Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zsmxs1n-WOkCOoTPwmdMFhgo-Zk.cer
File: zsmxs1n-WOkCOoTPwmdMFhgo-Zk.cer (raw, json)
Hash identifier: Gddmw6bFkWM5gIVN/s2hrXRj03cez7/qQxB21lxi3n8=
Subject key identifier: CE:C9:B1:B3:59:FE:58:E9:02:3A:84:CF:C2:67:4C:16:18:28:F9:99
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0202D8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9191354/8D4ECF844D8711EFB91CB835C4F9AE02/zsmxs1n-WOkCOoTPwmdMFhgo-Zk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9191354/8D4ECF844D8711EFB91CB835C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jul 2024 08:50:12 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 103.9.164.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131800 (0x202d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 29 08:50:12 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9191354/serialNumber=CEC9B1B359FE58E9023A84CFC2674C161828F999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b6:65:45:80:81:5a:76:2a:6c:b5:e4:80:20:
84:d8:5d:07:e0:95:8f:0b:57:87:e6:29:d5:c5:c6:
8c:c8:cf:60:66:c5:c9:57:0a:54:23:6d:e0:c8:05:
d4:0e:9e:4c:5f:3f:00:d8:1a:95:f0:0e:1a:5e:b2:
36:b3:da:b9:74:77:89:d1:aa:85:10:07:87:15:45:
72:db:60:8a:2d:ea:61:45:48:0e:ff:a3:98:cf:55:
9f:e3:c4:6c:29:c6:b4:e5:8a:13:c3:46:16:6d:70:
71:d1:e2:92:6e:b1:19:fc:de:09:d0:f7:d2:8d:59:
70:af:f0:82:8d:89:c9:0c:f3:59:9b:db:07:f7:88:
ae:b8:b6:4b:38:c0:09:d2:53:a1:da:52:6c:5c:fb:
7d:4b:56:85:a5:fa:23:cd:61:df:78:dd:4d:20:14:
7a:45:b6:c2:37:52:78:f6:66:db:7b:10:9a:27:63:
0e:de:1c:12:ab:c5:9e:a8:d3:1d:ec:da:32:d2:9c:
a3:dd:de:4e:bc:53:f8:46:43:04:d4:65:3b:fd:ac:
25:37:16:df:50:20:e7:47:e8:66:44:3d:85:e2:e3:
63:46:10:53:71:46:8e:01:3c:5b:9f:a3:22:4b:f9:
56:71:11:a4:a7:7b:11:c2:11:30:a4:2d:49:8e:cd:
62:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C9:B1:B3:59:FE:58:E9:02:3A:84:CF:C2:67:4C:16:18:28:F9:99
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9191354/8D4ECF844D8711EFB91CB835C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9191354/8D4ECF844D8711EFB91CB835C4F9AE02/zsmxs1n-WOkCOoTPwmdMFhgo-Zk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.9.164.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:98:ed:82:e8:25:1e:83:83:b4:c3:bf:b9:bf:3a:bc:ee:80:
93:68:5a:96:cf:47:57:61:71:43:26:72:16:b6:04:e7:05:ff:
54:b9:42:b8:3a:f4:97:84:d9:7d:b9:f8:4e:39:f0:16:10:8d:
da:eb:9d:4a:16:d3:82:99:c4:45:48:64:a3:01:cb:c2:8c:fc:
4c:26:39:8b:1a:9b:d5:cd:02:78:89:19:c6:12:24:7f:35:2c:
88:21:99:0e:b8:48:15:79:7b:82:4b:39:8b:36:e5:0c:c0:08:
2c:7b:a9:04:d3:06:6e:61:97:bc:44:2c:49:d2:d4:03:9b:2c:
6b:6e:ba:dc:a1:cb:32:06:6f:ec:7b:8a:71:1e:b8:eb:12:f9:
24:fa:5b:0b:86:84:57:b1:e9:2d:b9:28:d2:01:d1:e7:95:5b:
fc:62:7c:2c:53:0c:58:bd:19:1d:b3:38:c9:4c:64:e1:fc:52:
be:90:39:d1:a2:b8:a0:0e:bd:24:ec:5b:1b:c2:07:3f:2b:fe:
a5:29:ef:97:d9:c7:ce:68:68:33:f7:ae:c0:8e:30:1a:94:2f:
d5:52:0e:8b:43:db:c4:2c:61:79:75:a9:16:85:c7:32:c6:11:
1a:08:f9:b5:46:39:c5:90:be:08:ce:c0:1d:96:6a:f5:12:64:
e0:f3:29:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:16 2024 by rpki-client on console.sobornost.net