Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer
File: b35Y0Iljiffn_k6HlapVXVxVUYg.cer (raw, json)
Hash identifier: RMOjo+mrVwbcKxLIlYgiLSsd8SU+H/k/mYqeLmCglOc=
Subject key identifier: 6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021C4B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 19 Nov 2024 14:40:37 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 153452
IP: 2001:df4:9fc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138315 (0x21c4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 19 14:40:37 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91706E4/serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:97:9d:e9:c2:6a:d3:43:5b:aa:c4:b2:5d:fb:
2f:81:d8:75:e1:7d:55:05:72:0a:d8:17:bb:33:aa:
44:c2:9b:4d:69:38:36:89:2d:b3:5c:f8:02:18:70:
09:40:29:c9:89:8a:c1:fe:8b:99:9b:6a:db:58:24:
21:dc:c6:f1:52:55:24:b1:0c:b6:34:62:85:e7:41:
4a:b6:34:35:0a:08:4c:ab:f2:2f:03:a9:d2:a3:2e:
f1:bf:90:22:b9:0f:aa:9b:17:fe:0a:de:37:96:53:
5d:56:14:2c:d6:b4:16:d4:84:03:99:0d:80:c2:87:
ab:0b:a5:d1:71:7c:ac:6c:ba:e7:97:5f:c4:fc:fd:
cf:cf:49:6b:ce:4d:c6:ff:db:42:ff:70:c1:66:62:
46:52:0d:0d:08:13:71:be:2c:66:4d:dc:93:69:62:
93:30:af:a7:fd:9a:20:4d:6d:2f:0f:78:bb:b8:d5:
f0:92:1a:30:bc:10:ee:ae:82:fe:00:67:79:22:e0:
6d:56:cc:70:0f:83:37:b3:56:6d:90:7a:86:cc:e7:
b4:23:70:72:39:4e:93:68:b4:53:71:42:d8:6c:9d:
74:52:5a:3b:26:87:64:4b:1c:f0:81:aa:77:36:c6:
4c:43:c2:8a:02:c4:0c:db:9d:02:a6:3b:3b:b5:13:
c3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153452
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:9fc0::/48
Signature Algorithm: sha256WithRSAEncryption
2b:ae:2b:19:f2:b8:86:03:54:a2:1d:7e:69:7a:ef:e1:ca:e2:
dc:a3:a3:bd:6c:a6:a3:3f:5d:ce:58:b9:9d:10:06:e8:6a:2e:
b3:ec:cd:6d:23:cb:03:4c:93:a8:90:38:3c:6d:91:b2:cc:8b:
31:7d:36:5e:d9:85:78:00:db:04:bf:1b:68:56:01:2d:5a:f3:
4f:f3:08:56:4e:37:40:5d:c7:5e:e0:af:f5:4c:53:54:8c:ae:
c9:e6:29:b0:2e:8d:a2:5d:8f:d8:90:0c:06:30:4d:80:e7:4b:
b0:9e:19:17:d4:5c:f4:ba:f4:c3:7f:2f:f2:ec:49:99:54:fe:
1e:78:20:65:3c:79:3a:2d:ac:52:07:b2:e4:61:b7:37:3f:2b:
23:1f:0f:e3:22:5c:d4:b3:95:3a:9b:42:75:fc:0f:b1:bf:d6:
9a:37:52:7e:80:aa:02:ea:0c:f2:41:74:fc:98:a1:88:21:2c:
a6:03:68:f0:c5:61:0c:dd:a3:9b:15:a8:2a:d2:2d:83:ff:b9:
c8:11:92:32:78:99:fd:eb:e3:f0:c0:7b:b5:78:8d:ae:c8:01:
ac:15:88:8a:fd:e1:2b:ea:16:62:7b:ad:04:a7:d8:60:65:39:
c0:44:4a:d5:12:06:19:92:32:6c:fe:60:4a:5a:72:0b:bc:85:
b3:af:fb:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:50 2024 by rpki-client on console-ams.rpki-client.org