Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v_N3U7qvWZtJL3wLGR32Fqd29g.cer
File: 7v_N3U7qvWZtJL3wLGR32Fqd29g.cer (raw, json)
Hash identifier: Ctekn8SRvZDdPDcyhxfS56izCQXgsYe6gjO9Aa0s+sw=
Subject key identifier: EE:FF:CD:DD:4E:EA:BD:66:6D:24:BD:F0:2C:64:77:D8:5A:9D:DB:D8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DDEC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9167307/DBBC8B6433BC11EAB51FA00CC4F9AE02/7v_N3U7qvWZtJL3wLGR32Fqd29g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9167307/DBBC8B6433BC11EAB51FA00CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 07 Feb 2024 15:06:21 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 2400:eac0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122348 (0x1ddec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 7 15:06:21 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A9167307/serialNumber=EEFFCDDD4EEABD666D24BDF02C6477D85A9DDBD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:4c:bd:46:37:0b:5c:d1:6c:25:ec:92:23:76:
bf:96:c9:07:a2:b6:13:e1:28:09:0f:40:83:3d:b3:
a1:53:29:0c:9d:aa:93:47:a6:f1:88:b6:0f:37:67:
e5:99:4d:c8:1e:d1:45:c9:3a:18:5b:46:0e:ac:3e:
50:49:86:d5:09:8f:bf:bc:6d:0f:3f:5d:7b:a9:aa:
ac:07:e3:d5:89:bd:a8:5b:1e:39:7b:e7:a5:9b:7c:
39:d5:fc:3a:42:44:2a:e3:f7:2a:f7:a4:d5:6c:70:
4b:7c:e9:f6:3f:ff:30:9a:44:d9:a3:75:48:ae:6c:
57:19:90:8c:77:ef:89:01:d2:0b:7f:4d:4a:80:52:
10:91:ed:3c:7d:13:9d:fe:56:96:e5:20:dc:26:33:
9d:52:8f:81:b4:8b:5d:23:c5:7b:b8:46:f8:57:b4:
6f:a3:2f:10:41:df:45:5d:df:81:34:8e:54:47:fc:
14:42:d3:6e:9a:d5:67:b9:77:cb:a3:4d:e7:76:c9:
96:35:7d:f3:0e:2c:64:e2:2d:8d:5e:2c:04:e4:bf:
2c:ab:27:20:68:3a:f4:b9:ec:5d:df:6f:9c:45:6b:
94:6b:db:8d:21:4c:3d:01:48:d8:c9:bf:27:21:21:
a1:50:40:c7:c2:52:90:e9:3d:8b:4f:07:be:40:28:
88:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:FF:CD:DD:4E:EA:BD:66:6D:24:BD:F0:2C:64:77:D8:5A:9D:DB:D8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9167307/DBBC8B6433BC11EAB51FA00CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9167307/DBBC8B6433BC11EAB51FA00CC4F9AE02/7v_N3U7qvWZtJL3wLGR32Fqd29g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:eac0::/32
Signature Algorithm: sha256WithRSAEncryption
7b:cc:94:09:6f:68:3b:67:7f:ef:d3:a3:f0:e9:4a:ad:f7:21:
e7:49:e3:f6:81:76:65:9e:f4:5f:74:29:6e:4a:b8:95:4b:d3:
6d:87:0e:46:e3:8f:ee:70:24:58:5d:bd:8a:8d:ba:f4:dd:4a:
69:5a:7e:fe:22:43:5a:3b:bc:08:51:95:c6:e4:3f:af:5f:0b:
1f:2d:26:5e:39:b8:5a:0d:8a:78:86:f0:8b:6d:9c:ba:82:93:
ed:ee:d7:b0:b9:11:06:7f:ef:60:44:18:e8:02:4c:78:24:c6:
3a:7b:37:42:f2:58:97:62:fc:70:4f:44:ee:03:27:5d:5a:76:
cc:98:fc:ac:de:1f:82:f4:50:d5:4a:69:53:d1:ca:1b:49:45:
17:fe:7c:27:0a:48:12:b6:b6:4e:cb:5e:e5:40:97:3a:26:1d:
90:1a:2d:12:ad:bb:35:b3:32:d7:ba:9c:17:7b:ad:74:17:0b:
29:88:68:81:e4:11:38:1e:c0:af:95:d0:a0:68:b7:5b:06:91:
23:42:89:91:ab:22:b8:9c:12:ee:b3:2a:79:26:f5:fa:c7:f6:
a2:29:42:09:5d:b2:eb:e9:3f:7f:42:1d:20:0b:2c:13:1f:dd:
63:f7:3d:3f:d0:37:cf:cb:c3:35:c6:57:39:e3:87:4a:7f:2a:
31:42:9f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:44 2024 by rpki-client on console-ams.rpki-client.org