Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIQw6riOTjePtQBa-uXKucAAeho.cer
File: VIQw6riOTjePtQBa-uXKucAAeho.cer (raw, json)
Hash identifier: Ds+jW3TQrJJOD5iqAF6qZf4V+dpx9P7zlHi70FwcWQA=
Subject key identifier: 54:84:30:EA:B8:8E:4E:37:8F:B5:00:5A:FA:E5:CA:B9:C0:00:7A:1A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021544
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/VIQw6riOTjePtQBa-uXKucAAeho.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 22 Oct 2024 17:46:02 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 153371
IP: 2401:ce20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 02 Dec 2024 20:56:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136516 (0x21544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 22 17:46:02 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9190818/serialNumber=548430EAB88E4E378FB5005AFAE5CAB9C0007A1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1e:58:be:17:6c:d1:1c:8a:18:f1:58:c3:0d:
99:2c:3b:11:58:55:e9:32:7b:8a:4b:18:15:eb:4b:
91:d7:cd:80:04:b1:fa:ed:c7:a3:49:ac:9d:a7:d5:
3a:4d:50:f7:aa:c4:93:d6:88:5b:b1:84:80:c6:3c:
01:ab:f1:a6:5c:74:a6:c6:65:e1:4e:16:2b:f0:c7:
80:25:79:40:61:79:05:22:f5:ff:ce:6c:57:aa:cb:
3b:43:97:81:5d:55:47:81:2e:25:e5:07:0e:29:64:
c1:da:3a:e5:46:c6:d3:b4:49:69:15:86:e3:c4:fb:
75:da:a2:9a:63:5f:05:7b:e2:0e:88:d5:3c:9a:06:
b0:d2:5c:ba:18:bf:67:55:5c:4a:0b:a8:18:78:3a:
fb:c0:9c:f9:ba:d4:bd:79:92:14:62:d0:8e:ae:a5:
a7:63:3b:48:60:cb:5a:82:ad:19:ee:7f:4d:c8:6c:
9e:cd:b0:0a:29:83:e3:32:e0:a3:b2:48:46:0f:e5:
68:59:d7:df:be:80:f5:fe:a0:2d:84:d4:34:05:31:
eb:d4:30:ce:e7:64:51:61:1c:b3:07:22:dc:2c:55:
6e:4c:65:d1:57:bd:b9:99:15:6e:d6:01:70:fd:7f:
97:12:18:f3:0f:ba:00:fe:54:ab:e9:48:d7:51:c2:
57:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:84:30:EA:B8:8E:4E:37:8F:B5:00:5A:FA:E5:CA:B9:C0:00:7A:1A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/VIQw6riOTjePtQBa-uXKucAAeho.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153371
sbgp-ipAddrBlock: critical
IPv6:
2401:ce20::/32
Signature Algorithm: sha256WithRSAEncryption
13:23:73:89:c7:2f:7b:80:8f:ab:c4:19:27:af:97:e6:04:41:
23:2c:b0:83:c8:d9:00:d1:6c:a5:49:85:a6:e6:b5:97:02:26:
d3:f9:6c:b0:d3:30:3d:43:be:f5:a8:15:a3:b1:75:00:0a:26:
3a:37:3c:03:f6:ec:4e:41:c5:da:60:1f:73:9e:36:fd:b8:5d:
92:20:c8:7b:84:25:ff:5a:11:39:b5:71:4e:a7:7e:1e:e1:28:
98:71:79:fd:5f:de:b4:26:77:ac:ae:e8:52:26:5f:2c:55:94:
7d:a0:90:ac:c4:81:c1:10:c7:a8:0b:32:20:ea:de:90:fe:94:
6c:e6:17:78:a8:3c:13:d2:90:ba:7f:6e:cf:85:f0:17:22:72:
31:16:bf:d3:2a:04:b5:ee:2a:45:a4:53:ec:d1:f1:18:1e:54:
8c:32:93:66:14:6c:73:d8:e6:97:a6:e5:f8:bb:09:4a:38:ea:
6b:e3:ac:a5:da:2b:42:75:e7:79:5b:20:07:a3:af:49:18:0c:
1a:ee:42:ac:24:8e:32:25:78:dd:32:3f:70:a4:57:76:09:a8:
d9:fc:75:be:95:b8:0b:bc:fe:3f:fe:3f:e1:74:38:b4:4d:5d:
a0:20:01:ba:8b:1a:c9:fe:66:67:3b:d8:5f:0e:0b:4d:93:2d:
d6:d2:ad:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:06:16 2024 by rpki-client on console-fra.rpki-client.org