Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YwXctV_RS1x6opSuN8cCdWkvQYA.cer
File: YwXctV_RS1x6opSuN8cCdWkvQYA.cer (raw, json)
Hash identifier: R6IBjLfH6cq7jDh15SM8Md8azhyoulYmUrhmETJJxdo=
Subject key identifier: 63:05:DC:B5:5F:D1:4B:5C:7A:A2:94:AE:37:C7:02:75:69:2F:41:80
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0210E0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A9CD5/7A9A25107FEF11EFA82DF639C4F9AE02/YwXctV_RS1x6opSuN8cCdWkvQYA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A9CD5/7A9A25107FEF11EFA82DF639C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Oct 2024 12:20:08 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133057
IP: 2401:c6e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135392 (0x210e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 1 12:20:08 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91A9CD5/serialNumber=6305DCB55FD14B5C7AA294AE37C70275692F4180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:17:5a:d6:52:f1:dc:8b:ff:cf:4e:cd:78:39:
5a:ff:4c:e9:47:53:53:c5:d0:0a:e3:55:f0:8e:c9:
e9:04:26:ea:6c:73:9a:c0:ca:f2:8c:fa:a4:2a:aa:
06:c4:34:18:a7:42:cc:4f:6e:8b:84:10:f7:39:86:
f1:c3:fd:59:ae:cf:98:e3:61:22:7c:e8:57:fc:9a:
99:c4:1e:44:37:55:26:b0:e4:fc:23:8e:db:3b:74:
bb:a2:6b:d9:3c:22:e5:f6:b0:94:c7:c9:b5:1a:ad:
5f:12:d2:41:ed:9e:94:07:ad:45:b8:3b:fa:a7:57:
07:51:64:15:1e:ff:05:71:54:02:14:e0:fb:df:64:
9f:df:36:6d:63:07:70:19:11:40:ac:7d:f5:33:39:
11:09:0e:92:d8:53:20:0e:3c:52:ad:e5:2b:e5:c9:
66:09:80:9c:61:b4:7c:16:b5:d5:f0:60:ab:88:b9:
a0:ee:8d:35:dc:8c:a9:a8:10:7b:57:41:8c:b6:b3:
8f:2d:04:fb:59:d1:fe:84:61:d0:95:5a:2e:99:54:
0e:7b:39:8f:83:75:ba:c1:71:91:69:89:7c:8c:6a:
aa:f1:27:15:f9:22:59:97:15:ac:61:92:f0:53:10:
34:f8:22:7f:9a:45:c9:09:8e:4d:aa:51:f4:b9:9e:
49:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:05:DC:B5:5F:D1:4B:5C:7A:A2:94:AE:37:C7:02:75:69:2F:41:80
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A9CD5/7A9A25107FEF11EFA82DF639C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A9CD5/7A9A25107FEF11EFA82DF639C4F9AE02/YwXctV_RS1x6opSuN8cCdWkvQYA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133057
sbgp-ipAddrBlock: critical
IPv6:
2401:c6e0::/32
Signature Algorithm: sha256WithRSAEncryption
7d:f8:13:70:50:7d:bd:df:61:80:5a:a7:53:5a:02:25:a7:f4:
67:25:d0:2d:6b:20:74:fc:1e:30:6f:6c:52:33:24:da:2c:47:
c7:7f:7a:47:58:16:8d:f4:35:07:16:66:a0:ba:35:ba:4a:d5:
7f:1c:56:be:e8:2f:25:77:94:f0:84:a8:bc:84:8a:c2:a3:28:
70:6f:5d:dc:a9:5f:7c:c8:6a:97:c4:e7:41:b8:bc:68:d6:5c:
da:c0:5e:c2:4b:75:dc:42:01:cc:d6:cf:8f:4d:fd:0e:e4:16:
f7:f9:fe:6d:cd:36:bb:f4:39:7d:bb:2b:7b:c7:0a:28:db:56:
85:11:56:d7:06:c8:b4:66:37:e9:a5:36:58:09:29:53:d4:c4:
70:72:4b:52:62:fe:fa:d9:90:66:2e:96:34:8d:b4:b3:45:e4:
85:0e:74:f5:fc:12:c4:c6:70:df:42:73:6e:8a:1c:5b:a9:31:
f2:be:b0:c0:8a:b0:ec:31:1f:90:2f:6e:bd:51:d8:87:79:b0:
8f:63:a1:f7:d3:fd:cb:84:f2:ea:22:ef:7b:a3:fb:08:58:12:
4c:7b:71:c7:13:91:f8:a7:c0:d1:63:63:23:32:fa:16:ad:81:
89:7d:a9:e3:7c:d3:a1:59:1e:e0:ee:e9:86:5c:bc:d0:b9:9a:
0c:8a:13:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:55 2024 by rpki-client on console.sobornost.net