Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/deIxCEEFtBXk1XmhraSOU5dW17M.cer
File: deIxCEEFtBXk1XmhraSOU5dW17M.cer (raw, json)
Hash identifier: OYMhcLSV6SDj8+FBHXRA208vbqR8Oa0VPNYABYBBOyw=
Subject key identifier: 75:E2:31:08:41:05:B4:15:E4:D5:79:A1:AD:A4:8E:53:97:56:D7:B3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FD5A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AD9EF/8EB3EECE5BE611EEA705A765C4F9AE02/deIxCEEFtBXk1XmhraSOU5dW17M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AD9EF/8EB3EECE5BE611EEA705A765C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Jul 2024 21:19:16 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 38054
IP: 58.65.224.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130394 (0x1fd5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 2 21:19:16 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91AD9EF/serialNumber=75E231084105B415E4D579A1ADA48E539756D7B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d5:e8:82:82:59:f2:6e:0a:1c:c6:aa:1e:15:
e1:26:0d:fc:39:44:37:f1:95:3a:e8:63:e1:21:0f:
0c:b9:be:05:e8:58:3a:45:9c:ed:2c:19:db:f1:9b:
44:e2:e4:71:d6:41:15:b4:92:58:6f:9a:99:8a:a4:
3f:ce:c4:df:7b:87:a8:07:56:05:d6:a6:e7:8b:dc:
ae:cc:c7:4e:02:70:ba:10:9d:9d:26:23:7f:61:37:
ee:42:a4:83:40:79:b5:73:b6:be:aa:3c:c7:5e:e4:
a0:a0:07:3a:de:19:70:94:7a:ac:3a:c1:52:21:30:
84:87:b4:ab:23:81:82:1f:dc:ea:75:a2:66:7a:94:
04:68:c0:90:7c:53:a4:d2:f9:3b:59:bc:17:4a:ce:
26:cd:e3:b8:60:4b:9e:b6:89:5e:eb:2d:ec:a7:35:
84:d2:42:86:1b:00:e3:ea:1c:93:c3:63:41:8d:fb:
d2:e6:82:d6:1d:a7:43:d2:a7:25:b2:60:c4:50:7d:
df:4b:c8:6e:e5:1d:cd:aa:ee:87:eb:6c:f8:49:ff:
99:8f:98:25:28:51:9f:43:8e:2a:d8:eb:f7:88:2c:
2e:be:fb:02:a3:08:60:bf:da:04:90:b0:fb:f8:6b:
eb:a0:dc:e1:b9:6b:5e:77:ea:bf:bb:10:1a:bf:d0:
a5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E2:31:08:41:05:B4:15:E4:D5:79:A1:AD:A4:8E:53:97:56:D7:B3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AD9EF/8EB3EECE5BE611EEA705A765C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AD9EF/8EB3EECE5BE611EEA705A765C4F9AE02/deIxCEEFtBXk1XmhraSOU5dW17M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38054
sbgp-ipAddrBlock: critical
IPv4:
58.65.224.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:b6:c8:dd:ca:76:30:f5:d4:be:ec:56:90:b2:08:6e:32:a7:
40:2d:05:9d:e2:4e:d8:07:38:fb:39:fb:f4:27:a5:36:be:a8:
b4:34:35:93:de:28:c3:cb:51:9b:36:ec:5f:de:c8:62:3f:01:
b3:3b:13:06:69:0c:e9:b4:5b:52:8b:50:e0:63:30:65:0b:47:
39:62:0d:19:3e:3a:55:08:31:45:5e:98:75:e6:25:33:42:f9:
1c:3b:11:de:36:6c:b6:8a:4f:ac:ad:77:28:8b:c6:44:53:7e:
55:f1:18:c6:bd:54:66:13:b7:33:82:3e:82:23:e5:99:77:58:
60:de:64:d5:f7:59:36:a1:f2:cc:f6:6e:cd:bd:76:33:5d:b7:
7a:4e:64:06:92:44:5a:00:cb:27:a2:f0:b1:8a:ca:f6:a5:bd:
2c:70:a8:64:c3:c5:8e:48:a2:82:0f:53:97:3e:c0:28:b6:74:
a9:fb:84:5c:43:fc:21:1d:f6:98:7b:41:00:1c:74:da:ee:9b:
0b:9d:fb:45:55:6b:06:01:34:58:ef:b6:9f:b0:f7:1f:e8:af:
e7:ea:fc:c2:c0:ed:6f:fc:65:6c:b8:db:26:d4:15:4c:e5:c7:
07:97:23:a8:22:57:af:96:f9:41:d7:81:b2:6b:7f:60:df:08:
73:50:1a:eb
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAf1aMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcwMjIxMTkxNloXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQUQ5RUYxMTAvBgNVBAUTKDc1RTIzMTA4NDEwNUI0MTVFNEQ1NzlB
MUFEQTQ4RTUzOTc1NkQ3QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDG1eiCglnybgocxqoeFeEmDfw5RDfxlTroY+EhDwy5vgXoWDpFnO0sGdvxm0Ti
5HHWQRW0klhvmpmKpD/OxN97h6gHVgXWpueL3K7Mx04CcLoQnZ0mI39hN+5CpINA
ebVztr6qPMde5KCgBzreGXCUeqw6wVIhMISHtKsjgYIf3Op1omZ6lARowJB8U6TS
+TtZvBdKzibN47hgS562iV7rLeynNYTSQoYbAOPqHJPDY0GN+9LmgtYdp0PSpyWy
YMRQfd9LyG7lHc2q7ofrbPhJ/5mPmCUoUZ9DjirY6/eILC6++wKjCGC/2gSQsPv4
a+ug3OG5a1536r+7EBq/0KVpAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUdeIxCEEF
tBXk1XmhraSOU5dW17MwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFEOUVGLzhFQjNFRUNFNUJFNjExRUVBNzA1QTc2NUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBRDlFRi84RUIzRUVDRTVCRTYxMUVFQTcwNUE3NjVDNEY5QUUwMi9kZUl4Q0VF
RnRCWGsxWG1ocmFTT1U1ZFcxN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAJSmMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDOkHgMA0GCSqG
SIb3DQEBCwUAA4IBAQButsjdynYw9dS+7FaQsghuMqdALQWd4k7YBzj7Ofv0J6U2
vqi0NDWT3ijDy1GbNuxf3shiPwGzOxMGaQzptFtSi1DgYzBlC0c5Yg0ZPjpVCDFF
Xph15iUzQvkcOxHeNmy2ik+srXcoi8ZEU35V8RjGvVRmE7czgj6CI+WZd1hg3mTV
91k2ofLM9m7NvXYzXbd6TmQGkkRaAMsnovCxisr2pb0scKhkw8WOSKKCD1OXPsAo
tnSp+4RcQ/whHfaYe0EAHHTa7psLnftFVWsGATRY77afsPcf6K/n6vzCwO1v/GVs
uNsm1BVM5ccHlyOoIlevlvlB14Gya39g3whzUBrr
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:58 2024 by rpki-client on console.sobornost.net