Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUa3guuCRnsZ2LQdHMQOvwSJkGY.cer
File: kUa3guuCRnsZ2LQdHMQOvwSJkGY.cer (raw, json)
Hash identifier: RzWs4EwpZ7CvqCju9bZThUnMsVf9aoF9m768xSyHV0s=
Subject key identifier: 91:46:B7:82:EB:82:46:7B:19:D8:B4:1D:1C:C4:0E:BF:04:89:90:66
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020C9C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9155806/D0C5F4E26E9111EFA62B4C3FC4F9AE02/kUa3guuCRnsZ2LQdHMQOvwSJkGY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9155806/D0C5F4E26E9111EFA62B4C3FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Sep 2024 09:56:48 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153323
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134300 (0x20c9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 9 09:56:48 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9155806/serialNumber=9146B782EB82467B19D8B41D1CC40EBF04899066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3b:e7:84:e3:a2:ed:56:53:7d:64:41:54:da:
7b:4e:96:19:c9:62:8e:f4:f8:ae:36:a3:6a:dd:16:
e2:f6:d4:f7:88:42:3a:e6:37:66:e1:df:7e:d5:8a:
56:a6:7c:8d:96:63:29:c3:fc:91:cb:aa:a3:23:a2:
12:49:78:c6:ce:cc:64:97:f9:ac:e3:ea:1c:86:0a:
6f:47:88:f4:0c:3c:61:2b:d6:a5:99:08:48:3b:32:
dc:20:3d:63:95:2a:ca:f9:c6:bd:91:1b:31:ff:6a:
bc:3c:c9:ef:7a:7f:31:6e:ec:df:04:ae:19:6f:e6:
66:33:8c:3e:4d:1d:14:24:03:03:ad:21:38:b2:6d:
86:db:a5:eb:cf:f8:d5:a4:8e:ec:26:08:cc:eb:a5:
8a:f6:4a:f7:2d:05:5a:d9:c6:d6:57:4f:bd:15:a0:
18:2b:42:cc:8b:95:50:3a:0f:e4:b9:1d:29:9b:f6:
a8:bb:44:79:2f:9d:56:8c:8a:35:c2:fc:f0:ba:34:
c1:97:74:be:e8:2a:e5:e5:36:38:10:e6:af:d2:de:
8f:ca:bb:6a:b0:75:86:7e:f7:cf:50:24:db:5d:91:
49:18:ea:51:fc:c3:d8:7d:90:28:39:96:55:8f:aa:
aa:0f:0e:44:9d:52:bd:6f:8a:0b:bf:72:89:8c:66:
71:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:46:B7:82:EB:82:46:7B:19:D8:B4:1D:1C:C4:0E:BF:04:89:90:66
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9155806/D0C5F4E26E9111EFA62B4C3FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9155806/D0C5F4E26E9111EFA62B4C3FC4F9AE02/kUa3guuCRnsZ2LQdHMQOvwSJkGY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153323
Signature Algorithm: sha256WithRSAEncryption
83:8d:2b:95:6b:ea:dd:bd:93:3d:66:b3:68:87:51:09:41:f6:
dc:6f:75:38:71:81:6f:91:2f:72:d7:4d:e1:18:94:5f:1d:8d:
d9:3f:ab:8a:5c:4c:fb:e4:16:44:a3:1c:8f:4c:44:3b:a3:22:
35:cc:14:94:3a:ad:d9:34:de:75:c2:50:cd:e2:a5:38:0b:83:
dc:54:f2:0e:49:22:9b:cc:00:2a:88:e0:a5:54:69:1f:24:b1:
bb:7b:f9:3c:7d:8b:3c:27:ea:7f:4e:9a:53:64:25:09:aa:5c:
6f:bd:32:b3:a6:e5:45:2d:e7:70:d6:39:8f:00:7e:0e:1b:82:
93:5a:30:04:55:17:ad:29:65:95:c2:ba:63:08:65:ed:9e:f8:
ec:17:b3:11:1b:d4:c8:87:13:ab:7b:01:ac:92:1e:d9:d0:b4:
d8:b6:b3:ed:79:40:11:67:17:19:33:bf:da:ed:2d:ea:c5:ee:
c9:ef:4b:c3:64:e2:3d:31:48:0f:7c:34:44:ed:e1:e7:3c:67:
33:29:db:a7:a8:a7:a6:81:61:44:3c:9b:ea:4c:9b:a6:20:a4:
be:b7:88:a3:ce:96:47:88:5e:61:d7:27:32:ad:4d:83:a2:d9:
a2:e1:97:45:cb:1f:1f:af:c7:85:6e:e8:8b:b5:09:ac:e8:ce:
03:a3:40:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:05 2024 by rpki-client on console.sobornost.net