Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRxVC1PrIEdRhbq83n5w32dESLc.cer
File: IRxVC1PrIEdRhbq83n5w32dESLc.cer (raw, json)
Hash identifier: L+aqrjyPo2Rek5VlQWp91FmeEhEBlKHHB55aVK1Sw6s=
Subject key identifier: 21:1C:55:0B:53:EB:20:47:51:85:BA:BC:DE:7E:70:DF:67:44:48:B7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02182E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917A608/7480FC8802E711EAB0450418C4F9AE02/IRxVC1PrIEdRhbq83n5w32dESLc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917A608/7480FC8802E711EAB0450418C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Nov 2024 01:28:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 138954
IP: 2001:df4:33c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137262 (0x2182e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 01:28:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A917A608/serialNumber=211C550B53EB20475185BABCDE7E70DF674448B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:92:23:31:b0:9d:d6:f4:81:fd:80:1e:f6:92:
21:2c:fc:00:69:f3:31:1d:a3:61:b8:a5:e5:87:2e:
28:93:aa:da:9f:a8:9c:84:92:a9:61:7e:dc:62:c1:
5a:33:5e:ca:83:8b:23:e7:c6:f0:67:41:8d:1b:0a:
b0:f1:d6:9f:ca:f2:29:73:fe:14:76:0f:1a:10:f1:
11:74:b3:dc:25:d2:a7:e5:85:a3:97:b5:64:fa:6a:
2b:3a:c2:57:21:41:8e:ba:2b:a2:f6:7f:d2:a8:89:
ed:a4:3e:65:92:a4:85:21:ec:00:1c:06:f1:d3:2e:
40:9b:45:d5:0d:3b:dd:e0:7b:fe:66:24:80:30:9a:
60:08:f5:b3:0f:93:6c:b4:b3:31:b1:f7:b1:ce:f7:
97:b2:b6:4b:41:13:e7:0b:a4:ef:1e:4d:62:4a:29:
be:f7:e0:5e:2d:95:35:9f:91:a9:06:93:c7:b1:32:
b5:fa:7d:b5:8d:e9:33:df:ba:a9:7d:ee:ad:20:b7:
e7:29:ba:b4:c9:c2:c1:a5:ba:39:fd:d0:6c:9f:69:
dd:49:94:72:d3:92:a3:a3:73:fa:8c:e7:bf:a9:a1:
2b:83:cb:b2:b9:77:8c:f1:70:44:48:91:58:f2:75:
ff:fb:d1:be:a1:5d:e3:f0:05:36:67:a9:57:7a:09:
40:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:1C:55:0B:53:EB:20:47:51:85:BA:BC:DE:7E:70:DF:67:44:48:B7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917A608/7480FC8802E711EAB0450418C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917A608/7480FC8802E711EAB0450418C4F9AE02/IRxVC1PrIEdRhbq83n5w32dESLc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138954
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:33c0::/48
Signature Algorithm: sha256WithRSAEncryption
53:6f:9c:b4:f7:e8:6a:a5:c2:33:22:d8:55:6b:c9:24:fe:db:
e0:45:84:36:3f:fd:94:f2:4d:13:0c:a6:eb:9b:39:2f:61:d5:
79:aa:0e:4b:87:9a:c1:ff:41:66:55:6e:1b:6a:f6:79:4b:54:
c3:22:21:9e:47:33:3c:34:03:6c:0c:11:76:59:f1:9c:08:69:
33:60:a6:e3:48:dd:c3:ef:f3:4f:ad:55:56:56:9d:b4:35:2a:
b1:99:5f:bf:56:ed:99:3e:f1:20:06:c4:20:e7:ba:7a:c5:30:
65:c8:e6:6f:31:59:65:29:61:fb:03:ac:2e:c1:7e:c5:e3:e7:
57:5c:8b:8b:9b:a7:2b:48:f6:0b:b6:02:c3:11:24:b6:93:34:
c5:ec:dc:f4:1b:94:1f:b3:95:63:f3:3f:46:be:19:58:3f:3d:
e4:96:58:cb:d0:b3:8c:52:21:ca:5c:d9:bb:bd:c3:52:6a:f9:
40:3d:4d:24:49:a3:8c:d6:3c:9b:85:48:1f:cb:6b:94:f5:3f:
cf:1c:b0:85:74:d3:ea:11:13:84:ad:a0:81:4f:bf:7c:e2:41:
6b:d3:11:a0:05:f1:d0:8f:f6:32:db:70:a1:2d:c7:74:28:94:
73:9d:01:0c:e7:7e:b4:9d:12:91:a9:33:17:a6:44:92:c6:55:
e8:79:ea:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:22 2024 by rpki-client on console-fra.rpki-client.org