Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.cer
File: Fc9Q21Kw8S8abjs5Yz1ILgnP41w.cer (raw, json)
Hash identifier: cOJCvwXRC+AVYKFeW3bYCs/qJ5sxGriyTg/mj3eYw7A=
Subject key identifier: 15:CF:50:DB:52:B0:F1:2F:1A:6E:3B:39:63:3D:48:2E:09:CF:E3:5C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020796
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 19 Aug 2024 07:42:00 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 153166
IP: 2001:df4:1040::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 31 Oct 2024 10:39:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133014 (0x20796)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 19 07:42:00 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91B673B/serialNumber=15CF50DB52B0F12F1A6E3B39633D482E09CFE35C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:de:ee:72:99:aa:64:60:d0:e8:a7:c1:0f:f2:
de:dc:8d:f9:d5:3c:e5:f0:0e:f1:b0:b7:c0:95:26:
dd:75:33:ab:d9:c1:92:ea:4b:bd:b4:ef:38:fd:ac:
63:26:84:f1:1f:f3:c1:8c:fc:e8:b1:95:66:ac:0e:
d8:c9:49:1b:b4:6f:54:70:cf:04:1a:d3:61:3e:43:
ae:8b:07:91:1f:9b:ad:e6:c3:63:f9:3a:d6:db:f0:
07:4e:5f:70:cd:12:c7:a2:89:4f:bc:8f:96:9e:3f:
63:4b:5d:98:1b:85:43:84:27:90:ef:33:58:ed:ab:
42:ae:d8:ae:6c:0b:47:49:bd:66:4e:dd:8f:61:8c:
56:34:b6:e3:36:b2:45:68:fc:e3:fb:99:b2:c0:2f:
80:c3:9d:cb:e2:09:a4:8b:c8:b1:aa:36:63:30:c9:
a1:9f:a4:62:ef:7f:d8:f8:25:9a:41:b0:a1:57:ba:
03:e3:d1:45:9b:b8:09:a7:7f:e1:74:b3:af:c5:28:
4d:37:cd:fc:e4:d2:bc:5e:53:08:d3:10:6e:c4:c0:
dc:83:ed:53:4a:81:32:31:a9:8b:b5:8d:a6:a0:20:
a5:0d:aa:52:3c:ae:2d:44:12:92:c0:bf:69:0e:10:
69:f3:98:54:49:43:b2:a4:8e:96:f4:6f:fe:51:b7:
ce:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:CF:50:DB:52:B0:F1:2F:1A:6E:3B:39:63:3D:48:2E:09:CF:E3:5C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153166
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:1040::/48
Signature Algorithm: sha256WithRSAEncryption
bd:f1:50:1e:b8:40:e5:a5:4b:89:77:30:0f:0e:ae:2c:31:5e:
d9:4f:9d:16:78:9b:3c:99:79:ef:d3:cb:29:05:ad:83:e7:5e:
69:e7:1d:28:1f:79:43:a1:9a:6d:6d:48:d0:68:a3:9e:e0:fb:
5a:81:e3:d8:d4:7c:97:b4:fb:8f:8f:c7:68:4a:74:9e:a4:da:
da:13:8d:21:cb:9a:af:57:cd:f7:97:16:fb:90:9c:f0:b0:6a:
96:a0:09:7d:a3:e9:79:0c:d6:7b:28:21:d6:03:e7:4a:68:cb:
58:70:7c:4f:31:c9:80:45:79:d5:3c:1d:8e:e2:1a:01:ac:84:
f9:3f:87:f3:79:ef:54:18:91:50:7b:23:6e:71:70:17:fb:cd:
ee:46:64:31:3a:65:57:5c:b0:0e:18:31:ff:c8:f0:a2:76:7e:
ef:7c:d6:1f:a9:e9:ea:a2:b9:6a:19:a4:01:9f:57:55:98:c0:
2c:2a:e5:60:a6:f4:10:ee:d5:70:0b:6e:30:56:bb:5b:aa:d4:
65:cb:b8:b8:3e:cf:e4:b5:f8:48:84:75:bf:9f:d1:a0:ff:28:
67:e4:31:5f:fa:0d:f5:bc:77:0d:f1:67:29:cd:76:a9:78:3f:
05:cd:84:b9:ad:f3:c9:a2:c8:34:a3:af:eb:ef:94:3f:67:01:
fc:e8:eb:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 11:39:06 2024 by rpki-client on console-ams.rpki-client.org