Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer
File: XwBNV-s29CZy5m8wBfZGm2KJFxs.cer (raw, json)
Hash identifier: 4tIuYZmPbcxFsueT1zKPCkvjnRUpCRA9C4vWR+VbTS0=
Subject key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021A32
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Nov 2024 03:50:28 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 153167
IP: 2401:b3a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137778 (0x21a32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 8 03:50:28 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:24:36:e3:6d:42:ee:e3:de:af:9b:13:43:b6:
4d:b5:f0:10:0c:9f:c6:71:57:0f:7e:8a:41:46:d9:
5a:5c:25:93:17:09:f3:a1:35:01:48:02:08:7f:43:
58:af:9c:a8:39:59:a5:a2:d1:ca:8c:0f:e2:42:ae:
de:5b:d2:4b:4e:e6:6d:40:d8:50:89:49:f7:2a:66:
9b:57:28:dd:3e:4b:66:fc:69:6d:a2:24:48:7a:5a:
52:eb:c6:00:bd:0c:4f:3a:4d:de:41:88:af:d4:59:
2d:1d:ff:b7:10:be:5d:e9:d6:5c:d5:65:79:b2:05:
f3:16:a3:4d:90:8d:6e:82:31:0a:24:d2:7d:03:30:
e0:44:89:3a:00:e6:28:9c:93:d5:5b:2a:cd:8b:5b:
c8:1c:ab:30:d2:15:0f:63:ca:55:da:26:c6:c3:1e:
37:51:c4:a9:ee:08:96:9a:fd:2e:e8:ca:bd:20:55:
94:b3:1c:f5:a5:5d:99:0e:65:c5:a4:eb:18:da:87:
e1:ff:13:18:f9:1a:55:df:b8:e4:b6:11:dd:25:aa:
10:53:40:98:ee:6f:35:c2:7c:33:d2:d3:1a:fb:6c:
78:03:a4:0e:dd:c8:b6:28:c6:e1:3d:aa:82:96:d8:
50:a2:d6:0d:6b:a0:cf:56:2c:79:f2:c4:e7:6c:57:
63:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153167
sbgp-ipAddrBlock: critical
IPv6:
2401:b3a0::/32
Signature Algorithm: sha256WithRSAEncryption
8b:ee:7e:ae:93:b0:7b:cf:8f:3d:96:b3:4f:57:2b:78:a9:4d:
b9:a1:79:a3:95:69:c5:6c:76:0e:be:0a:f7:b7:9c:31:d0:57:
0a:e5:e8:e6:77:7a:8d:bf:99:d4:10:93:c9:a4:af:57:66:1a:
6e:3a:6b:49:23:22:45:cb:1f:0f:f5:ab:e2:46:13:1d:62:8b:
c4:02:48:be:d4:27:68:88:42:ef:38:5f:13:f7:00:11:e1:6a:
29:bd:13:60:31:80:5d:84:63:26:96:43:2c:90:50:7d:b6:0a:
77:ca:6f:03:5d:75:f7:fb:22:8b:fb:75:c2:8c:be:9e:e0:04:
e4:ea:94:fe:13:49:bc:db:57:f9:b4:f3:08:b2:d0:ec:e0:4b:
6d:78:9f:c8:6f:a7:9b:0e:28:d5:da:62:89:0a:12:62:ec:f6:
85:6f:89:91:d9:eb:00:d1:f3:24:53:b3:c2:94:23:00:5a:c6:
df:a3:14:22:05:74:9c:11:05:0e:d2:e0:b4:54:e6:62:0a:2a:
42:ec:30:c2:32:87:0e:8d:a5:66:2e:3a:3f:f9:55:00:bb:ca:
aa:26:70:1e:9a:60:7a:fc:5b:73:31:38:23:f4:9e:23:f5:8c:
0a:48:69:e2:0a:25:f9:60:91:9e:30:75:b3:70:8f:d4:d4:7c:
bf:57:22:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:45 2024 by rpki-client on console-ams.rpki-client.org