Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wY0PKmaZBAAxxHzLWn1nBms8EM.cer
File: _wY0PKmaZBAAxxHzLWn1nBms8EM.cer (raw, json)
Hash identifier: TV5K1aX/Hb9YsgTMGgdcJoUot2B6T0hQzsXKCZ6A2Bk=
Subject key identifier: FF:06:34:3C:A9:9A:64:10:00:C7:11:F3:2D:69:F5:9C:19:AC:F0:43
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020A93
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AF2D9/B31201E067AA11EF8F498A27C4F9AE02/_wY0PKmaZBAAxxHzLWn1nBms8EM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AF2D9/B31201E067AA11EF8F498A27C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 31 Aug 2024 15:07:17 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 151656
IP: 2001:df4:27c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133779 (0x20a93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 31 15:07:17 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91AF2D9/serialNumber=FF06343CA99A641000C711F32D69F59C19ACF043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fe:ea:bc:96:de:0b:1e:d2:23:14:f9:46:a3:
d7:73:35:e8:8e:fb:01:9b:30:f8:22:b2:85:fe:04:
00:0d:80:a3:ce:d1:86:72:19:76:dd:e9:ef:58:4e:
64:34:01:83:42:44:6a:f6:2b:17:07:2c:44:a6:99:
d9:0c:24:42:72:ae:b8:8e:84:83:31:e3:41:22:83:
7a:0a:83:ff:c0:33:48:1a:b9:0f:cc:97:1e:ab:c7:
1c:eb:22:d3:9f:12:f9:cc:52:30:cf:f9:6c:c4:c5:
4b:7c:53:6b:8c:fc:ba:50:ea:f6:45:f0:3a:de:50:
81:29:8d:04:bb:a0:d9:b9:16:ca:d4:68:6f:6e:d9:
6e:8d:d3:14:64:41:fb:ee:c6:c4:7c:c5:fa:66:24:
73:c3:84:ff:b7:88:ce:40:96:4f:9b:2e:c3:4e:19:
88:d0:df:89:c1:fa:07:82:4c:6a:2d:51:25:16:c9:
7d:b8:a4:5b:e1:b3:bf:19:45:26:6b:eb:c7:88:d2:
a6:89:97:db:e5:8e:dc:55:7e:03:f9:73:97:24:0e:
6f:f9:47:38:0d:d2:51:18:00:fa:82:19:c3:5c:c7:
93:a3:9e:ad:da:9c:5f:3e:5c:2e:3e:6b:85:34:8a:
02:33:d2:4a:17:c3:c1:46:27:71:18:e1:b8:96:13:
7a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:06:34:3C:A9:9A:64:10:00:C7:11:F3:2D:69:F5:9C:19:AC:F0:43
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/B31201E067AA11EF8F498A27C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/B31201E067AA11EF8F498A27C4F9AE02/_wY0PKmaZBAAxxHzLWn1nBms8EM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151656
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:27c0::/48
Signature Algorithm: sha256WithRSAEncryption
0a:a3:fa:00:59:a4:91:4c:80:fc:9a:80:ce:03:94:b0:87:3b:
07:fc:13:fb:f2:8e:40:88:b5:b3:c1:dd:30:46:2a:7f:c5:bb:
8c:c9:27:a0:4a:3d:1b:a3:ac:13:41:08:4b:d4:0d:16:bf:d8:
c2:bf:3c:1a:53:a5:3b:d3:e7:10:85:27:97:d6:63:37:96:18:
47:62:f9:dd:48:b2:56:55:24:13:b4:09:d0:98:70:b2:97:11:
d2:fc:94:d8:c7:c6:53:d5:bf:41:a9:39:ac:48:49:3d:1a:26:
76:0f:ae:83:2e:2d:88:fa:d9:0e:ef:ca:e8:c3:f1:aa:7c:7c:
9f:09:2c:f0:18:fd:de:84:a6:7c:c4:ba:53:1e:fe:80:77:01:
b8:52:89:88:90:9e:8e:5e:ec:9f:d5:f9:eb:d4:49:37:1a:20:
63:72:ba:06:4f:ef:3d:6e:d0:61:76:96:8c:b9:8f:63:c3:f6:
f0:43:7c:18:99:86:80:10:b8:f0:5c:9b:4b:41:b2:f0:1f:6e:
f8:07:f6:64:f4:fa:ce:bb:ba:54:92:19:03:c9:3d:47:f9:0e:
74:99:af:8c:e8:5c:be:33:20:a5:7e:d6:98:00:e3:63:c0:d1:
7f:cd:b5:47:12:8f:bf:a3:85:cf:4e:43:ef:9d:26:c0:12:7d:
bf:4b:eb:fa
-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgIDAgqTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgzMTE1MDcxN1oXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQUYyRDkxMTAvBgNVBAUTKEZGMDYzNDNDQTk5QTY0MTAwMEM3MTFG
MzJENjlGNTlDMTlBQ0YwNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC0/uq8lt4LHtIjFPlGo9dzNeiO+wGbMPgisoX+BAANgKPO0YZyGXbd6e9YTmQ0
AYNCRGr2KxcHLESmmdkMJEJyrriOhIMx40Eig3oKg//AM0gauQ/Mlx6rxxzrItOf
EvnMUjDP+WzExUt8U2uM/LpQ6vZF8DreUIEpjQS7oNm5FsrUaG9u2W6N0xRkQfvu
xsR8xfpmJHPDhP+3iM5Alk+bLsNOGYjQ34nB+geCTGotUSUWyX24pFvhs78ZRSZr
68eI0qaJl9vljtxVfgP5c5ckDm/5RzgN0lEYAPqCGcNcx5Ojnq3anF8+XC4+a4U0
igIz0koXw8FGJ3EY4biWE3q7AgMBAAGjggMSMIIDDjAdBgNVHQ4EFgQU/wY0PKma
ZBAAxxHzLWn1nBms8EMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFGMkQ5L0IzMTIwMUUwNjdBQTExRUY4RjQ5OEEyN0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBRjJEOS9CMzEyMDFFMDY3QUExMUVGOEY0OThBMjdDNEY5QUUwMi9fd1kwUEtt
YVpCQUF4eEh6TFduMW5CbXM4RU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlBoMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN9CfAMA0G
CSqGSIb3DQEBCwUAA4IBAQAKo/oAWaSRTID8moDOA5SwhzsH/BP78o5AiLWzwd0w
Rip/xbuMySegSj0bo6wTQQhL1A0Wv9jCvzwaU6U70+cQhSeX1mM3lhhHYvndSLJW
VSQTtAnQmHCylxHS/JTYx8ZT1b9BqTmsSEk9GiZ2D66DLi2I+tkO78row/GqfHyf
CSzwGP3ehKZ8xLpTHv6AdwG4UomIkJ6OXuyf1fnr1Ek3GiBjcroGT+89btBhdpaM
uY9jw/bwQ3wYmYaAELjwXJtLQbLwH274B/Zk9PrOu7pUkhkDyT1H+Q50ma+M6Fy+
MyClftaYAONjwNF/zbVHEo+/o4XPTkPvnSbAEn2/S+v6
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:56 2024 by rpki-client on console.sobornost.net