Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBOSci3K74B41N1Wc9MlHMO1d8.cer
File: rNBOSci3K74B41N1Wc9MlHMO1d8.cer (raw, json)
Hash identifier: Y/mNoucrIYKbNJs1OFoK6JD69DWwswQtY7AaLArLNGY=
Subject key identifier: AC:D0:4E:49:C8:B7:2B:BE:01:E3:53:75:59:CF:4C:94:73:0E:D5:DF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020E2C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91411B3/C6DA292C184611EA9B842F27C4F9AE02/rNBOSci3K74B41N1Wc9MlHMO1d8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91411B3/C6DA292C184611EA9B842F27C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 18 Sep 2024 14:49:36 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 2404:1c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134700 (0x20e2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 18 14:49:36 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91411B3/serialNumber=ACD04E49C8B72BBE01E3537559CF4C94730ED5DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bb:02:6a:fd:fc:e4:ff:34:01:a4:3d:ee:8a:
25:a4:f7:94:22:99:23:39:3f:04:9a:b9:5b:c9:cb:
0c:38:99:31:90:5e:70:b7:3a:ea:40:1e:7b:a8:6a:
37:f2:30:cd:32:f9:29:92:1a:11:9b:b8:88:28:83:
62:ff:24:c7:80:db:ac:21:73:ab:50:7d:0b:84:aa:
6e:1d:32:73:05:cb:b4:47:80:66:31:88:95:31:fa:
00:95:3d:e1:dc:e0:12:36:71:5c:57:b0:2c:93:a6:
66:1c:56:dc:50:73:ba:1b:d5:2f:4b:33:68:59:18:
59:48:9f:b3:de:1b:9b:1c:57:6b:1a:ab:8d:18:a8:
1d:8e:ca:93:16:c3:bb:70:d3:80:6e:61:31:c0:5e:
30:1e:d0:3e:06:0c:96:a0:80:99:e7:dd:8d:f8:49:
c5:65:83:b9:9d:1c:46:50:05:ec:39:63:b6:6c:26:
47:cd:5f:bf:b4:ff:c5:0d:ef:e3:48:fb:ea:d4:50:
d3:9b:85:e6:20:e7:a2:0b:dc:f4:6e:25:ba:eb:50:
da:4a:93:ef:cd:92:bf:ef:d7:87:ed:5a:54:7f:80:
cd:bb:c2:96:81:8a:c2:90:c2:68:88:ac:3f:aa:18:
21:fb:c2:dc:cc:b1:8f:b9:c4:7c:bc:55:91:93:f5:
d7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D0:4E:49:C8:B7:2B:BE:01:E3:53:75:59:CF:4C:94:73:0E:D5:DF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91411B3/C6DA292C184611EA9B842F27C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91411B3/C6DA292C184611EA9B842F27C4F9AE02/rNBOSci3K74B41N1Wc9MlHMO1d8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:1c0::/32
Signature Algorithm: sha256WithRSAEncryption
4a:24:8b:d0:f5:99:c5:dc:12:39:46:97:06:ab:e0:16:4a:e8:
a1:4b:23:6c:de:c8:37:0c:4a:fc:48:db:59:ab:f1:83:34:ea:
be:a6:0e:c3:a4:b9:e5:4a:c1:f3:52:97:92:fd:a0:34:bb:74:
a9:c0:38:31:fc:7b:e8:42:e3:60:81:0a:1a:38:ea:0a:4e:ef:
0c:c3:1d:ee:c1:c5:5b:b4:1f:04:f7:8a:e3:62:f4:3d:dd:42:
12:3b:30:ea:98:57:da:e6:11:cf:5d:eb:cb:14:78:d5:57:2d:
0d:c4:3c:d6:55:ac:ff:5c:68:34:59:c7:7e:fa:2e:2e:36:e9:
c8:4b:db:d6:27:0d:28:c7:23:4d:f6:d1:92:e7:9c:10:9f:10:
a7:0d:8c:c6:01:62:94:2b:f9:c1:e4:67:79:04:86:7a:4a:9b:
7f:43:04:f3:8f:4d:3e:f0:2c:de:63:5c:74:90:1a:80:8c:9f:
43:73:f0:09:5f:64:0c:10:02:2e:2d:b8:c4:ca:ab:0c:6e:52:
2c:77:e4:d4:e0:f4:f9:c2:67:24:d4:60:04:42:2c:fd:90:6f:
30:d0:ed:74:d8:bd:7d:4f:61:00:cb:69:ce:94:85:39:7c:f1:
f8:c4:73:32:2a:ba:4a:af:d2:d5:80:5c:24:b1:e1:75:a9:fd:
51:48:5d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:10 2024 by rpki-client on console.sobornost.net