Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer
File: Z-1VajxcS_wnyhWKWXdWTDIHzso.cer (raw, json)
Hash identifier: wqboKIzUfA6/6UaVVVIUS/qasBU9v3RvongCEKWVtlo=
Subject key identifier: 67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02054F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 Aug 2024 15:38:09 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 4851
IP: 2402:e400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132431 (0x2054f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 6 15:38:09 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91752F4/serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:7f:be:94:bf:0e:2d:6a:02:dc:6c:5f:20:d7:
4b:8e:48:ca:0f:a6:2c:b9:4a:ca:5b:68:09:5f:b1:
48:bb:6a:da:ae:b3:fc:6a:85:0a:a7:1c:82:01:60:
f5:f8:53:ab:62:79:cf:ac:f7:98:68:73:3c:7a:82:
e4:0e:31:61:97:d5:64:47:9c:0b:bd:57:3c:41:e2:
b5:50:10:a5:19:57:ea:02:92:ac:01:a0:95:b4:70:
df:00:a1:2f:c1:27:47:66:88:46:bc:a9:c1:4a:64:
d3:a4:38:d8:db:1e:a3:16:60:20:34:00:88:cd:86:
b3:c1:9e:03:0d:4e:3f:3c:e1:19:b4:4b:d8:37:0c:
e8:74:a6:2c:40:9f:7d:a1:86:73:58:ed:f7:8c:94:
e5:18:10:d3:ee:14:91:bb:27:ea:c5:82:0a:f3:69:
85:fa:5f:6f:31:9b:45:18:eb:dd:09:97:46:cf:71:
f3:24:eb:59:45:1c:1c:38:71:b7:81:e3:be:10:e0:
1e:2a:bd:45:1f:c9:a8:49:55:37:18:35:e1:9f:3b:
84:a6:42:b7:c6:62:1e:8f:ca:64:c7:74:e8:e0:34:
a9:aa:bc:27:aa:4b:e3:79:2f:a7:b4:8b:4d:9f:59:
8e:bd:23:ec:54:d9:42:4d:1d:c9:30:3c:c8:5d:50:
29:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4851
sbgp-ipAddrBlock: critical
IPv6:
2402:e400::/32
Signature Algorithm: sha256WithRSAEncryption
69:16:54:df:4f:40:d1:f0:16:3d:34:6a:23:c2:97:86:a9:1c:
ea:6d:82:f5:3d:85:ae:ce:dd:3d:e1:8b:49:eb:1b:a8:6c:4d:
f4:d7:07:fa:70:ed:e1:22:ae:2e:15:6b:25:0b:0e:0c:1d:87:
fc:d5:96:ad:8f:29:f2:b4:6b:1f:f3:a8:25:38:d5:42:6f:87:
ad:a5:7a:a2:f2:cf:7d:8d:c8:32:a9:ff:42:0f:98:ec:22:98:
0d:f6:45:9e:f4:9b:b1:67:1a:c8:72:50:90:33:64:f7:f3:2f:
d4:a8:8d:07:eb:d1:a3:d7:1e:df:b8:a6:3e:c8:d3:fc:10:1f:
b8:3a:6c:d2:9f:8b:36:1b:f1:9b:86:75:d5:42:df:6f:f8:65:
2b:60:cd:af:01:ec:10:55:b5:3a:33:8d:8d:bf:3e:df:ba:5a:
a6:eb:d4:ce:b4:38:35:2f:bb:53:7d:41:86:61:60:14:16:b3:
4e:b5:52:98:4f:dc:1d:58:56:64:81:77:6b:25:05:41:95:87:
82:cf:2a:6a:1d:ee:17:29:26:10:7a:20:59:d2:57:1c:20:d2:
e4:6d:ad:2a:c2:98:94:da:27:2c:3c:7e:96:54:d7:aa:4b:b9:
11:b1:14:1e:ce:69:23:86:fc:e9:ff:e7:e6:73:f6:bc:3c:d9:
e7:c0:13:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:35 2024 by rpki-client on console-ams.rpki-client.org