Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C3f3vSPLQoWNC7_29-OscxNVMdU.cer
File: C3f3vSPLQoWNC7_29-OscxNVMdU.cer (raw, json)
Hash identifier: SvfncHiOyXyNalctqJpsYjszY3kmoSrEYRL7hBc2RLE=
Subject key identifier: 0B:77:F7:BD:23:CB:42:85:8D:0B:BF:F6:F7:E3:AC:73:13:55:31:D5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0221AA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EBC61/4C6F6856B6C411EFA24AA616C4F9AE02/C3f3vSPLQoWNC7_29-OscxNVMdU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EBC61/4C6F6856B6C411EFA24AA616C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 10 Dec 2024 06:59:33 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 134193
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Jan 2025 09:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139690 (0x221aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 10 06:59:33 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91EBC61/serialNumber=0B77F7BD23CB42858D0BBFF6F7E3AC73135531D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7d:65:38:c6:f9:7d:b4:76:e4:84:5a:8b:b8:
d7:87:89:3a:39:55:f3:f1:9e:b7:b8:17:e6:d1:53:
ed:fb:2e:49:6c:c5:96:d3:8f:eb:a4:b4:bc:20:1a:
8f:72:4a:11:26:05:b1:8e:42:55:85:d7:6e:ca:c1:
8f:84:a0:44:6f:7c:b4:cb:9c:bd:88:ab:da:e3:a4:
ba:c4:23:f1:be:3a:b8:91:c6:34:dc:6e:4d:4b:9d:
26:e8:bc:a9:d0:7d:91:57:05:8b:6e:42:4a:f0:89:
44:bf:b5:d6:a7:a7:0b:aa:15:c5:c7:71:ad:fd:af:
1b:92:8a:42:a1:66:92:0e:86:a2:4c:39:b2:1f:9f:
90:37:e2:9e:72:33:3e:ca:d0:9b:95:a8:3e:35:57:
d6:34:fa:24:be:64:41:fd:4c:d5:89:5a:89:e8:d5:
e4:99:98:46:f8:49:de:47:40:82:fe:4b:e0:f5:ed:
1d:28:cf:99:9b:4d:f4:15:8e:a9:00:e1:ce:99:7c:
fb:82:ad:01:35:30:c9:24:43:d9:4d:c6:72:d2:e2:
34:06:62:9b:af:f4:eb:dc:1f:81:82:bf:70:d3:22:
6c:c2:d2:5e:35:84:33:8d:05:61:52:f3:17:51:63:
c0:93:9b:f6:63:b6:09:8a:c9:95:1a:f5:1e:bf:34:
ab:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:77:F7:BD:23:CB:42:85:8D:0B:BF:F6:F7:E3:AC:73:13:55:31:D5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EBC61/4C6F6856B6C411EFA24AA616C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EBC61/4C6F6856B6C411EFA24AA616C4F9AE02/C3f3vSPLQoWNC7_29-OscxNVMdU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134193
Signature Algorithm: sha256WithRSAEncryption
bb:c1:be:b5:b0:fa:9b:76:b0:07:23:0c:61:61:5c:3d:c7:69:
90:27:cc:6b:3f:fa:02:c3:9c:32:b6:c9:da:9e:79:d2:31:73:
ee:1b:4c:c4:21:3f:b0:de:64:d4:97:f2:7a:30:f4:fd:0d:19:
68:47:41:85:ff:61:77:b6:07:2d:2b:60:3b:8e:e3:71:58:61:
86:cd:37:6d:82:8c:75:2e:a1:02:d4:d0:93:e6:a2:b5:8b:4d:
41:9c:c4:14:50:73:2a:2c:f2:62:93:41:9e:fe:47:27:78:2d:
c5:66:b5:59:e9:67:e1:bf:bd:4a:b7:4d:3a:f9:64:37:99:a7:
ae:98:57:e5:1a:55:ae:1f:38:14:28:6a:ed:c9:2b:21:0d:9f:
40:6f:0c:16:bc:9f:f0:e0:9b:66:6c:29:ce:a0:2c:b5:38:83:
e4:fc:c0:fb:0a:bb:1c:14:2c:72:2e:d1:67:50:06:5e:0d:4c:
b3:5e:d5:0d:75:76:5f:b1:b4:53:fe:4b:68:eb:c4:d0:0c:de:
bf:54:9d:1b:6a:05:f3:9e:03:aa:66:41:d5:76:71:80:c4:5a:
a5:aa:a6:6d:d0:d9:92:14:6c:8d:22:14:0d:75:39:37:d7:29:
0f:96:bd:3e:a3:f6:75:c3:be:77:12:50:72:b3:fb:bf:f8:60:
75:87:65:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 10:22:49 2024 by rpki-client on console-fra.rpki-client.org