Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JHtdbmLkpJ6d9Nwkwx7KbtekOyg.cer
File: JHtdbmLkpJ6d9Nwkwx7KbtekOyg.cer (raw, json)
Hash identifier: 8DzFmd16mEIvugH4F6k2AUo0KyV1YikfUPmwEK8OEcE=
Subject key identifier: 24:7B:5D:6E:62:E4:A4:9E:9D:F4:DC:24:C3:1E:CA:6E:D7:A4:3B:28
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D23F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C54A1/7402D8D89B6011EE86EE1D10C4F9AE02/JHtdbmLkpJ6d9Nwkwx7KbtekOyg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C54A1/7402D8D89B6011EE86EE1D10C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Dec 2023 15:41:53 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 152141
IP: 210.79.178.0/23
IP: 2001:df3:39c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:15:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119359 (0x1d23f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 15 15:41:53 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91C54A1/serialNumber=247B5D6E62E4A49E9DF4DC24C31ECA6ED7A43B28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9d:2b:0e:fe:96:18:a2:5a:b4:b3:f5:7c:65:
68:00:58:04:44:5c:67:e6:14:85:a6:34:cb:48:8f:
13:5d:51:4f:61:c5:08:8e:c3:fb:60:df:50:f3:4d:
11:a1:50:3e:4a:6d:5f:33:6e:6b:a8:69:17:ad:b6:
8c:7a:c2:91:67:a4:10:8a:c7:3d:b8:8a:66:05:c1:
1e:7b:05:40:5b:99:fe:57:c2:84:e1:58:db:12:76:
bc:69:84:80:f8:8d:94:44:dd:4e:85:2e:23:0d:09:
98:12:6f:af:04:01:55:8e:8f:b2:d2:58:2f:13:fa:
62:b5:1d:d8:b0:60:20:dd:72:96:53:e6:3f:a3:fa:
84:62:2d:e1:cd:54:c5:b0:87:3d:7b:d7:b9:21:66:
6e:76:4b:4a:b1:a5:9d:8e:63:ba:14:c4:c6:e9:06:
ca:b2:92:7d:b9:9d:18:02:d3:4e:62:b8:de:3b:d3:
55:22:6b:be:b3:32:13:86:ca:01:86:33:71:b6:63:
99:25:ff:33:cd:5b:ce:fb:11:b7:c1:d1:76:40:4d:
67:f3:2b:c9:c4:7f:13:18:76:fc:46:39:7b:45:57:
fe:fd:d7:16:a6:6e:56:b2:55:5b:3b:59:bd:0b:04:
2f:a2:79:59:19:5a:11:1e:88:bf:c2:ab:f6:de:b3:
bf:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:7B:5D:6E:62:E4:A4:9E:9D:F4:DC:24:C3:1E:CA:6E:D7:A4:3B:28
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C54A1/7402D8D89B6011EE86EE1D10C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C54A1/7402D8D89B6011EE86EE1D10C4F9AE02/JHtdbmLkpJ6d9Nwkwx7KbtekOyg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152141
sbgp-ipAddrBlock: critical
IPv4:
210.79.178.0/23
IPv6:
2001:df3:39c0::/48
Signature Algorithm: sha256WithRSAEncryption
0c:15:a6:e8:e9:77:f8:24:57:5a:e5:8f:d9:a4:46:8c:86:b1:
c8:f4:68:87:90:f0:d3:75:fd:fa:7f:d2:a1:d2:bf:51:fb:ee:
f8:ea:36:af:3a:c3:8f:e4:36:45:2f:72:c1:f8:34:89:70:86:
56:bc:40:98:40:a0:b7:99:00:c2:d0:b3:6f:ac:ae:ba:9e:99:
c8:62:53:ba:39:02:b8:9c:14:04:9c:3e:18:3f:fc:e8:96:e0:
13:56:df:60:42:52:81:d6:d0:f9:c6:42:4d:21:ae:a6:84:5e:
1a:74:43:98:c4:dc:a4:7f:1d:b9:50:5b:93:38:ec:f9:5e:50:
91:ba:48:78:d8:74:2e:4c:05:e4:8b:ee:62:7f:5e:3a:96:6e:
c6:cd:cd:42:2e:3d:35:0a:c7:c4:97:72:2a:ab:03:93:76:2f:
60:33:69:89:9e:e8:d8:9f:28:56:92:f9:c5:36:04:5c:f0:cc:
71:30:f7:9a:f0:86:d7:62:a1:6a:63:0a:26:82:d8:06:a2:04:
e8:ee:2b:7c:ab:89:93:3c:b7:51:e3:d2:73:03:07:ec:05:6f:
4d:41:9b:ef:7a:0b:47:d8:2c:16:9e:bd:b5:5b:49:df:b3:f5:
41:19:56:c6:dd:28:f5:d3:22:4a:ae:e4:13:bb:0e:c2:25:91:
57:f9:cb:0e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 01:06:58 2024 by rpki-client on console-fra.rpki-client.org