Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer
File: QVO6SZpE5-wQQcYO9_NprGI1eqg.cer (raw, json)
Hash identifier: SeNkFktIE7Yf3wehzaJHWbTyUMPB+O3Ys/G1/iW7stw=
Subject key identifier: 41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CD30
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Nov 2023 01:27:47 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 152125
IP: 36.50.31.0/24
IP: 2001:df3:3340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118064 (0x1cd30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 28 01:27:47 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91423C1/serialNumber=4153BA499A44E7EC1041C60EF7F369AC62357AA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a0:06:30:97:2e:a2:1b:ae:5e:c6:fa:f6:00:
45:ad:76:68:ce:08:f8:56:6e:1d:6f:b0:4e:03:c3:
0f:0e:40:58:00:fa:df:49:35:2b:1d:fc:98:04:87:
5c:51:99:bb:51:e3:43:80:db:2c:a9:4b:f0:5f:f6:
db:d7:27:86:6e:ae:ab:18:e3:2a:97:42:de:87:90:
b2:02:c1:43:9b:a1:06:29:f1:fc:e5:65:73:d8:a0:
50:03:cf:29:ac:d6:5b:41:80:95:91:7f:5c:f6:c3:
47:68:a5:34:ad:1c:af:7b:b6:e2:bf:f3:c8:fa:9b:
76:92:50:a9:08:51:cf:f2:16:19:e7:30:c8:1f:60:
98:b3:91:d7:c4:e6:51:4e:cd:e3:78:84:60:21:5b:
4c:d6:55:df:e1:20:26:22:83:02:55:5c:c3:bb:c0:
71:11:a2:5b:87:d5:6a:3e:73:61:83:55:02:c4:38:
a3:15:26:88:eb:86:f4:26:d9:fc:7a:27:1b:9d:e4:
3f:00:3c:87:0e:ed:8b:92:11:cb:bb:e4:1a:42:77:
5d:3c:f8:85:01:3a:ab:fa:39:dd:78:e5:69:0d:d3:
4d:39:36:fd:5b:14:eb:3d:e7:e4:4d:d5:e7:87:c6:
21:6f:9e:7f:db:92:be:37:13:c3:53:99:3b:ad:5f:
27:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152125
sbgp-ipAddrBlock: critical
IPv4:
36.50.31.0/24
IPv6:
2001:df3:3340::/48
Signature Algorithm: sha256WithRSAEncryption
0a:2e:ce:ad:a0:65:d1:c3:b9:7e:80:17:32:af:4f:5e:3d:c9:
0c:f3:11:54:6f:e0:8b:d0:9b:6e:bc:44:67:d9:dc:42:e8:02:
e8:44:e8:1d:f3:a5:31:82:28:a7:e6:ea:17:88:c1:f1:27:7e:
56:b8:cd:67:78:5d:b4:65:79:cc:6f:e9:3d:d1:0d:45:bb:b8:
9c:e7:f1:7b:68:99:6c:bc:7f:9b:cd:f0:c2:9c:31:45:3e:fd:
56:23:f8:7e:3d:37:02:68:0d:3a:c8:00:d3:14:15:e0:2e:7b:
6e:cd:5a:87:bb:9e:9c:72:34:e1:30:68:c8:cc:c9:ef:a0:e3:
21:3b:41:fc:a9:35:89:4f:0c:04:b6:03:12:b8:15:94:d0:f7:
e4:b4:9c:c5:b4:32:3c:0f:96:11:83:30:c6:1d:fa:1d:bd:2e:
91:37:76:8b:90:32:33:47:8d:b9:ea:96:a8:d8:08:95:3e:d0:
ee:f8:eb:1c:d9:aa:36:42:bf:11:76:62:17:da:9e:a3:e7:d5:
95:00:42:a1:b2:50:88:9d:dc:38:28:04:43:35:24:28:ee:9d:
dd:d8:92:58:d7:37:92:4a:ef:06:39:62:e8:3a:35:37:ea:aa:
69:cc:a9:88:6b:a2:c9:f2:50:fc:32:2c:5c:00:c5:1c:2c:67:
28:73:a2:46
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:29 2024 by rpki-client on console-fra.rpki-client.org