Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer
File: 4YMttqUeSiWekP7IHkfFRpxSpok.cer (raw, json)
Hash identifier: JOyvTh09+9f4xP487M7URFgas4coC9umcleAFpRvwVI=
Subject key identifier: E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D8B7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 16 Jan 2024 16:45:21 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 55446
IP: 49.128.108.0/22
IP: 2407:9a00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121015 (0x1d8b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 16 16:45:21 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A916814B/serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:47:a7:e7:44:e9:e6:98:76:57:03:38:de:14:
42:08:25:c4:dd:23:ad:86:b2:fa:89:f3:e3:05:13:
86:8a:7a:8d:ce:8b:4d:7e:9a:0a:2a:2b:ec:77:37:
2f:78:58:11:78:8f:0b:b0:f3:c0:2e:ba:bf:02:cc:
d4:23:bf:73:a6:b1:46:33:75:29:90:84:f6:fb:06:
44:8b:f4:48:60:23:1f:c7:a4:a3:6a:25:bc:31:16:
12:a8:5b:23:20:45:6d:ba:1e:03:89:0e:dd:09:29:
61:1a:19:07:f5:00:7b:af:94:83:2b:2a:94:8e:c3:
61:c1:9b:1d:24:36:5c:8c:13:05:b6:ae:4d:d0:8e:
b9:cb:c9:7a:cb:70:0e:f9:56:93:1e:55:a1:6a:83:
58:f1:d3:d3:b9:b1:b5:c4:ce:e7:2d:cf:8a:3f:98:
ab:6b:86:67:89:57:10:79:71:bc:24:a7:71:0c:83:
ae:58:43:87:b5:fe:c3:e6:da:d0:27:83:8b:81:08:
a4:f1:ff:41:53:79:a1:66:0c:16:34:67:64:c4:37:
90:23:cc:58:21:22:d6:7a:2e:f5:da:65:12:d3:d6:
83:59:2b:1b:97:04:1a:f0:94:f1:ab:46:60:0e:c2:
26:e5:42:04:36:d4:26:a7:b9:b0:a0:23:d3:4f:c7:
79:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55446
sbgp-ipAddrBlock: critical
IPv4:
49.128.108.0/22
IPv6:
2407:9a00::/32
Signature Algorithm: sha256WithRSAEncryption
17:e0:f8:bd:1f:99:ae:fb:0a:7f:7e:c8:fd:76:1d:c2:4a:78:
34:99:03:64:c4:ee:cc:08:11:be:49:cd:ae:c1:9e:7b:be:f1:
57:4d:cd:17:a8:c8:1c:36:9b:7a:fd:91:5c:f9:b0:27:60:d2:
0c:88:dc:1e:ba:35:12:95:c9:16:e6:d9:5c:49:54:85:8d:fa:
7b:19:6d:b6:f5:bb:29:0e:77:33:e1:35:33:36:33:36:f4:eb:
3e:fa:1b:99:fb:50:71:e0:0f:01:9a:3c:47:7a:f2:e6:2e:15:
02:80:8b:f9:64:a2:5d:3b:77:67:6e:ca:52:76:07:dc:ea:f9:
d8:be:98:36:1a:cf:56:eb:81:e9:52:37:65:5b:0f:ef:9b:c7:
f6:5f:e1:e9:3d:d1:f4:91:a5:8c:98:90:e9:0c:b4:cb:13:ba:
9b:6f:fb:0e:21:a8:8f:13:47:24:6d:15:58:69:e3:a1:a8:be:
49:11:22:36:f8:dc:1b:85:fa:dd:6b:47:47:b7:fc:86:2a:40:
6e:e0:1d:d2:71:46:5e:33:c7:57:36:fb:4f:4c:96:e1:d9:ac:
3d:ac:87:82:a1:47:74:a2:82:e3:9f:4f:93:f7:20:80:39:4e:
a6:b6:5f:e1:8f:c3:73:1c:c6:81:42:7a:6d:a0:36:e0:97:82:
37:ff:76:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 14:08:21 2024 by rpki-client on console-ams.rpki-client.org