Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lH79G_b5Opjf68FT2rDad8xAKMc.cer
File: lH79G_b5Opjf68FT2rDad8xAKMc.cer (raw, json)
Hash identifier: x7sNTBkdYRt/UL+TKjLGeYMDVF9Of0t/BWeQ6vAtMjo=
Subject key identifier: 94:7E:FD:1B:F6:F9:3A:98:DF:EB:C1:53:DA:B0:DA:77:CC:40:28:C7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C079
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/lH79G_b5Opjf68FT2rDad8xAKMc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Sep 2023 18:24:50 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 7696
AS: 132456
IP: 202.160.112.0/21
IP: 2400:1200::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114809 (0x1c079)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 28 18:24:50 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A919AB89/serialNumber=947EFD1BF6F93A98DFEBC153DAB0DA77CC4028C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6f:d9:4a:9f:e6:20:42:0c:59:ff:71:5c:37:
b8:32:41:65:7d:13:a7:a9:0f:2f:0f:5e:b4:d9:d8:
98:c7:4d:6b:67:00:38:f5:5f:99:74:9b:ed:58:1d:
28:62:12:76:39:75:70:7e:8d:bd:d6:73:7d:ea:30:
9e:c1:63:df:85:7d:b4:6a:0c:92:bd:e6:8c:c1:e8:
df:19:3e:f4:e8:f7:a8:89:68:b4:19:38:be:f1:a7:
be:67:20:a5:66:e6:fb:ce:78:60:94:03:98:99:78:
ef:ad:1b:df:3f:a0:79:58:a9:7f:60:5a:b0:8d:1a:
77:8d:9d:99:b8:3c:7a:45:b5:e1:0d:42:37:0b:1b:
e6:d2:ed:38:d2:f5:9f:7d:c2:52:04:93:b5:c4:89:
ba:ad:a5:b9:4a:e0:00:b0:e3:ed:35:c2:59:80:7f:
76:fa:14:04:69:fd:37:f3:48:05:07:3f:a5:d0:3e:
cd:8a:3a:63:18:c0:c3:04:fa:aa:3c:49:f4:aa:ac:
3f:7f:f0:2e:c2:42:cf:28:d4:54:5b:f1:a7:a0:cf:
c9:7c:fd:f2:a0:66:3b:0f:d5:d6:50:31:c3:84:b0:
87:32:af:6a:ee:2a:94:ee:fe:54:9c:7b:b6:59:1f:
50:fe:78:ba:88:4c:68:4f:77:77:d4:9f:82:bf:79:
47:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:7E:FD:1B:F6:F9:3A:98:DF:EB:C1:53:DA:B0:DA:77:CC:40:28:C7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/lH79G_b5Opjf68FT2rDad8xAKMc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7696
132456
sbgp-ipAddrBlock: critical
IPv4:
202.160.112.0/21
IPv6:
2400:1200::/32
Signature Algorithm: sha256WithRSAEncryption
9f:44:cc:3e:d6:4d:1c:63:77:95:7d:53:1d:40:7c:53:8f:7b:
e7:1e:e2:03:cb:57:92:b4:8b:54:77:43:a7:03:12:85:f1:1b:
29:80:99:f5:bd:3c:f5:28:28:fc:7a:4f:12:61:77:4d:8b:e5:
10:f2:63:bf:69:fb:98:b6:63:35:c9:b1:b4:e5:a4:3f:1d:a5:
df:36:e2:5e:de:ea:55:79:e4:48:83:f8:63:39:7f:30:b2:0b:
bb:50:34:82:05:82:64:0b:5e:de:19:01:16:6e:f1:93:dc:a2:
dc:ea:fa:a5:49:94:ca:9b:ca:42:c8:ae:b3:f2:08:e1:71:4e:
c0:9a:07:f8:2b:d6:0c:f0:fe:53:ba:af:1f:1b:1b:1c:cb:10:
b5:a9:42:f4:d5:9a:d5:54:dd:00:eb:f1:0c:d9:50:2f:c4:ae:
df:82:f5:12:23:c0:12:c3:63:12:da:1d:07:c9:1b:f8:0a:b8:
07:4a:4a:6c:ff:8f:47:76:05:e9:23:a5:84:a3:9f:00:41:d8:
9f:6f:76:90:b8:0f:93:fb:04:d6:e8:de:6d:4c:87:2c:62:08:
6b:30:01:82:88:95:7c:be:74:e0:59:aa:37:c2:34:14:83:5e:
09:7b:27:33:cc:75:7a:8f:f9:9a:ba:55:f9:29:47:6a:f6:b9:
93:da:b1:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:21:35 2024 by rpki-client on console-ams.rpki-client.org