Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jos0Y56lTfgQuSvLp0JwTkyIQsI.cer
File: jos0Y56lTfgQuSvLp0JwTkyIQsI.cer (raw, json)
Hash identifier: SXOhmbvOwMMmKj2e20TLyARPYfQt8mkKWlwiPQWvh2U=
Subject key identifier: 8E:8B:34:63:9E:A5:4D:F8:10:B9:2B:CB:A7:42:70:4E:4C:88:42:C2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020929
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B4C1B/D965BA40641B11EF9891547FC4F9AE02/jos0Y56lTfgQuSvLp0JwTkyIQsI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B4C1B/D965BA40641B11EF9891547FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 27 Aug 2024 02:27:11 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153192
IP: 2401:b960::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133417 (0x20929)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 27 02:27:11 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91B4C1B/serialNumber=8E8B34639EA54DF810B92BCBA742704E4C8842C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6e:57:4e:cf:7a:a6:fd:8b:ea:25:d7:71:76:
14:67:0f:ca:c8:5b:b6:63:27:ef:e4:94:40:bf:8d:
5a:00:ab:20:6d:e7:df:4f:5d:54:9e:f1:b1:15:b6:
d4:28:8e:2b:37:0b:55:ec:f6:b8:4f:8e:75:5a:a5:
36:27:b8:5b:f9:ee:23:91:fb:6e:e2:a8:bc:00:7a:
b1:c8:6a:62:ab:1c:7e:f2:5f:bb:ff:40:e5:3b:17:
6e:12:b9:34:ba:2e:4f:a2:9e:41:66:69:0f:21:a1:
ec:e3:00:de:31:3b:57:fc:5f:be:53:18:62:44:c9:
46:d3:e4:0f:8c:5f:db:64:32:4a:f1:ca:8a:3d:97:
9e:c9:d0:3e:a5:29:71:ba:da:a2:90:ea:b0:9f:3b:
5f:48:ad:28:1c:fc:d2:a7:94:48:f6:d6:3e:54:37:
c3:11:44:db:42:0c:e1:de:01:a1:ec:92:8a:8e:94:
18:98:f9:f1:97:26:59:40:0e:75:84:75:3e:72:ad:
40:9a:40:e7:52:c6:97:4a:eb:5d:1e:04:cf:3b:1b:
1a:8c:a1:42:ad:c1:7b:a5:e5:f4:50:59:89:46:9e:
b6:54:5d:1d:38:f8:80:1d:34:aa:8f:a7:60:05:05:
42:44:07:27:ca:4c:58:b5:57:90:f6:d8:03:8a:1b:
5b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:8B:34:63:9E:A5:4D:F8:10:B9:2B:CB:A7:42:70:4E:4C:88:42:C2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B4C1B/D965BA40641B11EF9891547FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B4C1B/D965BA40641B11EF9891547FC4F9AE02/jos0Y56lTfgQuSvLp0JwTkyIQsI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153192
sbgp-ipAddrBlock: critical
IPv6:
2401:b960::/32
Signature Algorithm: sha256WithRSAEncryption
21:c2:3e:3e:c2:de:8b:61:7d:f8:8a:34:e2:aa:88:22:2d:10:
0c:ea:31:b8:85:7b:ee:11:fe:0d:97:60:0d:75:b7:f8:ac:c9:
43:9e:c4:d8:3f:49:5c:3d:09:7b:06:cd:33:7f:44:d8:b3:cf:
a1:37:7a:de:9c:26:b3:a4:45:41:16:07:d0:e1:a4:b7:c9:f0:
ee:2a:3e:52:02:8b:db:6c:55:e1:68:7a:2d:64:e2:92:b3:26:
44:aa:ec:a2:42:4c:d3:bb:b4:ce:b9:db:d5:79:d1:a7:d1:11:
2e:e5:8d:06:77:70:fc:5c:c2:0f:42:41:f7:45:60:da:49:b9:
60:d2:25:47:f9:76:ed:57:55:b4:d6:4c:3e:e9:c3:a0:75:bb:
e7:b0:19:5d:b1:d0:94:ca:dd:40:cb:01:d7:b2:18:76:c3:97:
9f:5a:15:9f:e6:ae:08:8c:54:bf:f9:b2:a1:87:d8:61:a9:ab:
ed:36:93:6a:e9:9c:8b:30:a7:d4:6b:be:66:02:87:ad:1a:e4:
85:e2:ae:21:83:78:b3:ed:0c:6e:6c:3b:f3:b4:a5:dc:8f:d3:
31:cd:ba:d4:0b:76:e3:0c:65:d5:49:40:49:e4:51:cb:18:d1:
9f:88:0d:89:ef:e9:07:97:bd:bc:58:42:3a:51:f2:9e:03:27:
ef:3e:bf:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:04 2024 by rpki-client on console.sobornost.net