Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-6JuPNfggZmzoY8WNmp1fwTN8FQ.cer
File: -6JuPNfggZmzoY8WNmp1fwTN8FQ.cer (raw, json)
Hash identifier: IZfolJpy4ipkyhDDa7SI0hJSvTWiNViLf+zu0TveFc4=
Subject key identifier: FB:A2:6E:3C:D7:E0:81:99:B3:A1:8F:16:36:6A:75:7F:04:CD:F0:54
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02143A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/-6JuPNfggZmzoY8WNmp1fwTN8FQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 16 Oct 2024 12:02:29 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 153367
IP: 2001:df4:6bc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 31 Oct 2024 10:39:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136250 (0x2143a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 16 12:02:29 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91B7709/serialNumber=FBA26E3CD7E08199B3A18F16366A757F04CDF054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b3:55:97:3a:55:d4:62:01:3f:ba:dc:90:39:
b1:e6:9f:f4:c1:6f:a3:8c:5b:7e:cb:b4:1c:d2:ac:
87:e7:69:8c:63:b9:fa:da:ee:a6:27:1f:f3:48:38:
4d:e1:d9:c1:9c:da:b0:bb:b0:92:88:bd:ce:b1:86:
bf:35:da:66:d9:f1:72:7d:c3:30:30:f1:c4:a2:50:
be:bf:1d:ab:04:d1:0b:49:ca:61:c8:c4:24:2f:ef:
d0:45:8a:ea:dd:99:e5:1d:ac:34:44:4f:12:33:b2:
37:b6:3c:bb:d6:bf:48:62:35:6a:dc:c0:d1:1e:5a:
d3:bf:37:30:a4:00:e6:1d:a5:95:f2:d6:95:25:c2:
d0:4b:49:e6:26:a5:fb:82:df:65:2b:98:f9:2a:08:
df:74:bc:82:84:92:ae:b4:e9:7c:39:25:2f:1e:d8:
29:e6:1f:ff:f1:74:1c:40:f6:de:e4:0d:95:c1:e9:
75:27:4b:33:52:04:9b:08:e0:55:0b:a9:3f:d0:c1:
5a:60:49:1c:63:d9:f6:92:43:39:34:fd:0d:87:4c:
e6:41:5c:d8:92:7b:b6:d6:7c:1c:c2:92:77:03:48:
d0:36:8b:09:1a:4a:b2:fa:e9:39:e5:df:33:c9:f2:
fe:bd:ae:db:e1:41:b8:6c:3e:c0:ef:70:f4:f6:46:
42:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A2:6E:3C:D7:E0:81:99:B3:A1:8F:16:36:6A:75:7F:04:CD:F0:54
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/-6JuPNfggZmzoY8WNmp1fwTN8FQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153367
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:6bc0::/48
Signature Algorithm: sha256WithRSAEncryption
76:cc:d5:ff:ac:cd:6b:23:2a:6b:18:41:c6:3a:fa:d9:01:ab:
6e:b6:40:04:1e:2d:54:54:56:aa:77:c4:18:8d:6b:2e:75:fa:
9d:fd:b6:4e:4d:f0:3d:23:4c:1e:59:cc:52:ba:7a:52:67:df:
e5:4f:33:36:8b:2c:24:83:ce:47:dd:ca:e9:6e:68:23:80:0c:
f4:dd:38:21:7b:0d:05:c0:67:b1:21:98:01:a7:37:c0:db:54:
fa:5c:c1:2d:bb:7b:ac:4a:21:82:17:67:c3:96:26:74:00:b3:
69:37:a3:77:3d:0f:78:d7:94:76:81:a1:f1:46:a1:ba:61:d7:
24:2b:ad:ec:b6:b8:36:be:38:72:ba:d5:36:91:7b:c7:00:1e:
8e:03:25:16:39:4f:25:e5:0d:c2:4f:77:89:ec:a9:b6:34:af:
f3:c2:33:8e:24:89:37:5f:ea:3f:98:1b:0f:e4:bf:f7:b5:15:
f3:c2:38:f1:88:83:51:68:c9:f6:cb:1a:57:05:66:07:c7:bb:
ba:30:38:04:02:dd:87:5d:2f:04:e5:a6:f4:1d:dc:a2:3f:91:
3b:1d:ab:9f:11:bc:69:0f:0c:34:ce:d1:92:d0:d5:ea:01:60:
89:a8:90:df:4e:53:d6:2f:91:7a:18:ec:89:58:fe:54:aa:23:
fb:59:93:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 11:38:48 2024 by rpki-client on console-ams.rpki-client.org