Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer
File: aLMj2oThIFRmzrWv19YHcmdbBTE.cer (raw, json)
Hash identifier: N5ivsAmCN6oms56ibdjfIISD35CVSEJhqQNHF3u/zis=
Subject key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0212AB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 08 Oct 2024 09:55:36 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153358
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135851 (0x212ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 8 09:55:36 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:dd:6b:32:88:42:6e:2a:e1:4d:c8:ce:ad:ee:
bb:d2:77:5a:7b:b9:3d:b6:33:01:b8:c4:37:15:af:
80:fc:f7:88:01:31:b9:9d:2a:f4:fe:2a:5e:42:52:
8d:a4:e7:49:60:11:ef:53:35:4d:91:e2:c6:a3:bf:
5b:f2:e3:01:b2:d1:c4:c0:29:44:ca:1f:f6:d2:73:
1c:6a:1b:6f:96:86:dc:f1:80:66:35:7e:e4:5b:54:
ef:b2:c2:5d:07:30:88:d6:4b:16:a6:de:6e:9e:c4:
16:47:f8:62:e5:81:52:42:29:db:8d:37:83:28:e2:
20:a3:88:53:90:32:9b:6c:f7:94:3d:11:8f:a9:37:
62:ab:1c:96:4e:c2:6e:22:f1:fa:7d:07:7a:9f:54:
33:ed:af:fb:a5:14:d9:2d:06:e6:b7:4b:87:c9:62:
23:5c:cf:7b:d7:79:fe:4f:f7:42:20:cc:9f:8d:6d:
d8:0a:07:74:b2:95:38:ea:ef:1d:4f:e7:14:10:65:
70:b5:ca:78:04:19:ae:31:5d:2c:cc:ea:c1:03:90:
eb:cc:bb:3f:12:8e:e0:81:79:0d:d1:a2:d1:d8:4c:
12:42:ba:1a:84:2f:b8:f0:1a:e7:2c:64:48:d3:e9:
ab:ab:36:94:35:9b:26:44:14:b4:92:1a:2c:4d:2a:
d1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153358
Signature Algorithm: sha256WithRSAEncryption
11:f3:b7:f0:f9:ff:92:90:0f:5e:fe:63:27:7a:be:26:89:15:
9c:3e:cc:71:68:40:33:19:6c:81:39:68:ad:f7:7b:25:6c:71:
ee:12:21:75:4e:79:33:e9:7d:f7:97:43:de:5e:79:63:3b:f2:
36:ee:6d:36:b8:2e:20:51:be:5e:e0:e1:8c:7f:84:37:17:44:
4d:92:38:41:e4:7a:f4:1d:7f:3b:8a:d6:05:ad:e3:f9:b5:2a:
c5:13:55:e0:60:08:f0:ce:13:1d:9e:24:bc:34:0e:de:e8:76:
86:e9:cc:32:1a:e2:f9:d4:3e:94:ef:69:07:35:fb:ff:c5:38:
c3:02:90:69:b0:7e:47:63:26:a7:ab:8e:c1:e1:c6:2b:7d:92:
bb:89:9f:b7:48:c0:34:22:4a:49:d5:5e:99:2d:6f:ae:dd:ad:
4a:50:8c:b0:c6:33:82:9a:be:b6:66:05:9a:f6:e0:26:18:0a:
b4:7e:0f:01:35:ca:fc:c2:d9:0b:6f:03:a0:fb:4e:aa:d6:a5:
47:a2:71:90:94:57:ef:85:4d:2c:d1:a4:31:89:9e:d9:b9:f9:
48:77:d0:de:f7:26:dc:43:0e:c1:1e:2d:20:43:bf:12:4e:28:
78:1b:2a:b5:9d:8a:67:23:fa:04:f1:f8:84:02:b8:3a:e0:39:
f5:71:e5:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:56 2024 by rpki-client on console.sobornost.net