91:a0:3d:b7:96:
69:df:1f:ea:b7:c3:98:20:59:a2:23:3c:6a:cc:02:
4e:34:f6:f7:da:22:94:c8:90:67:35:fa:24:85:42:
aa:70:f2:72:ae:0f:28:8c:15:7b:24:16:d4:34:82:
49:2a:8c:9d:ec:ca:01:e5:89:4a:fe:1e:63:33:ef:
41:d8:1c:b5:6f:ac:88:a5:b1:26:a3:e9:dc:4f:3f:
4b:63:b3:b2:62:1a:ee:80:f1:d5:8c:1c:9b:0d:3c:
86:ed:32:2d:14:41:c7:30:e6:8d:0a:37:f3:e1:cc:
1e:51:5e:5d:09:be:bd:6a:7c:4e:c3:b5:41:f6:e5:
37:40:38:b3:38:b4:13:0a:3f:a8:81:c8:ac:6f:5a:
34:e1:90:06:aa:34:dc:30:cf:0a:91:a7:36:8b:f3:
11:b5:5c:8e:e2:66:40:39:d5:61:ee:0d:ab:68:68:
0e:bf:3d:2e:b5:0f:33:90:2e:0c:38:19:e6:c9:89:
6e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153353
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:6540::/48
Signature Algorithm: sha256WithRSAEncryption
27:9f:5c:1c:a5:38:77:15:62:f3:19:1c:d4:6e:48:90:95:90:
88:40:d3:1f:b1:5e:f4:ba:97:5a:bb:ce:8a:3a:f6:24:51:0a:
09:9b:87:bf:be:73:b6:03:8e:c9:02:ab:bf:16:8c:62:e1:44:
9e:b1:20:0f:85:8b:9a:7f:db:6c:d4:8e:e6:a2:66:59:21:c7:
07:5f:04:20:e3:89:6c:27:dd:08:da:48:de:65:99:54:c3:f2:
65:03:ed:68:a4:0a:17:37:9d:c6:85:c4:6e:3a:d9:12:d7:8b:
44:5d:28:9e:4f:3b:af:e0:57:f1:a1:72:32:3b:5a:5d:94:ea:
48:25:04:35:cf:f5:76:e2:f6:b1:1c:18:e1:e0:65:8d:01:c7:
c7:52:5f:a9:92:d3:96:7c:ee:41:2a:76:2f:63:f2:d6:4d:ee:
3d:b4:18:1f:10:b7:5d:a9:87:f9:04:7e:00:e4:4a:35:5b:90:
f8:43:e3:45:12:fc:ed:a8:89:09:19:fb:68:e8:60:ea:39:3c:
be:52:3b:ef:c6:4a:ea:bc:df:ae:e0:e2:84:b2:22:51:c7:84:
63:32:1c:ed:b3:78:69:ab:c9:f3:54:5f:51:52:20:3a:bb:d9:
64:ab:46:a0:b9:b5:65:e2:8b:0e:d0:ca:d2:52:ff:0e:d2:c7:
aa:8e:62:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:54 2024 by rpki-client on console.sobornost.net