Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer
File: Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer (raw, json)
Hash identifier: C1JI13EopXzSlaSU2WuxMFwqFzDsWbtXRDigZX0JVr4=
Subject key identifier: 43:E1:E8:C4:26:1C:E0:7D:4F:8E:4C:FB:7A:3F:83:3F:BB:46:B8:8C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021A40
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Nov 2024 12:41:06 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 59268
IP: 49.128.64.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137792 (0x21a40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 8 12:41:06 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9118D0F/serialNumber=43E1E8C4261CE07D4F8E4CFB7A3F833FBB46B88C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:af:d1:b4:26:c2:15:47:72:d4:b1:9a:6e:7e:
5f:46:ed:d5:d8:5a:79:8e:5f:22:b2:54:6e:32:2d:
5c:8a:4e:e9:4a:e6:b1:ab:aa:07:6e:39:d6:f5:6f:
c9:c9:72:71:f4:f0:d1:3c:14:cf:6a:44:88:92:13:
b4:e7:aa:88:3d:1a:e7:2d:ca:d4:a6:24:44:5f:87:
ec:a3:ec:12:3e:e3:b4:bc:94:52:af:f7:b7:9f:de:
0a:48:a6:dd:9f:e4:72:d4:a0:87:b3:bf:94:d0:c3:
73:89:a4:35:b6:7b:e5:8f:6b:74:7f:49:89:bb:24:
84:9e:ff:de:2f:bc:f0:bf:d3:ae:8b:cb:f0:c4:0c:
fd:ba:23:80:b3:07:3e:72:9a:a7:77:ba:8d:da:13:
46:df:b2:93:47:fb:77:6e:59:f3:7b:7a:5b:9f:94:
79:82:21:86:da:b9:d0:5b:06:8a:74:cb:54:5f:bd:
bc:f2:12:6b:75:c4:6a:3f:15:23:ef:2c:6c:68:03:
c1:23:22:ef:25:0d:ef:22:fd:07:6c:97:8f:bd:9a:
4b:dc:59:5b:5a:f0:64:98:04:6c:9b:24:a6:7e:29:
f6:d7:94:e8:80:67:45:e4:34:21:32:0d:8f:e3:09:
40:b9:15:b0:b6:52:de:86:25:42:15:22:31:19:7a:
22:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E1:E8:C4:26:1C:E0:7D:4F:8E:4C:FB:7A:3F:83:3F:BB:46:B8:8C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59268
sbgp-ipAddrBlock: critical
IPv4:
49.128.64.0/19
Signature Algorithm: sha256WithRSAEncryption
28:d7:ae:42:d9:cb:26:f9:95:00:a1:21:47:ea:88:3f:64:46:
11:f0:a4:3a:74:af:51:23:33:ab:83:99:95:4b:01:59:f0:9a:
46:2c:f0:de:8e:36:69:82:b0:18:65:6f:0b:b8:59:dd:60:97:
54:10:b9:0c:90:64:9e:99:87:38:d9:8e:f2:98:59:92:57:f4:
af:9a:45:3a:ae:60:65:79:d6:45:4a:12:4d:1f:1d:dc:82:96:
d8:73:4b:b1:8c:6c:da:35:e6:93:60:f4:4d:47:4f:e2:23:e6:
24:03:e9:b1:d6:0f:e2:dd:48:24:70:26:a0:8a:ef:2a:b4:7c:
87:11:9f:ce:f9:66:d2:d2:7d:4f:b8:5f:a9:0d:2b:6c:c8:e9:
ca:80:86:a9:1c:92:46:24:72:bd:00:a0:0e:40:de:94:c9:6c:
85:13:9e:86:93:03:d0:a5:a2:14:98:88:e7:5e:8d:67:72:3c:
5b:55:55:a4:c2:a0:78:bd:59:20:c8:c8:88:62:c1:79:5b:ed:
f0:23:9a:95:26:4c:fb:05:39:50:7e:07:a8:4c:31:b1:0c:1a:
df:59:59:ac:ea:45:86:c7:d5:bd:9e:89:e7:c6:ce:19:5d:c6:
29:ae:c5:eb:a6:a7:c6:3c:37:61:a9:c7:bf:1e:17:15:34:cd:
24:c9:87:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:15:23 2024 by rpki-client on console-ams.rpki-client.org