Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgcNjjoV_V7Y6fefFwx8-6aeRD0.cer
File: CgcNjjoV_V7Y6fefFwx8-6aeRD0.cer (raw, json)
Hash identifier: Nr4q6vOcDHA3I9bQidGkwWYYefZ+iwHzxtxigcursYI=
Subject key identifier: 0A:07:0D:8E:3A:15:FD:5E:D8:E9:F7:9F:17:0C:7C:FB:A6:9E:44:3D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0218FB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9182FE1/0375AE6A248111EAB59B5426C4F9AE02/CgcNjjoV_V7Y6fefFwx8-6aeRD0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9182FE1/0375AE6A248111EAB59B5426C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Nov 2024 15:17:33 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 135370
AS: 138533
AS: 150346
IP: 2405:4240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137467 (0x218fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 4 15:17:33 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9182FE1/serialNumber=0A070D8E3A15FD5ED8E9F79F170C7CFBA69E443D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0f:70:f5:11:85:48:86:2d:f6:66:4f:d6:d8:
03:d0:c1:48:3f:12:d7:b7:0b:a7:7d:d1:c2:3e:cf:
60:d1:61:eb:73:e7:55:1c:d2:24:50:ba:2d:a9:f4:
45:66:5f:24:16:2a:78:a3:b2:ba:8c:6c:34:05:7e:
7a:90:e7:d6:f0:17:20:4d:c9:a2:33:5f:bd:4b:6f:
7f:9c:53:d9:cd:0b:97:3d:50:91:8f:8a:7f:73:2b:
e6:e4:ff:81:a0:2c:51:ba:3a:ba:28:63:d5:dc:ed:
55:e2:b2:cc:0a:24:87:6f:84:a2:58:9e:6a:b8:a5:
81:df:92:cd:7e:f3:70:11:c0:25:af:f4:73:13:39:
d1:8a:d0:4a:ac:aa:8f:4f:7c:ab:a7:46:aa:9b:2f:
24:7c:63:25:d4:e9:3e:87:5d:37:40:91:b7:cd:7a:
4d:31:7d:24:1b:10:34:85:98:fc:47:0c:06:1a:b8:
68:35:98:09:6c:ba:3e:c6:d2:db:12:50:50:7e:3a:
0e:9b:a7:a1:49:d8:5d:e4:a3:a9:9a:c8:6b:54:c6:
60:19:d5:3b:d9:31:7b:15:29:42:0a:c7:1b:da:19:
04:7b:39:62:ef:b1:49:dc:f8:bf:1a:ac:72:e2:bc:
96:f3:90:f8:72:29:06:41:8f:2b:19:a7:20:23:1a:
b1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:07:0D:8E:3A:15:FD:5E:D8:E9:F7:9F:17:0C:7C:FB:A6:9E:44:3D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9182FE1/0375AE6A248111EAB59B5426C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9182FE1/0375AE6A248111EAB59B5426C4F9AE02/CgcNjjoV_V7Y6fefFwx8-6aeRD0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135370
138533
150346
sbgp-ipAddrBlock: critical
IPv6:
2405:4240::/32
Signature Algorithm: sha256WithRSAEncryption
a7:3a:8b:e1:fe:10:f7:f7:2a:11:8c:a0:f1:61:ba:98:6e:af:
af:43:39:57:34:35:43:dd:f3:6f:3d:29:d5:62:97:e3:07:52:
78:f6:85:48:32:92:1e:b2:77:af:fd:72:a1:d8:3d:40:04:fe:
e7:72:be:83:9b:7e:62:5c:1f:35:ae:38:34:a6:fb:8a:7f:c3:
a2:b5:34:e4:0f:29:8f:2d:6b:b6:bb:99:55:2a:40:d2:81:0d:
1e:d4:a1:6b:20:c8:c9:06:86:69:6b:c1:86:a4:66:2d:4d:e7:
1d:3c:7b:f8:b6:6f:18:85:e4:fc:ca:c3:f2:d3:98:2e:d7:fd:
0b:2a:fa:3e:98:fb:c9:7a:b3:3a:a0:54:27:87:95:71:06:b9:
b9:10:00:7b:27:d8:b1:11:bb:d7:e9:00:f6:b7:39:01:fc:f6:
23:11:ad:44:82:ac:f0:54:d9:4b:da:4a:35:13:2d:90:50:7e:
25:22:d9:62:aa:3f:f7:e0:a0:21:85:35:a3:9f:f9:d4:e4:2f:
1e:ae:1d:d1:2c:8d:88:a2:2c:ed:87:ae:88:29:27:2b:88:d2:
23:8a:f4:9d:3c:27:ba:a9:b9:fb:19:b7:11:2a:44:be:74:01:
7c:ef:c8:69:2b:3d:d3:56:47:34:e3:ca:8a:40:f3:c3:71:43:
6e:41:d1:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:21:34 2024 by rpki-client on console-fra.rpki-client.org