Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer
File: R4tJDpOd3d8hrKx4y5MZinuBRIU.cer (raw, json)
Hash identifier: 3OvUKXLLQ4BMWNz7nrhkT4Cip3sXZK0/nmjmuLYi8hA=
Subject key identifier: 47:8B:49:0E:93:9D:DD:DF:21:AC:AC:78:CB:93:19:8A:7B:81:44:85
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02165E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 26 Oct 2024 04:12:14 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 140323
IP: 2001:df4:30c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136798 (0x2165e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Oct 26 04:12:14 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91427E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:30:1c:10:57:dc:53:75:3d:27:5f:6a:3f:46:
d7:77:a9:65:ae:ea:57:d6:3c:a3:9c:4a:20:26:f7:
e3:81:04:ca:95:fb:56:8b:96:22:a9:ad:41:42:56:
34:fe:76:e7:7b:a8:c5:ef:3e:9e:0e:c1:28:75:15:
07:7b:7e:8b:fd:1f:61:95:3e:08:ee:52:c4:b7:23:
fb:e0:46:8e:85:e7:71:66:a8:75:87:01:2d:11:f5:
82:d4:c4:d0:af:17:e2:22:3f:63:dd:e2:8d:3f:5f:
08:30:22:4f:41:45:e4:cf:c1:92:e4:ab:01:a6:ce:
75:e1:2e:4c:52:70:c4:58:eb:b6:b3:15:b5:dd:dc:
57:3d:d0:e7:23:e8:5f:93:3c:81:63:90:55:5b:82:
5a:5b:7b:8c:54:c3:b8:95:cf:1f:74:47:82:b0:77:
9e:8c:1f:68:12:16:26:62:2e:b3:a2:55:01:03:ca:
6b:59:85:2e:e5:bb:ff:a5:e2:e3:ec:3f:67:07:21:
ad:58:26:9f:25:db:30:7f:f3:7c:68:6f:aa:2b:7c:
8b:ad:27:bd:49:ed:9b:24:72:aa:a8:33:f4:fc:75:
c2:37:2f:8f:02:d8:77:86:ec:1b:8a:67:c5:f0:a6:
8b:c3:93:be:25:17:77:a9:1d:92:b9:8f:f3:1b:71:
8e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:8B:49:0E:93:9D:DD:DF:21:AC:AC:78:CB:93:19:8A:7B:81:44:85
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140323
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:30c0::/48
Signature Algorithm: sha256WithRSAEncryption
37:ea:6b:20:7f:0b:22:18:63:f9:29:01:49:64:2c:b4:9d:c7:
0a:04:d6:b2:57:f3:a8:3a:bc:94:50:7b:82:9c:b5:7f:f9:0c:
69:30:8b:e9:70:fa:04:e9:da:8a:cf:bf:8a:b3:8d:b1:0b:2c:
bd:57:99:11:6d:20:59:0d:10:f8:7d:0c:c4:e1:29:09:be:5b:
50:c9:f0:40:f4:d9:f1:dc:74:ba:ee:89:7f:f4:9a:7c:7e:5b:
10:1f:a2:dd:c8:56:75:b1:5b:c7:fa:ed:e0:e6:67:d8:d8:07:
cb:60:34:71:c5:10:e5:5a:af:bc:53:a5:98:09:95:cf:42:e3:
5d:82:a3:91:97:ee:bb:41:67:a4:82:46:50:31:7a:8b:a1:d4:
1c:2d:89:24:44:81:b6:06:22:ab:58:5c:9c:4f:12:76:11:e5:
68:50:ac:eb:7a:4e:b9:ec:2a:39:18:c6:07:90:48:62:b2:e7:
79:08:80:91:9e:a5:a8:90:1a:ce:3f:0f:a2:45:eb:65:d9:fa:
01:c9:3a:ac:1c:98:c4:a2:0b:ab:7e:75:c3:44:df:13:49:6c:
ee:2f:cd:e8:79:48:f2:e6:b2:15:fa:c3:5d:ca:58:6b:25:6a:
d3:2c:b1:b8:85:53:02:9d:50:e3:5b:48:b6:51:22:0b:c9:72:
c2:1d:e8:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:07 2025 by rpki-client