Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Pe07QeID-IRwApbIcBAN_E57FQc.cer
File: Pe07QeID-IRwApbIcBAN_E57FQc.cer (raw, json)
Hash identifier: C/XpmyTjjNuAICakss/dPapYSP2MDvbq8Wd5toFRO1E=
Subject key identifier: 3D:ED:3B:41:E2:03:F8:84:70:02:96:C8:70:10:0D:FC:4E:7B:15:07
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5D37
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915E18D/6656A2A4CB4211ECBB6DE554C4F9AE02/Pe07QeID-IRwApbIcBAN_E57FQc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915E18D/6656A2A4CB4211ECBB6DE554C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Nov 2024 22:03:45 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 14768
IP: 207.65.60.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23863 (0x5d37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 1 22:03:45 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A915E18D/serialNumber=3DED3B41E203F884700296C870100DFC4E7B1507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ce:de:a6:6d:3f:36:62:2e:f6:dc:c8:b8:9d:
d2:13:fd:4f:59:66:1e:32:30:5e:43:0d:bf:26:2b:
e8:34:bd:0f:1a:5d:5f:3c:ca:de:dd:01:81:bb:23:
b9:9b:c2:e7:eb:2f:98:87:cd:5e:40:60:06:b2:00:
ae:52:2f:22:52:87:e0:74:cc:81:7c:8f:61:c2:b7:
7f:2d:68:21:4e:89:37:9f:c7:3d:23:c5:c6:4d:7c:
05:45:6a:b9:15:28:44:5d:6a:74:2c:f3:6b:95:24:
de:1a:89:99:8f:ce:7d:94:db:b0:11:18:d9:be:41:
da:24:c6:b2:ea:81:bb:7b:bf:54:36:5b:48:a6:ba:
48:37:a8:99:df:ab:03:19:9f:41:b4:03:91:5a:06:
2e:9b:1c:5d:05:87:f1:39:6e:af:4e:0d:67:44:e1:
ae:ae:af:75:ec:61:35:b5:08:27:95:ae:96:d9:c8:
4a:34:e4:19:f7:f6:10:55:d3:a9:85:2f:99:27:34:
8a:d1:34:7e:97:42:94:cb:27:41:3c:c8:d6:4d:cb:
00:b3:02:cf:fa:3b:db:79:e4:29:23:b1:7b:80:9a:
bf:65:80:7d:ac:d5:2a:a6:71:f3:fd:e6:e9:85:ae:
38:f6:37:4e:90:4e:bd:f8:93:ae:8d:ac:32:b5:45:
84:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:ED:3B:41:E2:03:F8:84:70:02:96:C8:70:10:0D:FC:4E:7B:15:07
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915E18D/6656A2A4CB4211ECBB6DE554C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915E18D/6656A2A4CB4211ECBB6DE554C4F9AE02/Pe07QeID-IRwApbIcBAN_E57FQc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
14768
sbgp-ipAddrBlock: critical
IPv4:
207.65.60.0/22
Signature Algorithm: sha256WithRSAEncryption
66:ec:b7:f6:3d:1e:26:5b:7d:e6:ac:5c:f4:07:6e:ee:26:c2:
c8:51:02:f9:43:03:c6:d5:6a:31:02:98:e8:4a:8a:7d:96:05:
99:4d:b9:e3:7a:ec:a1:81:37:fe:1c:23:33:c5:de:14:b9:dd:
1e:ed:3d:82:9a:c8:14:a6:06:7f:f2:c4:ec:e9:73:9c:b2:89:
cc:1f:68:7c:69:3d:33:10:f6:8c:9d:0a:c3:c7:5c:e6:d7:80:
3d:00:d2:20:8b:6c:c6:4e:22:54:6e:46:20:8b:63:1a:fa:50:
23:7b:84:58:6c:8f:26:74:f4:b3:c7:43:7f:bc:81:d9:1f:cb:
47:3f:77:f0:f0:05:3b:e9:d8:01:b8:33:7d:18:1e:9a:1b:96:
21:25:da:35:dc:a1:93:70:16:ba:cc:d7:57:fc:21:30:0d:67:
49:66:24:0a:27:d2:b4:4f:63:ed:ea:7b:55:64:bb:01:db:b6:
59:0b:cd:c2:11:b0:1b:f5:3a:7a:84:49:66:79:4b:57:a3:a7:
ec:0f:f1:ff:d9:85:9a:f4:7d:0e:1d:e5:d9:3b:fc:3c:e2:3b:
c8:fe:4d:86:55:23:1d:06:51:52:9e:1a:fb:fe:a5:ab:4e:0f:
0f:23:aa:ed:d0:40:bd:ea:ad:4f:4f:55:1c:33:a0:22:e4:14:
8f:53:90:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org