Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBOSci3K74B41N1Wc9MlHMO1d8.cer
File: rNBOSci3K74B41N1Wc9MlHMO1d8.cer (raw, json)
Hash identifier: hmhLEyXcymaSopIc93kod8aTHZic43X6ymzzu609hc0=
Subject key identifier: AC:D0:4E:49:C8:B7:2B:BE:01:E3:53:75:59:CF:4C:94:73:0E:D5:DF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EDEB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91411B3/C6DA292C184611EA9B842F27C4F9AE02/rNBOSci3K74B41N1Wc9MlHMO1d8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91411B3/C6DA292C184611EA9B842F27C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Apr 2024 14:16:15 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 138454
IP: 2404:1c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126443 (0x1edeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 29 14:16:15 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91411B3/serialNumber=ACD04E49C8B72BBE01E3537559CF4C94730ED5DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bb:02:6a:fd:fc:e4:ff:34:01:a4:3d:ee:8a:
25:a4:f7:94:22:99:23:39:3f:04:9a:b9:5b:c9:cb:
0c:38:99:31:90:5e:70:b7:3a:ea:40:1e:7b:a8:6a:
37:f2:30:cd:32:f9:29:92:1a:11:9b:b8:88:28:83:
62:ff:24:c7:80:db:ac:21:73:ab:50:7d:0b:84:aa:
6e:1d:32:73:05:cb:b4:47:80:66:31:88:95:31:fa:
00:95:3d:e1:dc:e0:12:36:71:5c:57:b0:2c:93:a6:
66:1c:56:dc:50:73:ba:1b:d5:2f:4b:33:68:59:18:
59:48:9f:b3:de:1b:9b:1c:57:6b:1a:ab:8d:18:a8:
1d:8e:ca:93:16:c3:bb:70:d3:80:6e:61:31:c0:5e:
30:1e:d0:3e:06:0c:96:a0:80:99:e7:dd:8d:f8:49:
c5:65:83:b9:9d:1c:46:50:05:ec:39:63:b6:6c:26:
47:cd:5f:bf:b4:ff:c5:0d:ef:e3:48:fb:ea:d4:50:
d3:9b:85:e6:20:e7:a2:0b:dc:f4:6e:25:ba:eb:50:
da:4a:93:ef:cd:92:bf:ef:d7:87:ed:5a:54:7f:80:
cd:bb:c2:96:81:8a:c2:90:c2:68:88:ac:3f:aa:18:
21:fb:c2:dc:cc:b1:8f:b9:c4:7c:bc:55:91:93:f5:
d7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D0:4E:49:C8:B7:2B:BE:01:E3:53:75:59:CF:4C:94:73:0E:D5:DF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91411B3/C6DA292C184611EA9B842F27C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91411B3/C6DA292C184611EA9B842F27C4F9AE02/rNBOSci3K74B41N1Wc9MlHMO1d8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138454
sbgp-ipAddrBlock: critical
IPv6:
2404:1c0::/32
Signature Algorithm: sha256WithRSAEncryption
18:8b:e1:25:e1:fb:b1:4a:ee:3a:50:6b:bf:74:6a:34:56:31:
30:87:4b:86:23:6c:6a:3a:5e:cf:29:a6:6a:17:1e:82:17:fe:
01:94:1d:5a:e3:66:d9:b1:ad:ee:47:f2:0b:68:21:ec:0f:8c:
f6:ef:ec:ca:4c:e7:d9:8a:22:74:c9:4f:07:f8:2a:6f:d9:71:
95:4a:e4:f6:fc:05:6f:97:ca:21:17:76:09:e1:8c:a8:00:47:
95:59:94:40:96:bf:a7:17:b5:48:6d:df:7a:3d:b9:76:b8:24:
ab:ef:44:4d:dd:0a:12:bc:8d:e1:0f:5c:6a:cf:fe:cb:5d:22:
6f:ca:47:af:8f:26:3f:ea:06:2d:21:3d:89:1e:95:69:66:e3:
56:d4:ac:e3:06:5d:ec:95:48:60:1a:69:ed:e5:2f:f3:d6:53:
77:cd:26:40:c8:14:61:d4:13:33:06:51:f2:7e:f5:f1:29:10:
eb:4a:fa:c9:03:47:7c:ca:59:e7:d3:96:37:b5:ec:55:33:03:
c3:29:52:cb:3a:31:7d:84:26:78:58:b7:9f:0a:95:17:a8:55:
dc:fa:f8:0a:ba:61:bc:69:19:c0:4d:53:7f:e6:0c:9e:eb:61:
a3:5f:e5:b4:14:08:fd:21:77:6c:f5:71:39:81:79:6b:00:77:
23:a9:1b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:30:24 2024 by rpki-client on console-fra.rpki-client.org