Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CygSqDkChy-62yLLBA3ssw_v9Ww.cer
File: CygSqDkChy-62yLLBA3ssw_v9Ww.cer (raw, json)
Hash identifier: cy/3izl2GWJYAw0HKgtkCdCv8iowkFEUlm3PPhKfTKA=
Subject key identifier: 0B:28:12:A8:39:02:87:2F:BA:DB:22:CB:04:0D:EC:B3:0F:EF:F5:6C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0221E7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EAE0A/E38366D0B72211EFBC36A748C4F9AE02/CygSqDkChy-62yLLBA3ssw_v9Ww.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EAE0A/E38366D0B72211EFBC36A748C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 10 Dec 2024 18:16:39 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 135374
IP: 2001:df4:bdc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Jan 2025 09:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139751 (0x221e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 10 18:16:39 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91EAE0A/serialNumber=0B2812A83902872FBADB22CB040DECB30FEFF56C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c4:71:92:83:6f:41:34:74:87:55:73:0c:bd:
71:0a:2c:ee:cc:5e:3b:ff:2b:ad:c5:3f:c3:ea:ba:
34:c3:43:6c:4b:a9:fd:97:dc:28:23:28:ad:3f:f6:
57:14:46:6a:6d:53:1e:1b:26:f2:99:42:41:e0:b2:
e1:d2:84:8e:5c:a4:47:7c:81:94:46:8e:13:78:8a:
ee:45:59:79:ad:9a:31:1b:3b:66:9e:61:e4:a6:ff:
6a:02:e5:02:f0:48:20:cf:a3:f2:22:1b:bc:2b:3f:
dc:f8:67:fb:d7:d1:b0:0c:c9:8f:50:b5:d0:af:9d:
09:a5:df:22:bc:f9:e0:79:32:b2:ca:7b:2e:db:2c:
30:83:34:4c:a9:5c:60:7e:60:ba:2e:2f:b8:93:e3:
25:d3:a5:0d:d1:77:03:a2:d8:a0:8a:dd:d1:94:93:
59:66:3c:a6:75:32:17:0f:02:ef:bd:cb:d6:5e:86:
06:85:8b:3c:8a:1d:16:1c:53:7e:23:b2:3a:33:5e:
6c:41:3b:c0:25:ad:f7:74:d4:c6:d8:f9:1f:9c:63:
c5:39:cd:b9:ae:9c:be:60:89:03:0c:41:0f:ed:c4:
47:65:1f:1f:5d:f8:ca:c1:eb:f3:f7:73:97:42:9a:
a3:10:2c:ba:98:97:3a:2e:8b:08:16:b1:a2:37:05:
3f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:28:12:A8:39:02:87:2F:BA:DB:22:CB:04:0D:EC:B3:0F:EF:F5:6C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EAE0A/E38366D0B72211EFBC36A748C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EAE0A/E38366D0B72211EFBC36A748C4F9AE02/CygSqDkChy-62yLLBA3ssw_v9Ww.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135374
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:bdc0::/48
Signature Algorithm: sha256WithRSAEncryption
c6:6b:59:d9:1e:53:d1:43:24:81:a9:07:1f:35:52:d3:86:59:
1a:ff:75:c7:a9:c2:0f:48:66:72:12:29:c9:90:01:dd:36:e1:
88:56:53:42:c6:5f:ff:cf:28:44:32:94:80:54:6f:ea:d4:46:
cd:db:37:57:a4:f7:8b:a4:22:b9:b6:25:88:6f:43:af:4c:c9:
77:95:0b:c4:41:26:45:f2:04:51:81:30:f7:ab:57:2c:14:f8:
69:12:45:76:9e:01:fb:ce:7d:5b:93:89:3d:79:24:b0:e0:25:
d4:64:46:f1:8c:3f:d4:6c:9e:7d:18:30:92:ee:d3:fc:5a:29:
aa:6a:bf:d8:91:da:db:f6:96:a3:ab:65:8a:dd:5e:fe:91:93:
d2:f9:51:6e:21:28:73:a6:0e:d2:f6:18:01:99:cf:84:16:46:
29:ef:1a:25:3f:2a:f2:c5:ca:7f:9b:9f:20:a4:78:eb:c5:3d:
20:c2:ff:bf:19:5f:cf:ed:b1:46:79:c1:89:27:d5:55:30:b6:
12:d5:f2:cd:a7:12:a7:6c:8e:cd:92:1b:f1:e4:83:e2:a3:32:
e5:86:18:5f:5a:cd:8b:77:d9:70:12:1d:ac:fe:2a:99:df:b0:
08:03:2a:e8:c8:54:2a:15:c1:c1:2a:68:da:1f:e1:a6:da:06:
e7:30:3a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 10:25:36 2024 by rpki-client on console-ams.rpki-client.org