Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vcSlFjMX9zCX8CejQrhgp5LX8dw.cer
File: vcSlFjMX9zCX8CejQrhgp5LX8dw.cer (raw, json)
Hash identifier: vmK5TAQgDxz5jfk8pLcg/YOzGKY+07wIfVdEvNBfXFw=
Subject key identifier: BD:C4:A5:16:33:17:F7:30:97:F0:27:A3:42:B8:60:A7:92:D7:F1:DC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0208C4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/vcSlFjMX9zCX8CejQrhgp5LX8dw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 24 Aug 2024 19:03:15 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153307
IP: 2001:df4:3340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133316 (0x208c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 24 19:03:15 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9179F64/serialNumber=BDC4A5163317F73097F027A342B860A792D7F1DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a3:91:3c:34:08:10:d2:bf:d9:11:08:e5:45:
e2:d8:d4:4a:cc:88:2f:4c:a1:b6:8f:29:a0:53:b8:
ef:11:2e:41:a6:d3:ac:3b:a2:82:18:b2:82:d0:e4:
d0:85:14:8d:49:2c:b6:15:3a:4d:45:8e:3f:1b:54:
eb:f0:26:50:3f:b1:aa:a6:55:a9:57:93:ac:6f:ef:
da:7b:d4:30:fd:1d:ba:65:60:34:5d:eb:93:1d:b2:
d6:cd:2d:e5:de:fb:5b:0a:53:97:0c:7c:35:25:4f:
a4:df:16:be:ea:33:92:14:1e:cf:78:77:45:b6:86:
61:43:68:fd:d2:26:0d:b5:92:19:67:65:8b:3e:4f:
be:ad:1a:a7:37:45:2d:42:ee:dc:aa:a6:30:b3:98:
8e:34:58:82:a7:62:5d:ed:3c:c9:16:81:2e:5f:09:
e1:5d:3c:2c:83:34:0e:6e:46:fb:95:00:d1:61:34:
81:d8:0d:a3:3f:ef:97:39:2b:5d:eb:96:1f:1a:e9:
be:84:ea:24:d7:1c:33:8e:5f:2b:98:bd:8c:73:62:
85:ab:5c:9c:30:e9:d6:f8:a5:c6:a5:6c:d5:7d:00:
9a:5c:af:02:93:28:92:46:0d:75:dc:33:61:4b:cb:
ab:e9:d9:90:ef:13:25:58:56:d4:3e:19:75:b5:55:
71:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C4:A5:16:33:17:F7:30:97:F0:27:A3:42:B8:60:A7:92:D7:F1:DC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/vcSlFjMX9zCX8CejQrhgp5LX8dw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153307
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:3340::/48
Signature Algorithm: sha256WithRSAEncryption
16:81:3f:94:91:e6:22:63:68:20:13:46:8b:b8:4b:b1:5d:a4:
cd:6e:74:1c:2a:b1:cb:ad:12:1a:04:d6:d9:8f:20:08:e0:b5:
23:ca:43:d9:af:36:3e:8c:4a:45:f0:f4:6b:b6:30:7a:97:5e:
8c:5f:7f:0c:b4:bb:f6:09:99:a2:9a:3d:a9:e4:5f:d9:60:e9:
bd:49:61:35:89:7c:ba:92:46:16:71:52:1f:98:f2:c8:ca:c2:
21:5a:59:22:16:04:4b:ad:f9:01:7f:02:24:73:f7:4e:e2:d1:
54:78:a7:31:32:8e:b6:a8:50:5c:c2:69:43:6d:9b:4b:6b:01:
a3:ed:07:02:1c:a8:74:a4:ba:5f:3f:94:05:65:33:49:12:0e:
fc:e1:ca:81:2f:bb:f4:4c:00:a1:2b:8b:18:35:df:31:e4:32:
33:7d:d1:4c:44:5a:c6:30:76:16:46:f8:e8:dd:37:5a:c1:98:
86:b7:42:c1:1e:bb:1a:0c:76:e0:ea:25:62:d8:38:40:8e:f0:
d0:83:34:b4:58:be:0d:e8:df:c3:97:53:e8:ba:7d:80:36:8c:
5c:f5:76:e5:d0:ec:68:6f:59:e2:f2:34:1d:8c:7c:8f:80:fe:
d2:65:4d:b9:cf:99:a2:52:63:e7:1b:ed:4b:c7:d0:99:14:3b:
00:00:34:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:13 2024 by rpki-client on console.sobornost.net