Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4PPPvfp9B0J0-nSdQCnO41iPd8M.cer
File: 4PPPvfp9B0J0-nSdQCnO41iPd8M.cer (raw, json)
Hash identifier: TBUOf/PZsWHyVMmWweCAvCxgDhapgxrkujINM7aKVbw=
Subject key identifier: E0:F3:CF:BD:FA:7D:07:42:74:FA:74:9D:40:29:CE:E3:58:8F:77:C3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0219AC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D0853/5B94390E044111EB91C43E45C4F9AE02/4PPPvfp9B0J0-nSdQCnO41iPd8M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D0853/5B94390E044111EB91C43E45C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 07:22:00 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 17452
IP: 202.91.160.0/20
IP: 2401:2880::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137644 (0x219ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 07:22:00 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91D0853/serialNumber=E0F3CFBDFA7D074274FA749D4029CEE3588F77C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:59:2d:32:ce:0a:5d:0e:b6:da:bb:d6:dd:72:
19:3b:bb:9d:38:15:f5:e3:0e:51:8a:58:04:20:cc:
29:4f:38:eb:3b:26:a5:92:08:8d:27:e0:73:4f:f6:
ea:1d:7b:c6:17:1d:ee:98:b1:cd:f7:e6:d8:ac:25:
9f:77:cf:36:ac:f6:8d:19:00:e7:0f:41:6f:dd:d8:
d7:66:1a:0d:76:fd:42:6f:0b:8a:70:1e:7f:7d:a3:
14:23:5d:61:f8:9d:1b:b4:6a:5b:0a:01:03:64:e6:
58:a6:3a:bd:85:32:31:ee:38:54:cc:d2:5e:49:6c:
78:a7:04:03:d4:cc:26:72:9e:97:cc:fa:24:4c:a0:
5d:fb:8b:e1:c8:6d:46:57:f9:80:ab:d6:90:25:fd:
bd:ba:92:ad:b1:e6:d9:14:f8:73:0c:33:f5:9f:2a:
51:b0:0b:a7:c0:5b:f4:62:5c:21:c8:c1:45:a8:27:
88:4a:0c:7b:58:6c:1a:c7:b2:4f:e0:6b:06:20:e4:
c5:0b:d5:f4:a3:af:ac:dc:0e:3a:16:d5:8f:67:a0:
36:58:34:94:1f:5e:cf:b4:b0:35:1b:6f:39:3a:76:
28:20:c1:9d:5a:03:85:53:cf:8c:50:84:d0:0b:ed:
36:2f:1c:5d:1e:5a:00:54:94:03:8f:7e:e7:0b:90:
f4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:F3:CF:BD:FA:7D:07:42:74:FA:74:9D:40:29:CE:E3:58:8F:77:C3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D0853/5B94390E044111EB91C43E45C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D0853/5B94390E044111EB91C43E45C4F9AE02/4PPPvfp9B0J0-nSdQCnO41iPd8M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17452
sbgp-ipAddrBlock: critical
IPv4:
202.91.160.0/20
IPv6:
2401:2880::/32
Signature Algorithm: sha256WithRSAEncryption
d1:49:1e:e5:aa:8b:b0:1d:22:1e:fc:1f:8a:4a:1a:87:6e:fd:
56:26:ab:92:39:d9:c7:fc:4b:0b:ed:3d:9c:ad:8e:9e:ae:6b:
54:6a:05:29:9e:17:3c:6b:eb:08:d5:77:f5:0e:48:e5:52:d3:
0a:a3:44:f9:ae:50:57:34:7a:7a:8c:5e:8b:8a:a1:5e:1e:41:
c4:e3:0e:f6:fb:f4:4b:f2:50:ff:eb:84:cd:a4:bd:62:dd:c2:
82:c6:44:9c:e9:01:06:0e:a0:26:7a:21:df:31:27:f8:9f:cb:
9c:b7:a7:f4:7e:7a:1c:34:9f:f5:78:73:21:a2:a4:95:60:fa:
b1:70:ba:30:36:a5:d9:d2:f6:a2:d1:6a:1c:6d:b0:cd:8d:33:
75:de:ad:f2:66:0a:aa:ab:64:42:61:1c:cf:a7:f0:0f:c7:b0:
2b:52:49:63:e4:fc:3c:66:81:2a:5c:7f:cf:6e:47:b7:0f:b5:
aa:e7:76:5f:05:54:9d:c5:53:ce:c9:5a:d2:31:e2:08:34:5a:
e0:1a:45:03:6f:e6:06:76:19:b4:45:94:40:47:f8:0b:78:53:
78:87:99:7f:16:c2:ce:6f:fd:26:3f:02:d8:f6:0d:86:9d:ec:
e9:06:42:28:85:2b:cb:57:f7:d9:27:e4:1f:e2:7b:4b:1a:35:
47:8f:57:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:02:33 2024 by rpki-client on console-ams.rpki-client.org