Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer
File: J5KVmyX7-evckzm6nH01VXJpaas.cer (raw, json)
Hash identifier: L3vmmofe4jGXw3JVHbk7MoH9lDRMyT1YVHylk3fY51Q=
Subject key identifier: 27:92:95:9B:25:FB:F9:EB:DC:93:39:BA:9C:7D:35:55:72:69:69:AB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E924
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Apr 2024 00:39:49 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 141989
IP: 203.8.200.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125220 (0x1e924)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 3 00:39:49 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9189261/serialNumber=2792959B25FBF9EBDC9339BA9C7D3555726969AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:07:7f:33:21:09:25:5b:ca:b4:78:28:6b:c3:
fd:48:f9:81:d5:f3:5b:6a:50:3c:a4:3f:a9:75:56:
00:9c:d9:28:94:79:01:12:61:e1:b4:7c:0e:2f:dc:
81:e2:cb:9e:18:42:9f:ee:1b:45:8f:7f:2d:f2:49:
3f:e4:16:16:94:fd:48:e3:9a:ed:45:3b:ec:79:c4:
ae:3d:b4:3f:ba:7d:89:78:03:77:da:52:18:4f:85:
35:72:7f:c1:b6:79:c6:dc:80:95:92:ff:bc:8c:9e:
a0:a4:b2:ac:f5:c7:f1:da:f2:f6:29:3e:45:1d:9d:
99:05:55:83:e3:f9:09:6b:ee:d9:43:2f:3d:19:65:
bc:8b:a3:bc:14:95:8d:1e:2c:eb:f5:b6:79:7a:4b:
e9:65:5d:8f:27:bc:87:0a:63:76:75:1a:ef:ec:dd:
49:b1:4f:00:ef:43:f7:52:35:4f:82:76:ef:5b:ed:
ca:33:43:51:fe:5e:92:a1:52:cd:d0:b4:d2:f7:e2:
12:99:e5:3c:e1:ab:b8:97:97:40:28:fd:b9:ed:e3:
ab:65:e4:ec:65:4a:f6:2a:70:3f:6e:ba:d4:4b:1d:
b2:b8:bb:50:c8:8d:64:a5:94:87:5e:3a:c1:d9:10:
c9:a0:84:9d:41:04:41:23:5e:4b:8a:72:6f:b0:ab:
8d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:92:95:9B:25:FB:F9:EB:DC:93:39:BA:9C:7D:35:55:72:69:69:AB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141989
sbgp-ipAddrBlock: critical
IPv4:
203.8.200.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:db:27:84:9b:74:7e:1e:3c:e6:a4:76:46:bb:54:03:bd:c6:
4e:2f:0a:7d:94:b1:88:eb:c3:c9:2f:81:83:77:ca:e6:a6:2d:
8a:c6:40:dd:2c:35:0d:9d:17:f8:55:84:96:a1:8b:18:30:4e:
2a:45:0a:29:82:b5:3a:08:b3:f0:63:1c:00:ea:56:e0:5b:67:
6a:5a:36:3a:16:3a:18:d4:dc:da:1f:07:cc:76:37:d8:93:f6:
fc:6d:24:9c:3d:4c:f8:5f:11:a1:78:31:f4:8b:6d:3a:97:ab:
b8:a9:62:33:45:34:23:59:0c:64:93:e9:96:67:43:50:39:70:
57:51:2d:78:1a:cc:5f:24:c7:11:9c:51:76:3e:ca:86:d9:2a:
66:30:fb:ad:ca:2e:a6:96:1b:61:1c:77:e8:44:0c:2e:1a:cd:
cb:95:bc:54:5e:d0:ff:2d:5b:32:92:1c:fe:ba:fe:06:17:b4:
f2:e9:67:63:0c:aa:9b:20:28:cf:1b:85:b2:9c:f5:ad:db:49:
b8:af:d1:44:c8:c6:bf:7a:a2:53:30:6c:3f:9d:43:37:5f:44:
59:c0:75:e1:1a:09:bd:20:3b:d0:63:33:af:87:e7:6e:c8:b9:
b0:bf:48:3b:ac:d9:a8:33:84:7d:3e:48:ff:a3:ca:08:95:86:
d0:45:4b:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:34 2024 by rpki-client on console-ams.rpki-client.org