Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/86DXLWMw1yFWoA2fRuqwyfyTvIw.cer
File: 86DXLWMw1yFWoA2fRuqwyfyTvIw.cer (raw, json)
Hash identifier: QHAjN0USuwyiSH8/CqvSSqZe0X0XAKVSaK/rqX9L6TA=
Subject key identifier: F3:A0:D7:2D:63:30:D7:21:56:A0:0D:9F:46:EA:B0:C9:FC:93:BC:8C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E29E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/86DXLWMw1yFWoA2fRuqwyfyTvIw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Mar 2024 14:05:30 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 9382
IP: 203.24.35.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123550 (0x1e29e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 4 14:05:30 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9135395/serialNumber=F3A0D72D6330D72156A00D9F46EAB0C9FC93BC8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9f:17:d2:fc:a8:98:a7:88:60:4c:cf:70:13:
ab:bf:81:de:9c:5a:6d:ac:c0:b2:9f:1a:36:58:6e:
2b:47:72:65:3f:22:11:02:7f:cc:c0:72:83:24:ef:
fb:ab:38:d7:1e:a6:49:3f:c5:79:a4:a9:dd:a8:a5:
b9:a7:ec:54:ca:60:fb:8f:18:c9:a2:6f:59:3c:a9:
33:13:8e:91:ca:61:49:a1:d8:8e:04:63:ee:5c:3b:
66:60:74:5f:82:8f:d6:5a:83:3e:28:39:a5:3a:36:
37:29:34:ef:f8:83:0b:70:d4:1a:f5:fa:20:7a:58:
8d:6e:fa:db:a8:cc:18:76:ba:1c:1d:35:ea:24:e3:
49:d1:0b:89:4d:56:28:e8:db:71:12:4d:ce:5b:4e:
c9:f5:32:0a:c0:79:06:ba:01:5f:4e:a3:fc:d6:42:
cc:6e:70:c3:24:41:39:42:db:30:ef:42:0b:84:f2:
6b:d5:2e:9e:f2:ba:25:c0:95:bc:40:08:73:1d:24:
d8:e3:2c:03:53:d4:61:62:3c:2a:f1:77:6a:e2:8e:
23:fd:23:8b:2e:7e:9a:6a:14:24:dc:0b:24:a1:d6:
28:f9:21:b1:de:b6:c3:e8:50:26:f2:70:53:1c:89:
a1:8d:5a:f1:36:77:3b:69:6d:5f:bb:62:76:3a:d9:
13:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A0:D7:2D:63:30:D7:21:56:A0:0D:9F:46:EA:B0:C9:FC:93:BC:8C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/86DXLWMw1yFWoA2fRuqwyfyTvIw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9382
sbgp-ipAddrBlock: critical
IPv4:
203.24.35.0/24
Signature Algorithm: sha256WithRSAEncryption
20:8d:83:c1:0f:43:69:1c:65:b6:aa:78:9f:4e:2e:18:7d:d8:
e4:d3:f9:56:56:54:d4:53:e5:f4:87:00:dc:b5:29:f7:e6:89:
bd:91:a7:84:1b:61:b8:39:04:28:47:d1:e5:06:4d:0b:b1:27:
10:8b:b7:1b:1c:0a:cc:c2:1f:f8:90:63:a2:8a:df:b8:87:b7:
37:fe:c4:31:ab:93:c2:55:4e:32:ff:11:b1:22:f0:32:0f:8a:
4e:e5:58:0e:12:87:2c:49:0d:5b:5f:43:6f:e6:1f:18:64:27:
69:1d:27:17:3d:72:46:8e:85:0f:8c:a6:f8:b0:22:3b:41:b4:
31:ee:e5:8b:45:c1:63:ed:53:d5:b6:ae:57:4d:3f:13:65:61:
a0:1b:1c:8a:78:49:ad:0d:85:28:70:04:45:34:cf:f0:2d:68:
a7:ff:c1:a4:b0:d9:99:c9:ab:b8:f4:db:a3:7a:10:b7:28:0c:
5e:62:05:da:f1:2e:1f:2e:08:11:19:f6:51:33:9c:e2:5c:8e:
f7:21:48:ca:b2:ab:b2:37:15:af:a0:dd:45:25:e9:b0:fb:6f:
0c:83:2f:0d:4d:b3:4b:82:0c:b9:d3:46:7d:38:ef:6a:ad:15:
f2:76:35:17:d1:b0:c6:22:ba:79:65:f7:90:ff:f1:72:a6:43:
14:11:51:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:25 2024 by rpki-client on console-fra.rpki-client.org