Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer
File: v1g_8H2jVv3igoGfR7zuJHUTEZo.cer (raw, json)
Hash identifier: 649gR3RFf3VKZvSLujupA3lQrgzIsjtF384RemyExG0=
Subject key identifier: BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FBA2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Jun 2024 12:49:38 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 10076
IP: 202.5.192.0/20
IP: 2404:ec80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129954 (0x1fba2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 27 12:49:38 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A912142C/serialNumber=BF583FF07DA356FDE282819F47BCEE247513119A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:fe:b5:73:95:75:52:dc:cf:ac:bb:db:01:fc:
ca:00:86:e9:54:b1:c5:47:0f:b5:34:ad:67:0b:c0:
ea:fa:86:61:a3:60:94:30:12:8c:d1:63:3b:87:0a:
6d:67:bf:08:ed:91:ed:4b:77:83:15:82:7b:9a:6b:
92:03:1a:c6:c2:9d:73:4a:88:6e:2a:ce:a2:9c:64:
7c:f1:32:60:2f:fd:cd:a4:bf:8a:9d:7e:9e:ea:30:
fe:d1:95:3b:ea:83:47:81:3c:e9:01:f2:18:22:10:
1a:a9:cd:aa:2d:90:ce:ee:8e:77:dc:97:0d:a6:80:
04:20:46:ac:0e:4f:53:e0:d9:82:ff:c2:fd:21:ff:
5d:b3:5d:76:61:0f:d8:66:98:87:23:01:a7:44:a4:
15:ca:cd:26:a9:e5:03:91:88:29:25:da:3f:b4:6b:
fa:6e:0a:a4:f5:f0:5f:1b:51:2f:4d:49:b1:43:76:
1f:cb:c8:27:ba:ef:ef:a7:b8:0c:77:db:16:0c:ce:
4a:74:b8:18:06:d2:a9:e5:86:1c:b8:b8:ac:30:1d:
77:1e:33:0e:a9:3c:fa:27:2c:be:99:7d:51:18:97:
6a:57:0f:cd:f2:fd:3d:82:a6:a5:10:fe:87:71:87:
5d:bf:41:dd:82:78:12:74:df:21:fa:c5:bf:63:40:
a7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10076
sbgp-ipAddrBlock: critical
IPv4:
202.5.192.0/20
IPv6:
2404:ec80::/32
Signature Algorithm: sha256WithRSAEncryption
54:a6:21:85:4e:7d:3d:73:b4:17:56:37:8e:76:f7:f6:f8:44:
f9:f4:94:9c:87:b0:97:28:32:c0:89:4a:3a:95:33:7e:e5:6f:
b6:6c:1b:3a:d5:5e:ed:43:b5:c8:24:54:33:ba:00:f2:9d:fd:
97:bc:82:c6:a1:4c:29:8f:a7:a2:9b:b7:f0:c4:81:52:01:53:
f7:2c:ab:71:24:a3:00:c2:13:54:fd:ef:f2:9b:68:1f:e8:81:
ce:f9:60:df:57:af:ca:25:68:39:4b:92:96:97:6c:8b:df:96:
1b:73:e3:0e:8b:36:f7:7d:2a:05:80:cd:24:76:04:1d:f4:54:
67:36:63:e1:cd:13:07:0e:59:1d:7f:c5:ac:21:9b:36:d3:e9:
72:43:ad:28:2f:3c:8a:a2:2b:5d:16:62:a9:14:3a:48:20:bb:
46:06:24:ba:9b:8d:88:41:63:85:c2:32:8a:2d:ea:81:5e:36:
e3:78:9f:10:4c:32:02:62:4c:d2:d1:7b:f3:8d:97:51:47:cb:
e6:d3:c6:50:56:c5:ff:8c:91:51:23:93:fa:02:a2:2e:8a:6d:
19:2b:a2:6d:1a:4a:69:00:b8:c7:3e:09:37:80:3c:19:df:2f:
81:44:01:1f:a1:60:2d:da:e6:fc:f0:91:49:01:40:25:f7:bc:
94:55:4a:37
-----BEGIN CERTIFICATE-----
MIIGKDCCBRCgAwIBAgIDAfuiMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDYyNzEyNDkzOFoXDTI1MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjE0MkMxMTAvBgNVBAUTKEJGNTgzRkYwN0RBMzU2RkRFMjgyODE5
RjQ3QkNFRTI0NzUxMzExOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDk/rVzlXVS3M+su9sB/MoAhulUscVHD7U0rWcLwOr6hmGjYJQwEozRYzuHCm1n
vwjtke1Ld4MVgnuaa5IDGsbCnXNKiG4qzqKcZHzxMmAv/c2kv4qdfp7qMP7RlTvq
g0eBPOkB8hgiEBqpzaotkM7ujnfclw2mgAQgRqwOT1Pg2YL/wv0h/12zXXZhD9hm
mIcjAadEpBXKzSap5QORiCkl2j+0a/puCqT18F8bUS9NSbFDdh/LyCe67++nuAx3
2xYMzkp0uBgG0qnlhhy4uKwwHXceMw6pPPonLL6ZfVEYl2pXD83y/T2CpqUQ/odx
h12/Qd2CeBJ03yH6xb9jQKfDAgMBAAGjggMdMIIDGTAdBgNVHQ4EFgQUv1g/8H2j
Vv3igoGfR7zuJHUTEZowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTIxNDJDLzIwQjM3Q0ZFMUQ4NzExRTJCREVGRjdERTA4QjAyQ0QyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyMTQyQy8yMEIzN0NGRTFEODcxMUUyQkRFRkY3REUwOEIwMkNEMi92MWdfOEgy
alZ2M2lnb0dmUjd6dUpIVVRFWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICJ1wwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBATKBcAwDQQCAAIw
BwMFACQE7IAwDQYJKoZIhvcNAQELBQADggEBAFSmIYVOfT1ztBdWN4529/b4RPn0
lJyHsJcoMsCJSjqVM37lb7ZsGzrVXu1DtcgkVDO6APKd/Ze8gsahTCmPp6Kbt/DE
gVIBU/csq3EkowDCE1T97/KbaB/ogc75YN9Xr8olaDlLkpaXbIvflhtz4w6LNvd9
KgWAzSR2BB30VGc2Y+HNEwcOWR1/xawhmzbT6XJDrSgvPIqiK10WYqkUOkggu0YG
JLqbjYhBY4XCMoot6oFeNuN4nxBMMgJiTNLRe/ONl1FHy+bTxlBWxf+MkVEjk/oC
oi6KbRkrom0aSmkAuMc+CTeAPBnfL4FEAR+hYC3a5vzwkUkBQCX3vJRVSjc=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:13 2024 by rpki-client on console.sobornost.net