Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-swzUrzjgChT2_SwQFJc_B4VLmA.cer
File: -swzUrzjgChT2_SwQFJc_B4VLmA.cer (raw, json)
Hash identifier: 33tjNsNwkys79FUtrJiuHukGdr8alvv01R7WYrhicHk=
Subject key identifier: FA:CC:33:52:BC:E3:80:28:53:DB:F4:B0:40:52:5C:FC:1E:15:2E:60
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FCB8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Jul 2024 10:34:57 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 152932
IP: 2001:df3:f940::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130232 (0x1fcb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 1 10:34:57 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A911B22E/serialNumber=FACC3352BCE3802853DBF4B040525CFC1E152E60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:72:1e:3e:cd:8d:89:40:d7:05:77:ae:3b:eb:
2a:b4:17:e8:a9:50:b6:b0:76:fe:14:32:ae:59:5d:
75:b7:bc:8d:6f:0c:ed:2c:c7:1b:4b:1d:b4:8f:df:
53:66:a2:14:35:c0:d4:c0:db:b1:87:5d:ae:38:7c:
70:e6:21:66:77:23:be:f1:3c:49:13:8d:d7:3f:06:
55:f6:88:1b:a0:bd:14:ce:0c:50:60:ea:a5:17:5f:
31:30:7e:f1:59:8d:13:76:39:0a:69:c5:a2:c7:58:
56:b1:36:1f:94:b0:be:40:e0:19:2a:a2:d0:d0:06:
35:f1:4c:06:a5:ba:a1:d2:51:de:c0:b8:fc:3c:54:
ba:aa:d2:05:0d:11:ca:4e:f9:cd:07:c5:b9:7e:9b:
3b:02:92:cd:75:42:c5:4a:39:0a:45:fa:17:16:a4:
12:ab:14:e8:97:0c:da:d9:7a:b5:cc:db:93:0d:0e:
1a:56:ee:a6:ce:46:3a:ff:18:25:f1:92:ac:f4:00:
7c:07:3d:87:a8:85:b9:18:77:8c:8e:95:ba:6d:d9:
7e:40:f9:b0:81:f9:76:19:16:74:4d:55:a2:45:84:
17:5e:e4:da:1c:d3:16:cf:e4:76:bd:bb:b0:56:3e:
9d:15:8a:7f:7e:00:58:22:67:45:53:2c:bd:1d:be:
d9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CC:33:52:BC:E3:80:28:53:DB:F4:B0:40:52:5C:FC:1E:15:2E:60
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152932
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:f940::/48
Signature Algorithm: sha256WithRSAEncryption
98:2c:7d:42:c2:4c:63:23:10:03:fc:7d:16:48:57:f6:3b:12:
b2:04:13:73:64:ec:eb:84:51:48:40:a7:c6:cd:64:65:03:65:
5f:3f:ef:83:85:dd:19:44:31:2b:24:4e:7a:da:4a:e8:05:ac:
e6:7b:54:54:50:85:f3:a4:8f:79:b7:da:5b:d3:20:91:b4:24:
86:f9:e2:74:ea:b7:9a:96:a6:f2:57:be:e2:e2:df:0c:d6:45:
ce:d3:3d:f5:cb:8a:c5:5e:53:a6:dd:ea:a1:da:d0:93:59:5f:
01:41:87:60:fc:3e:61:77:dd:f8:c0:8d:ba:55:7b:88:56:50:
67:30:83:4d:8e:fc:dd:59:1a:c1:dc:2d:40:4b:a5:16:df:ab:
93:15:50:1c:6e:d8:2b:7a:70:4d:05:a6:25:04:9d:59:cc:4f:
7d:5e:c8:f7:c4:7b:71:15:d0:ec:43:39:6f:24:98:42:af:29:
53:7e:99:66:9d:3b:84:7e:29:0a:14:9a:3f:c7:aa:63:d4:b3:
85:65:b1:5d:96:28:3f:6c:ea:cd:7b:5c:9d:26:43:01:84:c8:
4a:67:61:ef:4e:ae:7f:6f:bd:d9:cb:56:d0:11:c2:c5:5d:0a:
0e:aa:b4:13:2a:3f:07:9d:f5:ec:09:3e:ac:f4:6a:ff:90:da:
38:e5:c1:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:18 2024 by rpki-client on console-fra.rpki-client.org