Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer
File: 4QZLtgGhMQh2G1RXofcVJMSky84.cer (raw, json)
Hash identifier: HQxarn0KXGSdOqfiZ/kABvpMCbwpvJ7USNJZl3S0qmw=
Subject key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021480
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 17 Oct 2024 13:38:00 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136979
IP: 103.101.36.0/22
IP: 2001:df2:8b00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136320 (0x21480)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 17 13:38:00 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0b:33:cf:d8:3f:ad:76:80:b2:f1:d0:3b:85:
0a:87:e6:50:13:5d:e8:5b:ca:2e:2a:a7:6b:23:62:
90:30:2a:d9:0b:ea:c9:7a:38:ac:54:ec:24:45:cc:
d3:15:6b:45:7d:40:f9:1b:04:8e:30:72:25:90:6d:
21:55:e7:42:cc:79:d0:92:59:7e:6b:b1:6f:4f:a7:
ff:4a:36:03:d1:6c:40:c0:c9:4c:dc:c9:f7:e5:ed:
ed:5c:2d:f3:f6:88:e1:32:fd:02:33:6e:37:b3:28:
f6:a2:76:b5:90:9c:8a:9c:a4:d8:51:f0:a8:cd:04:
27:df:82:fe:11:8f:57:a7:0e:1d:46:68:ea:31:eb:
43:15:2f:c2:cf:5e:91:05:85:e4:f3:b7:ce:be:76:
c1:4b:eb:a1:2e:94:a0:a1:94:94:da:8e:96:0a:79:
4d:d7:5a:0b:85:25:bd:22:45:5f:12:83:f8:34:56:
f6:d0:5a:81:ea:85:ac:7b:ee:ea:a2:f8:1e:ce:b9:
59:25:76:46:df:21:9a:35:57:4b:22:68:a0:f5:e2:
3c:51:e7:c8:31:b8:71:14:5d:a0:74:5e:47:9f:46:
6a:eb:73:d0:6d:99:a5:f6:a8:81:d6:c8:e1:ec:24:
8c:4e:d3:f2:19:9b:4c:2a:a9:d8:32:be:f1:e9:43:
a4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136979
sbgp-ipAddrBlock: critical
IPv4:
103.101.36.0/22
IPv6:
2001:df2:8b00::/48
Signature Algorithm: sha256WithRSAEncryption
33:61:db:15:8d:98:d2:9e:d4:4d:8e:00:1f:da:ad:36:3e:69:
fa:6a:fb:87:a0:73:35:48:75:d0:70:54:9b:56:ba:67:1e:12:
32:76:78:e6:b9:e1:68:3e:b4:fd:5f:ce:89:4d:8a:87:6e:3f:
28:43:56:cc:0c:d6:16:52:ed:b2:82:a8:ac:22:e0:18:4a:f9:
fe:2c:d4:73:96:2f:f3:22:ae:40:71:b6:bf:db:c1:25:f3:e3:
dc:77:4f:3a:de:66:12:33:e9:2f:de:e2:e3:a5:84:bf:af:56:
56:9d:60:e7:70:5a:c9:1f:43:87:da:63:28:42:bc:5a:db:04:
57:67:98:c6:2c:1a:00:63:66:db:93:0d:8e:cd:a0:b5:c3:40:
a8:81:2e:34:8c:6e:7a:6c:a1:26:15:86:97:d1:e0:5a:65:ec:
11:14:3e:27:d9:fc:c1:3d:4a:e5:80:a3:c2:43:b1:ba:e8:e9:
c7:a1:4d:0c:4e:c1:70:20:23:a4:a3:59:0d:d4:1a:f2:aa:ac:
da:56:3c:de:91:f2:ea:3b:98:67:ec:33:1d:a0:9b:e2:26:b5:
bc:7d:4e:13:35:01:19:f6:66:d4:f6:1d:41:84:70:78:52:22:
ec:b0:07:f3:7e:b7:df:bc:fc:24:91:7d:a0:de:c6:8b:85:08:
cf:eb:77:ec
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:08 2024 by rpki-client on console-fra.rpki-client.org