Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsWxkEs1xH2UUI7Aoazag2je9Kk.cer
File: ZsWxkEs1xH2UUI7Aoazag2je9Kk.cer (raw, json)
Hash identifier: 1B5ZHU+g/2pePk9GzCC7aW+4LeealoQ2L4MSJvRHlko=
Subject key identifier: 66:C5:B1:90:4B:35:C4:7D:94:50:8E:C0:A1:AC:DA:83:68:DE:F4:A9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020C4F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Sep 2024 06:19:40 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 153049
IP: 2001:df4:1c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134223 (0x20c4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 6 06:19:40 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91A12C4/serialNumber=66C5B1904B35C47D94508EC0A1ACDA8368DEF4A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:c3:4f:c5:db:2a:ea:38:c9:cb:c9:eb:bd:5e:
ca:5f:52:d6:65:e0:f9:01:e9:66:93:cf:e1:b8:55:
85:f9:28:ce:b5:83:56:1a:98:0a:57:81:1a:7d:1d:
c5:42:22:4e:4c:24:7a:13:87:43:d6:2e:e4:e4:90:
12:11:7f:1a:36:30:d1:b7:e9:ef:4c:f9:e7:04:0e:
62:de:ab:6d:b9:78:a9:c5:3f:39:bc:77:46:89:63:
75:b2:c6:3e:9c:91:bc:9a:40:14:cd:75:35:80:89:
b1:81:79:e1:86:c9:fc:13:f6:ab:92:85:5d:f8:f9:
be:c5:d0:9b:ea:91:de:97:26:6f:fd:1b:ed:02:9c:
d9:ad:43:f1:0e:2f:24:8c:d1:88:d8:e1:da:f5:23:
2d:82:18:67:6b:cf:8c:ab:72:2d:b5:40:3d:d2:89:
73:32:3a:0b:0a:e2:5c:ca:9e:fa:7b:b4:fd:cc:df:
1b:bf:26:80:e7:6f:e2:fb:18:cc:91:fd:0c:8b:72:
cd:98:11:c9:8a:6c:81:47:a8:ef:7f:35:20:a3:8a:
43:d9:d3:31:bf:3b:45:42:04:1f:a9:da:f4:d7:97:
53:a0:48:24:8f:32:fa:32:0a:8e:32:51:1d:0f:86:
e2:e8:86:e4:4e:a2:fd:21:94:65:81:03:c3:5e:d1:
23:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C5:B1:90:4B:35:C4:7D:94:50:8E:C0:A1:AC:DA:83:68:DE:F4:A9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153049
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:1c0::/48
Signature Algorithm: sha256WithRSAEncryption
1a:a5:43:66:d2:65:85:57:6e:ef:a0:05:33:68:de:8b:86:d7:
d7:d2:3b:36:cb:fb:2d:04:9d:8d:11:4b:03:3e:50:ce:8c:7b:
aa:76:b8:00:19:8c:fa:b2:34:e1:71:5e:1f:e8:c7:79:1c:0a:
60:64:74:d4:17:58:c8:28:91:9b:44:d4:05:8d:dc:1a:7c:ed:
1b:d5:bd:c8:20:37:3c:59:c1:c4:b0:a2:6b:6e:50:92:ec:83:
17:6a:53:fd:ac:04:3c:50:4c:27:22:d8:99:25:01:c3:8a:3e:
71:56:d5:c3:a7:65:80:e2:bd:4e:05:02:cd:4e:90:f2:75:90:
e0:22:d2:0c:b1:2f:62:f8:d1:6f:df:90:88:ee:b4:08:8f:67:
3e:40:e9:ea:5d:60:ea:5c:e8:23:49:2d:ca:25:ad:27:42:b2:
19:2e:75:9c:d0:ee:8c:d3:77:99:14:e0:ef:a0:8d:fe:c1:9f:
b5:e0:6a:80:ce:ed:f1:b7:e3:85:25:3c:fa:3b:39:d3:86:1d:
c0:37:82:f1:ab:8d:24:4e:be:9e:11:bd:bd:aa:4e:99:fd:77:
87:44:13:36:19:ad:e1:75:6b:38:e3:07:63:fc:a8:ef:6c:0a:
84:98:f7:17:e8:c9:fc:9e:6c:0d:85:05:6b:da:e7:fb:84:93:
c1:5f:45:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:55 2024 by rpki-client on console.sobornost.net