Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/G_zVla1f_bnAQ3N7yv7HLgRsa-4.cer
File: G_zVla1f_bnAQ3N7yv7HLgRsa-4.cer (raw, json)
Hash identifier: P0llrOOUhGSCfVEGSYEbi7umeOR6lUHrhOPIRZKhyDA=
Subject key identifier: 1B:FC:D5:95:AD:5F:FD:B9:C0:43:73:7B:CA:FE:C7:2E:04:6C:6B:EE
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 47F9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9139322/91FE056ADFFE11ED95153D31C4F9AE02/G_zVla1f_bnAQ3N7yv7HLgRsa-4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9139322/91FE056ADFFE11ED95153D31C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Sep 2024 15:52:42 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 42960
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18425 (0x47f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Sep 2 15:52:42 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9139322/serialNumber=1BFCD595AD5FFDB9C043737BCAFEC72E046C6BEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cc:52:14:60:d7:60:2f:62:84:a5:d3:55:d4:
e0:20:2b:af:0f:5c:d8:21:71:c1:22:48:88:c1:d6:
84:cc:2c:b9:53:a8:5f:56:fa:3a:72:c0:f1:79:01:
c9:08:36:21:ea:da:96:f1:b8:55:92:c3:f2:90:8d:
5a:cf:72:12:bf:1f:c8:21:21:f4:3a:a4:59:5c:7c:
3a:db:09:86:63:30:7d:ba:59:ee:d3:db:24:68:0f:
4d:c6:97:5a:50:d8:18:85:7a:0c:67:ac:60:dd:33:
a4:02:db:1a:40:2e:c7:e6:66:6e:fa:6e:ee:52:e0:
97:b5:80:38:f9:20:4b:6c:90:b4:d6:ec:15:e6:a3:
02:32:82:a5:db:e5:fc:6d:80:40:b6:b5:07:99:9d:
5c:29:fa:7a:a0:58:22:aa:6d:ed:19:e2:b5:8e:c2:
ae:25:91:2a:39:0d:12:f2:fc:cf:8c:70:e4:35:53:
80:81:b6:26:c8:42:dd:07:f3:d2:20:e5:da:f6:dd:
e1:aa:74:13:14:fc:15:00:7e:67:11:ac:4d:fd:7a:
39:52:8b:35:64:91:a4:10:65:2f:bf:82:bf:e9:2b:
57:fe:d2:5c:1f:7d:c1:96:e4:10:40:93:d3:9c:ca:
ea:78:7f:de:8e:e5:21:be:d3:44:1b:ae:15:9f:d1:
98:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:FC:D5:95:AD:5F:FD:B9:C0:43:73:7B:CA:FE:C7:2E:04:6C:6B:EE
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9139322/91FE056ADFFE11ED95153D31C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9139322/91FE056ADFFE11ED95153D31C4F9AE02/G_zVla1f_bnAQ3N7yv7HLgRsa-4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42960
Signature Algorithm: sha256WithRSAEncryption
08:bb:1e:04:da:06:97:1b:ad:8c:a4:4c:27:e1:d2:52:38:68:
41:95:0d:4e:4e:28:4c:8f:1f:fb:61:09:4f:8a:87:a6:5d:e1:
4f:00:e5:27:e3:f4:da:6a:8c:ea:1e:c9:1b:ff:79:d1:cc:b0:
94:a8:f3:f0:bb:c1:76:87:7b:86:11:80:d1:1e:cd:73:61:e1:
0a:2c:67:88:39:f0:d4:5f:4b:6e:cf:75:65:94:89:2c:93:b4:
d0:b3:cb:9c:a2:8b:c4:50:7e:3d:45:a3:e6:37:87:99:d0:9b:
f7:0f:42:34:71:ed:89:1b:b8:b7:18:de:e7:8c:86:03:d1:e2:
e6:0c:3b:1d:4d:37:6c:3f:53:47:b8:53:09:a5:d3:d9:c7:2c:
f3:e3:09:d7:46:7f:d1:ac:e0:62:79:6c:6c:b3:e5:98:5d:83:
e3:b5:b1:36:dd:59:b1:c8:67:d4:65:49:5e:d4:bd:19:7e:13:
ac:bb:ca:fc:46:9d:5c:58:47:f2:02:fc:d5:e2:ad:c2:cd:f9:
bc:4b:6f:e6:27:20:b9:24:1c:f5:70:5c:6b:82:ef:4c:d2:fa:
8d:1c:f4:eb:f4:7b:1b:06:3b:4a:c4:ed:94:56:06:91:0b:bf:
4c:34:21:ac:03:0d:26:3c:79:59:ce:d4:ce:55:cd:2d:51:f1:
1b:8d:d2:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:04 2024 by rpki-client on console-fra.rpki-client.org