Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9lv88f3YSSS6iXQmzBvPX6hvnQM.cer
File: 9lv88f3YSSS6iXQmzBvPX6hvnQM.cer (raw, json)
Hash identifier: 18ylivG3ysISE83H3Oitrz+oPtn55N7AWAWUaLLSyuM=
Subject key identifier: F6:5B:FC:F1:FD:D8:49:24:BA:89:74:26:CC:1B:CF:5F:A8:6F:9D:03
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E111
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/9lv88f3YSSS6iXQmzBvPX6hvnQM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 27 Feb 2024 21:54:33 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 138185
IP: 2403:7e40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123153 (0x1e111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 21:54:33 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91B0BAB/serialNumber=F65BFCF1FDD84924BA897426CC1BCF5FA86F9D03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2f:1d:e5:6d:bf:a3:5c:49:76:f7:49:1d:af:
59:db:46:2e:be:84:f8:b0:26:f4:b0:6c:19:26:a8:
6a:da:8f:87:f8:46:6a:9a:fc:e6:00:e4:42:8d:68:
a1:bf:ad:00:18:73:3a:51:88:a8:8a:d2:d6:b9:1c:
65:f2:95:0f:e5:b9:5a:2c:15:c0:10:26:28:4d:bd:
a3:b0:4e:af:32:0f:0d:72:f9:05:0a:bd:cb:5d:0f:
63:5c:ea:8b:87:7c:d5:69:ea:bc:1e:78:f9:49:92:
e2:c1:98:93:09:52:c8:55:dc:8b:e2:59:a2:cf:aa:
b0:86:79:2b:3d:45:0f:e3:48:5c:0e:1a:81:f1:ed:
e8:27:c1:46:af:ce:51:59:09:11:33:8e:34:a4:f8:
2d:96:10:9e:c4:2e:7a:ed:08:bf:91:c6:9a:d0:f3:
d2:c0:4f:0f:7f:61:01:03:91:55:77:7d:71:9b:da:
d1:56:90:45:ab:ce:81:6f:ef:b5:da:03:20:83:e6:
3c:7d:ca:c2:c9:3e:3d:74:37:1c:f4:c5:c8:d5:5d:
f6:91:22:a8:23:01:8f:38:71:a1:e1:cf:3c:5f:73:
c2:d6:8e:32:87:87:82:40:2f:bb:ef:12:73:a3:fd:
71:56:53:9d:78:14:e7:37:a4:87:b3:19:23:88:a0:
fa:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:5B:FC:F1:FD:D8:49:24:BA:89:74:26:CC:1B:CF:5F:A8:6F:9D:03
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/9lv88f3YSSS6iXQmzBvPX6hvnQM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138185
sbgp-ipAddrBlock: critical
IPv6:
2403:7e40::/32
Signature Algorithm: sha256WithRSAEncryption
68:cd:e8:95:1b:29:d4:81:ee:aa:00:a9:43:8b:57:aa:25:90:
a5:24:44:48:b0:b0:e4:2f:6b:37:db:02:61:a2:7d:f6:d4:4b:
de:9b:ed:b8:80:3e:2e:30:dd:6c:9d:ff:bc:47:41:81:8a:5c:
72:81:d3:02:1a:32:1c:1a:34:38:b3:07:14:e2:bf:42:c7:37:
0c:fb:5d:44:b8:25:4f:df:96:6f:36:d0:ea:80:ab:74:65:d3:
00:a4:34:42:b8:b1:e2:13:d6:b1:0d:c9:4e:bb:e4:3c:23:52:
cb:05:90:54:3b:53:87:4c:f5:0f:f5:e3:2f:97:95:3f:3a:19:
7e:1a:87:1a:22:1e:65:b6:00:cd:99:df:0b:92:b9:75:eb:d3:
20:c5:14:25:f9:f5:4b:4f:b4:eb:4a:76:a9:15:8b:e1:0c:d9:
09:79:ad:60:7a:5e:f4:fe:6c:27:ab:f4:a1:bd:83:dc:37:aa:
b4:a6:e4:d6:58:00:98:17:d3:67:2f:61:df:2c:9a:68:20:0c:
30:56:db:e6:75:33:00:78:b1:78:9c:14:93:60:69:4a:9d:0d:
31:bc:70:6e:d5:ae:1e:6d:8f:06:f1:16:7d:b3:e1:bf:36:d9:
5f:a1:86:bb:b9:fd:6a:5b:69:1b:ec:3b:78:0f:04:0e:b5:93:
51:07:48:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:57:42 2024 by rpki-client on console-fra.rpki-client.org