Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IdrUasrF3RAzUxM0uTwpZjgOBw.cer
File: 6IdrUasrF3RAzUxM0uTwpZjgOBw.cer (raw, json)
Hash identifier: 4w/e8u5TUoLclZQfiE7a6/L+eLlyV2z4d7oGdgry2xM=
Subject key identifier: E8:87:6B:51:AB:2B:17:74:40:CD:4C:4C:D2:E4:F0:A5:98:E0:38:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F980
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 17 Jun 2024 05:41:29 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 138933
IP: 2401:a820::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129408 (0x1f980)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 17 05:41:29 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A913AE23/serialNumber=E8876B51AB2B177440CD4C4CD2E4F0A598E0381C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fd:4b:9e:78:eb:35:bc:64:da:61:5e:0e:81:
b2:17:a1:78:ea:33:0c:67:c9:35:ce:a0:76:b7:f4:
4c:af:43:e8:62:87:77:42:0f:5c:e6:7d:b4:48:a8:
a1:cb:b9:60:07:65:a1:20:21:50:36:aa:f2:7f:d3:
fc:b2:5e:76:50:e6:2a:9e:79:b5:d1:80:f1:cf:05:
30:e7:cc:5e:e7:55:35:50:39:3e:5d:2a:a5:21:75:
91:90:33:8f:72:3a:47:71:ef:c7:90:90:c2:f4:64:
f9:f6:a8:07:5b:22:2d:a2:7d:6b:d9:91:f9:99:52:
bd:a8:24:ba:cd:93:bd:50:0b:bf:46:13:a8:7f:b3:
9d:7f:64:2b:de:05:7e:d9:cc:31:d3:b3:82:10:93:
db:c9:a2:bd:32:c2:a9:04:15:2d:f7:c8:99:b8:67:
72:39:9d:5a:8b:d9:72:d2:2b:eb:f1:78:56:dc:fb:
08:85:d9:47:8d:e2:06:80:67:66:d4:8e:fa:29:17:
f5:e6:29:fd:01:6a:26:f0:90:d2:8a:9b:18:74:2a:
d2:62:bc:fe:5d:25:f0:60:74:95:29:f1:b9:bf:86:
22:a0:87:91:4f:fe:74:34:11:e0:3e:d9:36:27:86:
8c:22:4b:32:72:24:83:bb:35:67:df:61:89:eb:f6:
0d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:87:6B:51:AB:2B:17:74:40:CD:4C:4C:D2:E4:F0:A5:98:E0:38:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138933
sbgp-ipAddrBlock: critical
IPv6:
2401:a820::/32
Signature Algorithm: sha256WithRSAEncryption
8e:ba:1d:6b:38:36:ac:8c:3e:72:a0:d5:4a:7a:cf:ff:2d:32:
0f:8b:1b:67:35:17:4a:da:90:1a:db:0c:0b:a2:c9:52:29:58:
d4:31:f4:8a:62:0d:07:07:e8:e5:e5:a5:43:54:b1:56:d5:f9:
68:04:c2:1d:c4:90:10:13:f9:c4:d5:68:02:8c:f3:13:69:68:
f6:47:68:4e:38:2c:10:f5:e2:1d:92:0a:9f:a0:71:e7:5e:40:
84:f1:50:09:58:e4:cb:a6:7b:71:d7:05:8c:34:f4:eb:2a:af:
f3:c6:b2:7e:67:8a:9c:ee:16:ee:29:57:83:4f:25:2a:4b:11:
09:49:ee:19:ed:3c:b1:90:72:95:b1:e6:02:2a:9a:70:59:52:
3d:f0:44:ab:58:f4:c3:4b:9e:c0:c4:bd:13:07:d2:eb:ea:e3:
63:04:99:80:a4:ff:ab:5d:dd:60:6b:26:13:7d:88:72:66:e8:
76:b0:28:57:7e:ad:61:84:c5:9a:f5:cf:7f:fe:05:cb:21:83:
77:d7:aa:26:e0:fe:3c:1b:a5:80:b1:8e:19:76:0c:f0:bb:6c:
be:d7:44:ea:26:c3:b4:d5:60:99:4b:04:20:20:d3:9d:00:6f:
cb:f1:3a:e2:1b:9a:fa:0b:b6:9c:64:bf:ef:b6:4f:22:91:4f:
b3:c4:d7:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 22:41:22 2024 by rpki-client on console-ams.rpki-client.org