Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer
File: PMd5DiA3Zl70liuB2tL9B-1G-LI.cer (raw, json)
Hash identifier: VcHUsWxOuFOlFMYaCEBMoLmW9GQnK/vsPt6BXC3Mhyw=
Subject key identifier: 3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020598
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 07 Aug 2024 09:32:59 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 131108
IP: 2401:b860::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 31 Oct 2024 13:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132504 (0x20598)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 7 09:32:59 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9163EB9/serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3e:f9:70:d2:c0:2a:f9:39:c0:78:7a:cd:b8:
e4:a2:cc:26:59:4e:bf:97:2e:f9:e1:4f:82:74:c6:
0a:fd:bc:89:0a:31:7b:57:58:f8:b2:3c:ab:7a:13:
a7:fd:6a:4e:7f:64:3a:b5:c9:a8:df:af:2e:80:ce:
5a:ea:e4:90:bd:3e:2c:c1:47:cc:5a:0a:cc:8f:84:
f8:7f:d5:27:67:25:94:d9:9a:06:00:4f:e7:09:f8:
67:7b:70:a8:b7:07:a4:32:dd:79:90:ac:03:b7:16:
ca:cf:d3:7c:bf:3b:81:4a:29:71:c4:ef:33:57:1a:
1a:97:c5:9f:ff:23:95:96:6b:cc:85:8b:f5:80:79:
36:24:12:bb:9f:aa:99:48:ac:fd:21:ca:e7:7e:c2:
60:be:cf:0d:39:9c:4d:4c:cd:50:50:fe:7a:4f:cb:
1c:33:07:dd:f0:99:ef:19:e0:47:85:67:e4:4f:3d:
4c:e5:a1:06:2c:8e:e4:3f:04:76:1a:6c:4e:4f:3a:
3a:6e:ac:77:5a:9f:7a:11:43:34:ff:e7:ed:c7:d1:
c1:19:b9:93:b9:d9:81:4f:bc:48:12:63:85:e6:87:
8c:0e:8c:25:d1:3f:89:7f:0c:c8:ec:c5:49:7c:01:
52:fe:e0:04:01:59:82:0b:6b:06:fd:22:2b:2e:58:
14:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131108
sbgp-ipAddrBlock: critical
IPv6:
2401:b860::/32
Signature Algorithm: sha256WithRSAEncryption
cf:25:44:6d:9e:c1:f1:d7:ea:bf:4c:3e:ed:ec:14:93:21:51:
6d:59:17:e4:07:48:7c:50:7d:1e:38:3a:c8:62:c8:81:96:7e:
e0:c0:e4:51:a4:79:34:bd:54:c8:cd:4e:94:4f:a3:57:d0:a6:
a1:fa:30:e8:58:db:cc:4e:f5:24:05:9e:5f:bb:b0:51:fe:df:
c9:17:6e:1d:d6:c8:7e:5e:a1:40:7b:05:a1:a7:07:8d:c8:a9:
35:b8:05:31:8b:82:a9:e7:4b:fe:d0:7a:40:b2:97:0f:12:33:
0d:16:9e:46:3e:31:a4:fa:5f:99:da:82:09:a1:d1:7f:fa:d3:
4a:9b:00:9d:ab:04:01:c5:5d:45:31:13:90:c0:15:f1:69:65:
25:59:4e:3b:59:ad:97:9b:c2:b3:cd:22:12:68:77:8e:48:d4:
9c:7f:b0:fa:ac:ab:1b:7b:45:99:43:6a:db:0c:3d:a6:d5:85:
8c:03:d1:55:d6:a9:78:1f:c0:27:fc:56:40:58:53:a4:5c:ea:
1d:ed:d2:1b:e1:2f:5f:b0:16:14:ce:5f:ce:57:dd:7e:b2:7b:
87:f9:0e:01:54:6f:fe:36:b8:58:0c:44:30:36:68:93:d9:42:
d7:48:cf:75:92:f2:d1:3d:af:85:25:94:1c:d5:29:fc:8d:ab:
b6:c4:ca:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 13:56:33 2024 by rpki-client on console-fra.rpki-client.org