Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer
File: QgHlq32GvGha8R8C3mhAUVttgFg.cer (raw, json)
Hash identifier: 6JUP6XdEzMN8CmL0NyVu5gwCFnJWp4ixlXaJ0p7gJ9U=
Subject key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D502
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Dec 2023 14:37:19 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 38547
IP: 2404:f400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120066 (0x1d502)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 29 14:37:19 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c9:62:21:bc:3e:a5:6a:de:ba:43:0e:78:d4:
87:74:b6:69:62:da:12:d8:3c:3e:38:04:05:2a:6f:
4d:02:1d:5a:80:70:20:9c:ba:6e:bb:26:4f:8a:b2:
68:54:b3:99:40:92:6b:98:4d:ce:ea:17:fc:62:33:
6d:46:43:1a:d9:1e:9f:95:0e:74:aa:29:d3:54:84:
a6:b4:80:5c:ea:54:7b:a7:2b:0a:72:2b:65:c7:f5:
e3:43:cf:6f:6f:d8:bb:e8:76:7c:69:28:43:6b:fb:
3d:f8:38:8f:bc:6b:67:06:d1:04:db:44:4a:92:ca:
7e:d0:1e:ad:d7:02:24:33:b4:7a:28:6d:25:61:ed:
5f:57:37:bc:39:c1:0f:41:f2:11:7a:3a:91:4e:d5:
1e:62:1d:09:22:db:b3:3c:bb:76:bc:cc:c6:9e:d1:
da:ae:84:2b:55:46:6f:3b:de:a5:68:20:22:86:55:
84:6a:29:f7:74:7c:f1:5d:dd:75:0d:6b:a2:dd:5d:
f4:0b:fb:a0:68:5c:48:df:1e:ac:07:af:3a:9b:0c:
9a:6f:da:08:6d:06:86:37:00:f2:83:9e:ad:6b:98:
9d:fd:fa:51:60:20:cd:0d:87:54:de:b8:4f:e5:42:
7c:86:2b:7b:be:9c:25:da:f2:68:e6:03:7c:8a:6a:
66:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38547
sbgp-ipAddrBlock: critical
IPv6:
2404:f400::/32
Signature Algorithm: sha256WithRSAEncryption
b0:79:42:1d:48:e2:40:ea:87:62:5f:bc:a3:35:28:27:7c:77:
3e:34:35:d4:74:d8:cd:89:30:e1:9d:8c:14:f4:f5:bb:6b:45:
48:7c:db:8c:fb:61:5b:f5:12:08:57:3e:23:8c:2e:3f:69:4b:
07:14:39:52:a2:13:2c:59:71:a7:95:50:d8:30:2a:68:e1:65:
b1:ca:95:c1:02:c1:73:b2:74:02:1e:a4:5a:df:14:37:10:b6:
8f:a9:24:2a:ec:56:05:2a:20:14:59:58:2a:4a:58:f5:89:2b:
d8:bf:cf:8f:a8:c9:3f:f1:30:d9:f4:0c:fa:e2:df:f5:54:06:
a6:67:b8:af:96:49:84:5a:8a:91:30:d0:80:43:26:80:5c:00:
e0:48:3d:10:db:af:dd:a4:5c:f0:a4:94:2f:66:68:50:4b:08:
45:15:bf:e0:ac:1c:fd:00:e7:8d:2d:53:cf:f4:c0:f5:ef:aa:
dd:46:b0:c3:fa:13:79:c4:40:7a:30:d6:a2:20:8b:76:6e:6d:
e5:fd:23:5f:d4:49:3f:ec:93:1e:47:52:06:d2:00:13:ce:19:
8d:5d:f9:47:0f:9a:81:62:da:5e:4a:93:58:53:24:35:48:e3:
3b:b8:a1:ed:30:f7:bd:7e:0f:31:f5:f3:9c:ba:54:1b:86:0c:
49:bd:e9:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:05:05 2024 by rpki-client on console-ams.rpki-client.org