Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZ2XH9wOLBckuUf-cjTfCSk5d_U.cer
File: TZ2XH9wOLBckuUf-cjTfCSk5d_U.cer (raw, json)
Hash identifier: cjypBphjBIjtq+daUMvzOCLK8mquFkzm+VcPfwP3aNY=
Subject key identifier: 4D:9D:97:1F:DC:0E:2C:17:24:B9:47:FE:72:34:DF:09:29:39:77:F5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E361
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9155184/5F9615A630AD11ECA78CD816C4F9AE02/TZ2XH9wOLBckuUf-cjTfCSk5d_U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9155184/5F9615A630AD11ECA78CD816C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 07 Mar 2024 15:02:52 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 2401:4c00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123745 (0x1e361)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 7 15:02:52 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9155184/serialNumber=4D9D971FDC0E2C1724B947FE7234DF09293977F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:47:6c:d7:e5:19:c8:8e:65:70:5f:1d:e7:68:
c4:97:75:06:85:88:80:b5:66:58:19:4f:1a:8e:17:
de:91:0b:82:0c:27:0f:25:3f:2d:7a:6a:57:da:c0:
f0:ba:63:7a:5b:fd:06:37:99:38:b4:ae:af:92:00:
11:6c:7c:4d:92:19:a9:43:95:66:96:ef:d7:99:5e:
d9:c4:65:b2:36:90:d0:0e:86:86:fc:79:48:6d:6f:
25:2c:c1:49:96:2a:de:a1:78:f3:54:42:58:c3:de:
29:6f:f3:3c:16:ed:cd:78:9a:37:e2:c0:fe:66:25:
c5:cb:47:06:7b:b9:ca:01:34:fc:dc:22:1b:17:80:
5e:c7:2e:67:3a:2b:0c:17:76:5c:02:4e:53:12:d4:
a8:73:cc:ce:e7:c5:63:d9:2a:8f:1e:a6:b0:f6:e0:
db:6c:d4:ac:08:93:8a:e1:a3:cd:62:20:0f:f2:ae:
8f:72:ce:3e:72:e7:66:21:bf:ac:10:59:35:66:86:
71:47:83:6d:e9:f6:d2:de:b9:8a:40:2d:16:a9:c8:
4a:f7:20:5c:e1:8e:be:8d:fb:af:cf:57:43:1e:b6:
fd:4c:0c:bd:71:3d:67:56:1d:a4:06:0d:f3:b6:87:
cd:f5:b4:e8:18:12:c4:44:b2:03:31:76:ec:49:1f:
7f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:9D:97:1F:DC:0E:2C:17:24:B9:47:FE:72:34:DF:09:29:39:77:F5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9155184/5F9615A630AD11ECA78CD816C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9155184/5F9615A630AD11ECA78CD816C4F9AE02/TZ2XH9wOLBckuUf-cjTfCSk5d_U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:4c00::/32
Signature Algorithm: sha256WithRSAEncryption
00:b3:72:33:72:d9:72:d6:16:62:72:71:2c:ee:14:34:87:52:
34:1f:41:9c:60:41:26:5f:18:e7:3d:9e:35:3c:77:92:f1:ab:
5c:a6:d3:90:7f:65:70:5d:6f:26:2e:8d:9f:6a:c9:73:14:18:
0d:3b:63:c7:2c:a7:ab:a8:2c:94:03:78:8d:16:49:92:18:33:
1a:04:28:2e:67:3b:6e:0b:4e:dd:88:08:4c:f5:c9:b7:c9:d7:
b1:3a:62:25:ae:9e:d3:e0:e8:71:9c:80:ad:32:85:d8:a4:8e:
db:1b:33:36:58:64:08:af:3b:cd:17:a5:55:c5:85:eb:7f:54:
39:e8:7e:f6:fc:85:76:1a:3f:2a:70:d0:32:a6:64:6d:7e:52:
af:7c:b6:e4:09:99:34:22:a8:66:5d:5a:2d:ab:39:73:69:ab:
79:94:1e:54:9b:4a:6a:66:65:cd:82:bd:36:ab:d8:63:f7:cc:
1a:6d:6b:07:ee:de:d9:5e:82:60:be:a4:42:ca:64:15:d7:e3:
ef:42:9f:9a:cf:f1:34:06:4a:cd:70:ba:45:9f:5b:7b:ec:23:
eb:f6:46:30:44:c5:6f:71:96:05:6e:67:ab:05:69:1e:68:d7:
cb:5e:f9:65:a8:07:bf:56:f8:66:03:f4:14:b7:fd:90:8c:48:
b3:fb:6d:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 18:13:57 2024 by rpki-client on console-fra.rpki-client.org