Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mEYPX8HHa7UVWQxG4oadb3OcNY.cer
File: 6mEYPX8HHa7UVWQxG4oadb3OcNY.cer (raw, json)
Hash identifier: L1uQp5zSIrWUX0IRphabNN6cSs6U0NFe4j7t8dQLHsI=
Subject key identifier: EA:61:18:3D:7F:07:1D:AE:D4:55:64:31:1B:8A:1A:75:BD:CE:70:D6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FD99
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91874B6/BE8911F4390511EFBF187A4AC4F9AE02/6mEYPX8HHa7UVWQxG4oadb3OcNY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91874B6/BE8911F4390511EFBF187A4AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Jul 2024 06:30:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 203.18.96.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130457 (0x1fd99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 06:30:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91874B6/serialNumber=EA61183D7F071DAED45564311B8A1A75BDCE70D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d4:0d:23:4b:db:49:ab:b9:ed:b4:72:1f:07:
27:0d:07:9a:6d:6d:19:68:14:81:43:84:ff:b8:22:
5d:a5:2a:8a:90:0b:c7:bf:53:ef:00:92:1e:0b:c7:
ff:48:75:08:b6:8a:07:5d:59:80:b2:38:71:be:3c:
96:94:38:ec:69:b4:73:1e:b3:b1:ea:33:3a:ec:3d:
95:fd:20:1b:ae:ca:88:5c:37:ae:12:3e:f8:d8:f9:
20:e2:a1:50:64:91:cb:1f:db:9b:ef:0c:23:a1:c9:
57:00:ac:cd:1e:54:1e:2a:6d:43:1b:18:52:23:ad:
e2:9f:59:cd:65:fd:2c:60:ca:83:34:3c:97:23:4c:
02:d5:61:86:90:3e:7c:59:17:e0:e6:fc:53:b7:e2:
eb:1e:74:49:0b:ae:eb:5f:4b:d1:50:ba:20:9e:1b:
17:83:31:1c:31:49:c6:5b:cb:3f:b3:cf:74:df:4c:
30:69:4d:cd:af:ce:3e:48:c5:d4:b0:21:11:33:e1:
3e:89:0f:b0:bd:26:e1:79:45:e0:6e:21:55:bc:f6:
d3:70:90:c8:88:fe:1a:18:85:70:e3:aa:08:f8:2e:
25:16:e5:25:47:f5:65:e7:85:2d:2d:4d:c0:bd:51:
67:78:71:d0:28:6e:d6:c4:d5:49:fa:41:a3:2e:58:
da:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:61:18:3D:7F:07:1D:AE:D4:55:64:31:1B:8A:1A:75:BD:CE:70:D6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91874B6/BE8911F4390511EFBF187A4AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91874B6/BE8911F4390511EFBF187A4AC4F9AE02/6mEYPX8HHa7UVWQxG4oadb3OcNY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.18.96.0/23
Signature Algorithm: sha256WithRSAEncryption
12:f4:0d:1e:3d:b4:37:d7:18:78:86:13:8e:82:fa:bd:8b:d5:
89:06:21:7d:4b:c6:23:75:9c:df:6e:c1:66:ce:2b:f1:9c:b8:
ee:05:eb:1a:74:0a:d9:0a:21:9e:2a:45:36:64:81:18:62:8e:
bd:30:7d:84:c4:a2:c3:3e:52:f3:b7:b7:f5:f5:03:5b:6a:38:
b9:ae:7b:c2:c1:6f:f3:1c:95:45:d0:66:ff:e8:87:92:67:8a:
62:19:ee:76:40:e1:c5:91:1e:45:06:16:75:5b:90:dc:81:0f:
87:8b:66:97:bc:f1:d1:a0:46:04:59:00:73:80:d0:3d:5f:d2:
f9:91:f0:aa:3c:c2:2b:fd:92:c2:04:41:7e:b9:34:9b:19:ce:
0b:b0:53:ec:cb:ac:26:2b:ba:e0:f6:88:f8:2b:d3:44:63:0f:
28:d2:74:26:97:02:75:c2:69:95:59:89:b9:de:3e:3a:26:4f:
81:87:30:45:da:4d:4c:7f:cb:e7:0a:cb:eb:84:f8:d8:23:70:
14:32:51:92:6b:86:a6:a2:e5:5c:c4:c7:fd:36:64:d7:e0:2b:
dc:1a:e8:a1:04:49:92:39:e4:b3:f3:db:c0:1a:7b:96:b8:ed:
08:c4:ac:27:df:3a:ee:05:e0:a5:01:9e:a4:80:c4:c0:e4:7d:
9f:90:30:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:18 2024 by rpki-client on console-ams.rpki-client.org