Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f5wbJSbXs8du-Rg29BO_nweEos.cer
File: 7f5wbJSbXs8du-Rg29BO_nweEos.cer (raw, json)
Hash identifier: ns/kRqSvZ78tOIP5CpittWZl2aFiH/5Hzys613A2SWk=
Subject key identifier: ED:FE:70:6C:94:9B:5E:CF:1D:BB:E4:60:DB:D0:4E:FE:7C:1E:12:8B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0212A9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/7f5wbJSbXs8du-Rg29BO_nweEos.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 08 Oct 2024 06:05:05 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 134192
AS: 150154
IP: 2001:df4:5e40::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 31 Oct 2024 13:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135849 (0x212a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 8 06:05:05 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9170EED/serialNumber=EDFE706C949B5ECF1DBBE460DBD04EFE7C1E128B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:04:67:93:66:9d:08:df:32:a8:7d:39:5e:19:
24:0c:da:f4:8f:91:2b:e3:78:b4:31:c6:46:b6:88:
d6:d5:5c:33:85:5a:15:ae:af:f1:d3:c5:ed:58:a1:
b1:34:98:c5:6f:f2:f3:93:88:53:8c:a4:04:8e:a0:
6f:ce:8f:8b:cd:2e:e7:99:b7:ca:27:ca:5c:72:0e:
23:a2:98:0c:4d:14:a5:29:eb:d0:f2:7e:a3:fa:07:
2a:f1:c2:0e:c1:cc:6b:a4:84:d8:cc:b7:28:b2:c4:
3b:f0:89:9d:44:90:0d:49:ca:80:f6:87:9d:14:f0:
60:12:46:46:c3:8e:c8:ce:0b:fd:1f:1b:57:fa:4d:
2b:c9:10:69:55:6e:4e:eb:62:d6:9e:de:b8:59:b5:
8c:e4:7e:00:25:c0:71:e1:e8:da:83:2d:0c:20:fc:
0e:58:3b:b0:d4:fd:5a:04:39:20:e2:3f:2d:54:fa:
b5:d2:1b:c2:23:8d:d0:7e:65:56:71:f5:5c:2c:36:
d0:a7:ee:06:a9:ae:c9:17:91:58:f0:42:04:41:8a:
5b:6b:a8:a7:c1:9a:b7:fe:f9:4a:62:68:9f:00:97:
6d:bc:26:9f:5c:3a:f5:dd:cf:70:2e:5d:36:8b:3d:
da:91:91:2e:08:cf:72:61:ce:a4:1c:40:93:89:0d:
22:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:FE:70:6C:94:9B:5E:CF:1D:BB:E4:60:DB:D0:4E:FE:7C:1E:12:8B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/7f5wbJSbXs8du-Rg29BO_nweEos.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134192
150154
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:5e40::/47
Signature Algorithm: sha256WithRSAEncryption
70:2a:31:b0:b4:8b:3f:76:37:59:33:9f:fc:6c:4d:e6:c1:88:
01:8c:b2:0a:80:13:e3:f0:21:5c:08:51:4a:2c:d4:82:e4:81:
1d:e6:da:d5:f0:1c:0e:51:2e:7a:c5:f5:7c:0e:0e:11:7d:c8:
6a:df:3a:8a:f1:0f:2a:81:26:eb:43:8d:a4:73:97:e2:ec:c3:
31:5d:f3:41:ca:38:9b:65:ae:ea:1b:71:a4:0a:0b:ce:25:88:
f1:6c:99:d6:45:8d:5c:80:73:29:05:9d:86:1f:d7:a8:e8:6a:
b4:cf:8b:e6:07:dd:6a:65:98:d0:2a:4b:04:19:28:45:78:95:
1d:18:92:a0:e6:0e:49:1e:59:d2:3d:0c:83:46:34:e0:f9:99:
16:df:85:18:c0:1a:8c:d5:56:ef:96:32:1b:7c:41:a3:6c:24:
a1:d0:31:ed:f3:04:f0:37:e1:41:cf:63:4f:c7:21:72:83:dc:
f4:69:f1:c1:4d:82:1f:dd:47:8b:ca:66:4b:9f:06:b8:29:e0:
78:98:d8:d8:d9:5b:7a:33:33:be:74:32:67:62:da:86:3b:28:
9a:8d:50:da:b2:9b:db:a3:7a:79:56:c5:fb:89:2f:91:9f:8b:
e6:e4:38:ef:d7:0f:9e:96:e9:f9:7a:34:29:ef:6b:41:88:07:
40:5b:9d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 13:56:19 2024 by rpki-client on console-fra.rpki-client.org