Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer
File: 34pOYRe8o2iUDWjphUeYuWZgndQ.cer (raw, json)
Hash identifier: MKe0HjpZ7sbwdZnq6b3dHHqfejPgyPmSaB5Xd0JsceY=
Subject key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EC14
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 17 Apr 2024 20:39:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 45918
IP: 116.193.8.0/21
IP: 2401:9100::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125972 (0x1ec14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 17 20:39:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4f:70:b7:7a:86:86:4c:77:82:2d:d3:44:02:
eb:f5:75:a7:80:94:6e:2d:c4:af:7f:f5:9b:3b:ee:
7a:d4:1b:0c:dc:e7:a5:20:84:a3:04:6c:24:52:cc:
cf:2f:64:34:8a:c4:8f:27:7b:25:56:e7:c4:16:bc:
aa:92:c3:b9:ae:c2:a9:c5:67:21:37:d6:f6:97:71:
03:a5:c2:35:7e:ec:e7:99:81:7b:e1:07:42:70:71:
a7:a1:22:a7:f1:50:5b:2d:e9:26:fb:f9:31:44:36:
db:a0:81:89:c3:fa:9d:4f:23:bc:3a:30:49:14:ca:
1f:80:ca:0c:49:1f:cd:c1:34:9a:02:95:a5:2b:a1:
45:92:c9:ed:4c:d7:c9:b3:8c:e4:4e:e1:8f:12:08:
ae:bd:c8:7f:fe:df:54:fe:fe:77:6d:ee:07:57:b7:
7c:ba:d0:5d:92:f8:24:ac:58:7a:f8:46:8f:f7:09:
c0:2e:7a:9f:07:db:96:a6:00:75:be:5a:0b:ce:72:
29:a7:05:84:9d:84:ab:36:6c:a9:83:02:7e:4f:9a:
14:fe:45:33:bd:b4:bf:ac:af:88:8b:96:73:5e:42:
46:90:34:1a:f1:ad:b7:5f:e0:59:f0:8a:49:ac:88:
1f:a2:d3:01:06:3c:28:f1:17:2c:59:6b:f7:6c:81:
2f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45918
sbgp-ipAddrBlock: critical
IPv4:
116.193.8.0/21
IPv6:
2401:9100::/32
Signature Algorithm: sha256WithRSAEncryption
ae:5c:97:35:51:c6:2c:51:f7:b4:ac:b9:57:b9:c8:48:22:cf:
ce:c3:32:fd:c6:2a:f5:54:a9:b8:95:e4:32:a0:0c:26:b9:49:
e6:5c:e6:13:56:08:a3:ab:f1:42:1e:15:3e:b8:18:29:1d:4f:
4f:b7:19:dc:28:5e:ec:3c:27:9a:45:fc:d0:69:8a:5b:47:01:
e9:91:62:67:71:ee:08:a0:41:db:76:19:04:34:76:1d:22:95:
6b:05:94:3f:5f:70:ce:95:dc:c5:71:86:23:ee:24:50:04:68:
da:75:a1:aa:ca:27:bf:72:00:0d:4b:d5:05:84:8f:38:8b:74:
6c:56:eb:5a:9b:c7:93:e7:3c:9b:15:67:42:24:9a:b5:4a:39:
73:10:ac:64:e7:1f:a1:d4:cd:c3:1e:50:9d:e2:e6:b6:63:6d:
69:26:ea:98:92:8e:0d:df:4e:23:5c:a8:72:35:6f:4a:38:7f:
d6:94:1c:45:86:91:bf:c2:ad:65:98:92:f2:62:0b:75:f1:b6:
4b:74:94:3e:df:a2:be:94:cc:45:a7:13:71:3e:fa:99:83:55:
d3:35:5a:16:ae:63:7a:d6:1f:7a:51:8d:6c:41:48:60:dc:b7:
68:9b:db:f2:1b:a2:04:bf:6a:6e:6b:71:fb:6a:14:ef:62:f4:
1a:36:d7:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:13 2024 by rpki-client on console-ams.rpki-client.org