Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lOl3FkFoUt9jbtUQaCUXs6zwpM.cer
File: 2lOl3FkFoUt9jbtUQaCUXs6zwpM.cer (raw, json)
Hash identifier: sNcIkuqxG8ZYEygtzLS1KyL4ZSj+65H98y8Xf3nmg34=
Subject key identifier: DA:53:A5:DC:59:05:A1:4B:7D:8D:BB:54:41:A0:94:5E:CE:B3:C2:93
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C952
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9185483/9C16E068BCA011EBB5EB800CC4F9AE02/2lOl3FkFoUt9jbtUQaCUXs6zwpM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9185483/9C16E068BCA011EBB5EB800CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 07 Nov 2023 00:59:40 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 2400:f3c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117074 (0x1c952)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 7 00:59:40 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9185483/serialNumber=DA53A5DC5905A14B7D8DBB5441A0945ECEB3C293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6b:97:9d:0c:3a:f4:62:4d:5e:d0:cd:50:a0:
76:29:a2:c5:de:59:a9:5d:f7:0d:85:ba:6b:c8:08:
7d:4e:64:f5:1e:32:26:9d:00:0c:68:c0:82:7e:7a:
4f:ba:a4:be:91:59:81:4f:c9:ea:94:0b:bf:29:e2:
84:7c:06:80:b7:bf:8c:a4:d2:60:67:7c:2a:d6:f4:
23:03:cb:51:a3:0c:48:b4:60:6e:80:23:51:a9:fd:
29:2a:35:ba:e3:58:6c:de:35:e7:2c:95:c3:9a:e0:
8e:0c:ae:f8:05:57:88:9e:97:9c:f7:65:7a:7d:96:
3c:04:c2:83:b8:5d:31:b9:98:07:38:43:41:e0:90:
48:47:23:77:16:8d:80:32:8f:84:bd:ba:87:8c:3a:
cc:5a:52:3b:d1:3e:b8:9e:e7:3a:1c:be:88:1b:45:
17:99:6b:58:2d:a5:a8:41:f9:95:ba:4a:06:0d:e8:
38:02:23:46:50:0e:0a:48:b1:44:00:b0:50:6b:52:
dc:a6:51:22:5e:f1:2f:76:f1:d0:89:c0:9d:a0:12:
5b:d0:9b:28:dc:3e:89:88:6c:6c:04:56:28:1f:f9:
7f:ad:12:38:aa:14:a5:f5:33:50:3e:12:93:13:4f:
f5:29:59:72:98:aa:ce:e2:78:c6:ee:e3:1a:a1:f4:
02:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:53:A5:DC:59:05:A1:4B:7D:8D:BB:54:41:A0:94:5E:CE:B3:C2:93
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9185483/9C16E068BCA011EBB5EB800CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9185483/9C16E068BCA011EBB5EB800CC4F9AE02/2lOl3FkFoUt9jbtUQaCUXs6zwpM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:f3c0::/32
Signature Algorithm: sha256WithRSAEncryption
38:dc:cb:68:f3:b4:71:2e:69:57:a0:4a:3e:93:af:ab:d5:0e:
f0:60:e9:0e:6b:43:6b:74:61:b1:08:60:a9:ae:91:9a:66:7c:
e1:7c:e2:67:72:01:45:4e:f9:b7:bb:82:af:51:93:3c:7a:08:
c3:f8:0e:ca:2f:1a:2a:f8:a3:ac:35:7a:f7:9e:5a:ce:21:c9:
85:33:c7:1c:de:42:da:f2:61:cb:79:e0:06:27:de:20:28:f3:
36:3c:18:3c:3a:8c:69:78:53:3f:de:e1:a2:71:08:a3:d4:c0:
05:d5:95:c7:58:a3:44:9d:14:61:1b:88:c3:ba:f4:4d:64:80:
64:09:f6:8b:87:4c:77:04:b4:76:ee:b6:ae:03:23:1a:a1:ba:
3e:e5:9e:18:f8:e1:98:2a:64:86:74:98:09:22:a7:fb:ff:f1:
49:8d:ff:31:32:a4:da:12:13:1f:9d:a8:cd:2b:c0:ed:b9:57:
ee:65:5f:b5:e1:6e:a5:ee:78:24:b7:f5:5c:7a:75:ee:ea:48:
6a:8b:91:e9:95:4d:70:64:82:06:44:83:15:23:2e:dc:5e:17:
65:7c:3f:22:5b:e1:ff:5d:8d:8a:bf:03:16:59:0f:07:87:f8:
1e:71:3d:c8:fc:db:f2:a4:0b:49:54:dd:c5:a6:a7:a8:df:5c:
05:2d:c9:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 15:20:48 2024 by rpki-client on console-fra.rpki-client.org