Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer
File: Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer (raw, json)
Hash identifier: kOnYa7HD1qX80f3babzJMMfM60f7CTJl8W/u1CO5plE=
Subject key identifier: 43:E1:E8:C4:26:1C:E0:7D:4F:8E:4C:FB:7A:3F:83:3F:BB:46:B8:8C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C914
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 06 Nov 2023 12:36:50 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 59268
IP: 49.128.64.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 03:19:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117012 (0x1c914)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 12:36:50 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9118D0F/serialNumber=43E1E8C4261CE07D4F8E4CFB7A3F833FBB46B88C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:af:d1:b4:26:c2:15:47:72:d4:b1:9a:6e:7e:
5f:46:ed:d5:d8:5a:79:8e:5f:22:b2:54:6e:32:2d:
5c:8a:4e:e9:4a:e6:b1:ab:aa:07:6e:39:d6:f5:6f:
c9:c9:72:71:f4:f0:d1:3c:14:cf:6a:44:88:92:13:
b4:e7:aa:88:3d:1a:e7:2d:ca:d4:a6:24:44:5f:87:
ec:a3:ec:12:3e:e3:b4:bc:94:52:af:f7:b7:9f:de:
0a:48:a6:dd:9f:e4:72:d4:a0:87:b3:bf:94:d0:c3:
73:89:a4:35:b6:7b:e5:8f:6b:74:7f:49:89:bb:24:
84:9e:ff:de:2f:bc:f0:bf:d3:ae:8b:cb:f0:c4:0c:
fd:ba:23:80:b3:07:3e:72:9a:a7:77:ba:8d:da:13:
46:df:b2:93:47:fb:77:6e:59:f3:7b:7a:5b:9f:94:
79:82:21:86:da:b9:d0:5b:06:8a:74:cb:54:5f:bd:
bc:f2:12:6b:75:c4:6a:3f:15:23:ef:2c:6c:68:03:
c1:23:22:ef:25:0d:ef:22:fd:07:6c:97:8f:bd:9a:
4b:dc:59:5b:5a:f0:64:98:04:6c:9b:24:a6:7e:29:
f6:d7:94:e8:80:67:45:e4:34:21:32:0d:8f:e3:09:
40:b9:15:b0:b6:52:de:86:25:42:15:22:31:19:7a:
22:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E1:E8:C4:26:1C:E0:7D:4F:8E:4C:FB:7A:3F:83:3F:BB:46:B8:8C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59268
sbgp-ipAddrBlock: critical
IPv4:
49.128.64.0/19
Signature Algorithm: sha256WithRSAEncryption
29:29:77:66:07:b2:93:17:10:34:56:5a:bc:68:78:7f:32:18:
60:b0:3f:a9:d5:f8:5e:22:ec:06:d7:65:d4:49:15:0c:be:9c:
c7:6d:6a:d0:c9:06:7a:07:7b:26:2c:01:4e:ae:c3:8b:ca:03:
ab:28:0d:af:9d:7a:c2:da:d7:f2:e3:55:d6:9d:5f:65:1f:1d:
24:ff:f1:0b:cc:51:c6:f8:96:35:45:75:b6:e9:b8:38:5e:b0:
cc:e4:1e:d0:69:12:9f:cd:49:85:30:88:a4:67:c3:69:61:d8:
59:d7:25:8b:27:40:d0:b0:50:4a:cb:fc:22:42:95:01:44:87:
b7:05:d7:09:a0:75:18:ee:98:4e:56:1f:b9:a1:d9:d3:4c:b4:
9e:1c:4b:b3:26:7e:58:8b:56:45:58:42:4e:45:87:5e:3d:6f:
e7:b1:45:52:a7:ef:8b:9e:05:b7:34:0a:46:3f:6a:42:8a:5a:
4d:57:c0:cb:9b:26:b0:62:26:c2:af:87:70:f8:11:b4:93:81:
ce:bd:2b:dd:aa:d9:a0:4c:55:5f:c1:c5:f9:6f:36:c8:8f:e5:
64:b4:03:4c:9e:96:db:df:a1:27:72:db:d5:73:2b:d3:74:68:
c6:12:66:e5:f9:a2:33:21:50:f3:21:3c:27:b4:2b:36:45:a5:
c8:a5:ed:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 03:48:22 2024 by rpki-client on console-fra.rpki-client.org