Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FjMp9XBd6bwiNaxX11T5gHjH9Ss.cer
File: FjMp9XBd6bwiNaxX11T5gHjH9Ss.cer (raw, json)
Hash identifier: +jwwyzCvadMdv5jNcRpuBZosDTc7ESRLZfY6eNkIx3g=
Subject key identifier: 16:33:29:F5:70:5D:E9:BC:22:35:AC:57:D7:54:F9:80:78:C7:F5:2B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5950
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918BB4D/C07E1CD0652211EB80F6E94BC4F9AE02/FjMp9XBd6bwiNaxX11T5gHjH9Ss.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918BB4D/C07E1CD0652211EB80F6E94BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 Aug 2024 18:03:28 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 4899
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22864 (0x5950)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 6 18:03:28 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A918BB4D/serialNumber=163329F5705DE9BC2235AC57D754F98078C7F52B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b0:5c:b1:2b:aa:97:9d:d4:1e:44:99:ce:6c:
89:4c:e5:ff:4c:f8:53:11:63:43:28:5b:98:37:e0:
6e:c0:c8:aa:57:6f:19:0c:de:d2:b1:65:9e:1e:1f:
f7:a0:da:59:e0:65:28:1a:6c:c6:9f:f6:0e:3b:ba:
a4:cd:f5:23:04:fe:2f:37:fd:0c:81:bb:64:e5:fe:
4f:58:0b:72:51:c3:c1:49:ea:77:ba:3d:c9:b7:4a:
7d:e8:3a:04:25:c0:89:bb:f7:25:c1:30:43:cd:ed:
96:60:13:95:3b:28:36:c2:2e:34:bf:41:bf:74:b0:
59:6e:55:0b:58:5d:de:9f:0f:a4:41:07:61:1f:d6:
8f:e8:14:67:bb:aa:ca:b6:dd:74:85:b2:b1:36:61:
6a:8d:86:64:e5:b9:4a:95:bf:2b:bc:29:0d:ff:7f:
27:27:52:1a:41:d7:c8:4a:9e:5e:0a:d8:38:40:55:
5c:c4:1b:fa:7f:0b:e6:12:01:dc:a2:79:03:b8:cc:
59:31:22:6e:ba:02:74:7d:27:0d:3d:60:41:3a:9b:
37:72:01:d6:d6:af:63:a0:c1:fa:ee:25:65:9d:28:
55:8c:67:c6:61:5f:f5:34:0c:b0:73:1c:47:07:68:
28:7e:0e:ea:1f:30:4c:00:e8:4e:64:ed:6a:bd:16:
c2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:33:29:F5:70:5D:E9:BC:22:35:AC:57:D7:54:F9:80:78:C7:F5:2B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/C07E1CD0652211EB80F6E94BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/C07E1CD0652211EB80F6E94BC4F9AE02/FjMp9XBd6bwiNaxX11T5gHjH9Ss.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4899
Signature Algorithm: sha256WithRSAEncryption
80:0f:ce:c6:b2:14:51:6a:aa:77:19:d0:69:e8:8b:5c:85:6d:
d3:b7:26:4c:b5:4e:08:eb:60:a5:ea:ee:0d:02:f1:f5:da:7c:
d2:31:24:d6:97:65:92:b1:33:db:d9:1a:a7:b4:00:fb:cf:ab:
01:6f:c8:a9:3f:cb:fa:9e:eb:c3:0a:6b:af:0e:bc:f3:d2:ca:
73:04:8d:59:97:4c:93:1a:c9:17:f2:3c:5e:5f:62:32:96:95:
fd:2b:ae:a8:f8:56:e8:e7:cf:4e:e4:0c:68:05:26:01:d0:33:
aa:54:9a:63:4c:d8:e5:5c:be:d0:dc:12:41:fc:d2:7f:b6:e4:
8e:3e:1b:f0:fa:c3:b4:65:8e:57:f2:dc:a3:cb:d4:be:1f:0d:
24:9b:61:5d:89:e4:19:2a:27:6a:5e:d5:ed:21:1c:93:35:ea:
aa:6e:94:f8:c2:63:1a:5c:22:34:5c:2f:ab:c9:9c:bf:a1:1d:
f6:9e:40:c7:29:b9:88:f6:cb:30:db:3d:f8:7a:af:46:b5:d7:
9f:77:69:f1:e4:37:af:b4:2b:77:9a:d3:c9:53:60:99:54:40:
cb:7d:26:d4:da:1a:07:04:9f:5d:4b:d1:99:f7:60:e6:74:57:
a1:0b:7d:63:4f:49:a5:0e:c3:93:32:da:57:84:50:34:22:3f:
4d:2f:0b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:39 2024 by rpki-client on console-ams.rpki-client.org