Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer
File: Z-1VajxcS_wnyhWKWXdWTDIHzso.cer (raw, json)
Hash identifier: qamu+UaGgif7eBiAh82lv/ZkliOJMdnIbDP22vzCsEY=
Subject key identifier: 67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A3D1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 17 May 2023 16:47:34 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 4851
IP: 117.120.40.0/21
IP: 119.148.64.0/19
IP: 202.174.96.0/20
IP: 2402:e400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 11:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107473 (0x1a3d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 17 16:47:34 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91752F4/serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:7f:be:94:bf:0e:2d:6a:02:dc:6c:5f:20:d7:
4b:8e:48:ca:0f:a6:2c:b9:4a:ca:5b:68:09:5f:b1:
48:bb:6a:da:ae:b3:fc:6a:85:0a:a7:1c:82:01:60:
f5:f8:53:ab:62:79:cf:ac:f7:98:68:73:3c:7a:82:
e4:0e:31:61:97:d5:64:47:9c:0b:bd:57:3c:41:e2:
b5:50:10:a5:19:57:ea:02:92:ac:01:a0:95:b4:70:
df:00:a1:2f:c1:27:47:66:88:46:bc:a9:c1:4a:64:
d3:a4:38:d8:db:1e:a3:16:60:20:34:00:88:cd:86:
b3:c1:9e:03:0d:4e:3f:3c:e1:19:b4:4b:d8:37:0c:
e8:74:a6:2c:40:9f:7d:a1:86:73:58:ed:f7:8c:94:
e5:18:10:d3:ee:14:91:bb:27:ea:c5:82:0a:f3:69:
85:fa:5f:6f:31:9b:45:18:eb:dd:09:97:46:cf:71:
f3:24:eb:59:45:1c:1c:38:71:b7:81:e3:be:10:e0:
1e:2a:bd:45:1f:c9:a8:49:55:37:18:35:e1:9f:3b:
84:a6:42:b7:c6:62:1e:8f:ca:64:c7:74:e8:e0:34:
a9:aa:bc:27:aa:4b:e3:79:2f:a7:b4:8b:4d:9f:59:
8e:bd:23:ec:54:d9:42:4d:1d:c9:30:3c:c8:5d:50:
29:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4851
sbgp-ipAddrBlock: critical
IPv4:
117.120.40.0/21
119.148.64.0/19
202.174.96.0/20
IPv6:
2402:e400::/32
Signature Algorithm: sha256WithRSAEncryption
bf:c7:a0:fd:cc:38:e6:cc:c9:4b:59:5d:36:63:6d:f8:80:41:
dc:5b:d0:4b:58:06:66:7f:ea:4f:41:66:b5:2b:42:70:b2:4b:
e3:7f:cb:91:07:80:4f:a6:6e:ff:ab:59:1b:cb:06:54:3e:06:
30:22:eb:3f:27:f6:12:7d:a9:9d:8a:a1:e3:a8:d8:9f:2a:53:
4f:a1:64:c4:ad:89:92:98:32:49:00:a2:1c:0f:d4:6c:22:55:
db:63:f9:9e:79:28:5b:5e:a5:5a:8c:a2:ba:bd:51:68:22:01:
c9:f3:bb:5f:20:be:6c:df:5d:5c:60:6d:20:25:dc:cc:d4:6a:
ef:c6:75:3e:d8:a6:6b:2a:35:77:35:1f:1e:73:dc:8e:4d:f5:
84:38:fb:0c:b1:3d:d0:f3:98:e9:f5:99:b1:a0:20:9a:71:c0:
c9:6f:ed:e0:f8:9b:d9:ba:ed:00:65:b5:bb:df:f8:2a:8b:82:
88:3e:a7:5e:47:6d:29:31:d9:7a:8d:e3:2d:86:6b:1d:06:d9:
bc:ac:58:47:30:4d:2f:d7:16:bc:69:e1:e5:2c:6d:16:36:5f:
5d:61:2d:d9:2e:3a:ce:b9:30:d1:d7:d1:fb:0c:ac:47:2f:49:
34:f8:80:6e:a1:6c:f0:d7:aa:3c:e7:9e:5f:df:27:21:1e:86:
ba:3f:67:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 13:18:42 2024 by rpki-client on console-ams.rpki-client.org