Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer
File: ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer (raw, json)
Hash identifier: kOh86AcB3JvJVnLMwRKAZR5TkxAkoj+4kKIIkjukBSQ=
Subject key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020D81
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 13 Sep 2024 19:35:30 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153325
IP: 2001:df4:4140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134529 (0x20d81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 13 19:35:30 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3a:2f:97:04:43:b3:4c:fc:11:6c:b0:ae:fe:
06:33:b5:91:70:c2:33:9c:6c:92:81:51:54:6c:69:
c4:9d:99:47:5f:29:ce:d4:1a:b6:85:c2:63:32:d2:
b7:c6:64:ec:48:47:b8:9e:85:7e:d2:d3:8c:60:4d:
94:2b:41:93:9f:e6:df:c6:ec:df:c4:a8:93:5a:42:
82:14:05:e8:06:ad:d0:a1:63:e5:03:31:eb:80:76:
4a:fe:f8:d1:2f:65:94:94:63:c6:41:85:14:51:5b:
a3:cd:36:21:79:41:87:f0:c5:be:89:da:cd:e9:f9:
0b:a9:2a:ed:4f:5f:62:59:6d:a1:e5:96:e6:21:8c:
81:1e:e1:a0:a6:81:3a:0b:32:a1:d4:98:82:bc:5a:
c5:8e:e7:f9:5e:51:04:66:bc:cb:c5:d1:c0:c2:c8:
b6:06:44:7b:20:00:87:ae:52:f9:df:91:82:1e:f6:
39:6d:79:3a:31:f5:93:32:ce:b6:70:47:2c:e2:79:
88:24:9a:36:37:e2:0b:68:27:36:bf:f1:82:a6:e9:
65:b8:bb:0f:09:79:3f:2d:86:e0:19:4d:34:5b:85:
16:85:d7:f4:02:38:aa:ae:e1:af:14:50:f0:81:0d:
b3:33:44:b5:95:b4:61:6f:db:da:ed:c7:e3:67:db:
d8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153325
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:4140::/48
Signature Algorithm: sha256WithRSAEncryption
5b:2d:d3:55:99:8e:fe:a7:90:55:af:4f:ff:fd:58:30:47:98:
e2:93:39:bf:85:7d:06:06:e3:46:77:fe:31:0c:a8:ef:2d:f3:
81:3c:17:da:69:43:62:76:3c:98:dd:01:aa:fa:8c:15:96:13:
79:6c:ca:96:47:98:45:57:0a:09:07:4f:d7:fe:e0:81:3d:7e:
4c:1b:d7:71:1e:da:e0:24:35:2b:35:cc:71:78:2b:8a:ea:ae:
50:01:ec:07:ec:a7:ec:76:96:7d:3c:ee:1a:d7:28:7a:03:05:
52:03:df:81:3e:dc:c4:47:19:66:fc:6d:84:89:3e:85:b8:29:
19:4f:24:0a:e9:07:cd:9c:f2:2e:fe:88:31:08:c4:22:b7:12:
d8:62:32:46:ea:72:bd:ee:00:63:74:58:d2:7a:b2:54:36:2e:
8c:6e:38:49:3b:ba:2a:89:e1:c4:15:e7:99:1f:6d:7a:52:59:
d0:6a:52:2b:e7:59:35:77:48:9a:92:f8:24:64:84:50:fe:4d:
c7:85:46:d7:34:8c:0d:6b:84:1d:04:83:27:bf:9f:1c:59:04:
18:ee:61:b8:6b:d5:f3:da:4f:73:43:95:a8:86:db:41:18:f4:
0b:b6:d1:27:f8:48:cf:96:3c:51:c1:dc:2c:08:f0:91:ee:b2:
fc:49:65:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:55 2024 by rpki-client on console.sobornost.net