Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIpYNjdV8YvqFYk5g7Xmk23Soh8.cer
File: RIpYNjdV8YvqFYk5g7Xmk23Soh8.cer (raw, json)
Hash identifier: 1YWjFvoLiHRmPxSboNvwGApoUcmxKmA0hrzzhM2i7oE=
Subject key identifier: 44:8A:58:36:37:55:F1:8B:EA:15:89:39:83:B5:E6:93:6D:D2:A2:1F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DF06
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9171D3B/B2499858313811E99DE3266FC4F9AE02/RIpYNjdV8YvqFYk5g7Xmk23Soh8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9171D3B/B2499858313811E99DE3266FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 15 Feb 2024 15:42:20 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 136765
IP: 2404:5a40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 21:47:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122630 (0x1df06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 15 15:42:20 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9171D3B/serialNumber=448A58363755F18BEA15893983B5E6936DD2A21F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:79:6b:63:c0:25:e6:66:3a:45:5e:57:64:04:
6c:a6:10:26:9d:8a:12:1f:ed:56:5c:d5:9a:38:18:
d5:58:4f:59:6e:68:50:7e:b3:76:67:63:3f:2e:b0:
15:92:e3:9f:e0:4b:75:81:3b:cf:1c:78:8d:f0:ff:
6e:ac:f3:af:85:1b:e9:92:6b:82:e0:e7:be:07:1a:
30:b3:68:0a:a1:7c:f4:e4:d4:2f:d1:cc:65:32:f5:
1a:b9:dd:59:e8:f3:62:ee:0d:1d:e2:30:07:b4:75:
f3:6f:c9:e1:65:b2:2b:08:2a:51:a1:14:6e:66:fa:
cc:1a:b0:89:0a:67:1f:21:2a:f6:c4:28:ca:3c:b1:
b8:49:2d:de:89:6a:ee:79:0b:96:68:de:ff:cf:9f:
f9:50:b3:ed:fa:08:9d:d7:8b:94:6b:1e:51:e4:07:
93:32:01:a1:66:eb:8d:88:f7:02:da:3a:67:50:f3:
2e:e2:6b:b3:ab:bb:4c:75:ce:70:2a:8d:44:47:75:
99:cd:80:da:52:3d:77:f0:34:bb:99:a0:b9:fa:73:
33:fc:3e:fd:94:3a:c3:a2:c9:d6:54:aa:0e:fe:0a:
b8:dd:9a:b0:28:1b:d8:d0:cd:56:e7:7a:7f:67:98:
62:b4:cd:b6:f8:7a:24:72:1d:ec:6e:ea:d3:ed:f7:
52:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:8A:58:36:37:55:F1:8B:EA:15:89:39:83:B5:E6:93:6D:D2:A2:1F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9171D3B/B2499858313811E99DE3266FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9171D3B/B2499858313811E99DE3266FC4F9AE02/RIpYNjdV8YvqFYk5g7Xmk23Soh8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136765
sbgp-ipAddrBlock: critical
IPv6:
2404:5a40::/32
Signature Algorithm: sha256WithRSAEncryption
24:c1:e5:53:b9:8d:36:1f:d5:a8:e9:32:bc:b3:7a:a6:66:04:
14:b5:7c:15:93:30:fd:43:91:02:93:46:e2:77:aa:e1:f6:99:
2b:87:13:9f:ac:1d:6e:68:ca:c1:35:b5:b7:20:9d:94:c9:81:
6a:00:18:f7:76:da:c1:9b:8c:f6:82:be:69:59:ae:11:81:b8:
b9:88:e4:e6:00:4a:08:57:cd:f3:9b:21:c2:bc:a1:40:16:0c:
31:c9:a3:82:66:af:5c:dd:f7:16:2a:93:a1:ae:92:40:44:e9:
51:8d:34:85:65:27:92:38:f9:68:aa:5d:7f:e5:99:6e:22:31:
e6:4c:9f:d3:34:18:68:35:90:c1:06:d6:7e:b2:07:1c:03:71:
b8:10:da:52:ee:f9:72:ac:f6:53:86:2e:b4:28:6a:c1:ae:0b:
90:74:fd:2b:48:ee:ad:d8:94:73:81:86:d2:14:a2:f1:f1:34:
43:84:0b:6b:5f:16:c0:ca:04:eb:90:7a:54:b6:fc:e4:a4:c0:
22:1e:00:b1:c0:a8:9d:2a:79:e2:f0:0a:87:87:de:a6:82:8c:
6e:df:64:bd:16:f9:36:83:f7:92:fc:11:f4:0d:f8:8b:d7:53:
03:bf:6e:40:36:23:ab:35:18:6e:91:b8:8e:43:65:f4:ae:b7:
b2:a1:11:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 22:44:54 2024 by rpki-client on console-fra.rpki-client.org