Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.cer
File: ZDGVZSsiDcsi2pHQf9Y9pp64FNU.cer (raw, json)
Hash identifier: micDprK4YnaNfPpBj4u7GQSy2g0c9YUAjBRtYmqmcVc=
Subject key identifier: 64:31:95:65:2B:22:0D:CB:22:DA:91:D0:7F:D6:3D:A6:9E:B8:14:D5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020ED1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B1E55/555B040A78FA11EFA44FE586C4F9AE02/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B1E55/555B040A78FA11EFA44FE586C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 22 Sep 2024 15:50:09 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153326
IP: 2001:df4:41c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134865 (0x20ed1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 22 15:50:09 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91B1E55/serialNumber=643195652B220DCB22DA91D07FD63DA69EB814D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fd:87:48:df:3e:28:45:64:f7:ff:6e:55:03:
94:44:00:d3:b9:53:30:8a:b5:39:2a:9e:91:a4:d9:
f0:c6:01:a4:31:c0:ca:da:0c:e1:5c:8e:6d:8b:40:
90:cd:df:6f:7a:84:11:fe:28:5b:df:c9:29:c4:4a:
36:35:2c:d2:36:28:96:44:28:a9:50:94:91:c7:dd:
90:20:d8:ff:ec:47:a1:ce:48:41:cf:d5:47:6e:d4:
5c:4b:2f:8f:69:9f:e5:b6:da:92:45:db:e8:d8:c8:
91:12:26:71:6e:2d:49:91:65:5f:85:57:41:82:94:
db:1e:97:94:fe:2a:84:79:8d:62:c4:5a:24:3e:40:
27:41:83:e7:28:51:d2:c7:f3:26:b9:fd:0b:e9:dd:
fc:0a:47:2c:15:22:71:31:7c:7d:79:b3:db:f8:d5:
aa:bd:bb:60:08:de:c7:3c:82:4a:56:08:86:52:32:
82:5c:d8:21:b3:d7:55:35:28:74:46:21:e3:f4:79:
3d:c8:df:c3:c5:30:b5:52:08:b9:83:9a:cd:81:77:
d6:1d:94:83:5e:a9:04:f7:db:53:6d:cd:c0:f9:dc:
19:1e:1a:c5:ec:1c:5b:cd:3c:53:1f:87:e7:82:d6:
77:9c:98:80:c6:f4:5f:f0:3e:42:ee:75:46:56:3c:
17:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:31:95:65:2B:22:0D:CB:22:DA:91:D0:7F:D6:3D:A6:9E:B8:14:D5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B1E55/555B040A78FA11EFA44FE586C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B1E55/555B040A78FA11EFA44FE586C4F9AE02/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153326
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:41c0::/48
Signature Algorithm: sha256WithRSAEncryption
6d:ca:1e:1a:fe:7d:77:18:9d:df:0e:31:7a:85:1d:5f:99:f4:
66:c9:98:9b:2b:c7:ef:3d:a0:ff:05:7f:77:a3:a9:98:03:33:
de:6e:25:a0:d2:df:eb:79:0d:93:dc:aa:20:e0:82:36:a4:9f:
40:df:ff:35:14:2e:44:2a:45:2c:69:4e:89:6f:ee:05:65:02:
ea:89:fa:7a:4c:e6:10:df:49:d4:d0:1a:47:93:23:d7:5d:a0:
0a:9e:e6:2d:94:88:81:68:d5:ff:98:d3:f2:0b:d2:50:40:b8:
a5:76:07:5e:5b:90:68:d8:6d:f5:35:4a:12:07:ed:9f:28:32:
86:f1:33:63:dc:1f:6b:25:08:80:ec:6a:8a:7b:bb:ce:34:9c:
e7:a9:e4:c6:ca:91:93:98:22:46:da:69:59:cd:5a:24:82:68:
dc:65:86:70:99:01:dc:de:b4:63:6b:5f:b2:09:0d:b7:cf:04:
ef:8f:ce:ed:85:4b:2b:18:53:2a:58:18:38:84:84:3b:d9:80:
6e:56:44:81:34:d2:69:a9:ab:6c:ec:d0:14:24:c8:fa:c2:76:
32:19:d4:cd:41:ae:96:bb:51:f5:ca:a0:81:15:7f:2f:c1:97:
4a:06:91:37:c9:91:d1:f0:9a:fc:94:01:13:7a:15:db:7b:e2:
19:f2:c6:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:55 2024 by rpki-client on console.sobornost.net