Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c72yoCvL7DyQAPZfcFyW6AgOlzA.cer
File: c72yoCvL7DyQAPZfcFyW6AgOlzA.cer (raw, json)
Hash identifier: 2v7rzqo5KlBV8RM92zY06C2Uw4SVbTqitqSwaji0gFo=
Subject key identifier: 73:BD:B2:A0:2B:CB:EC:3C:90:00:F6:5F:70:5C:96:E8:08:0E:97:30
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D284
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F34BF/4F033D849CF511EE9E4C331FC4F9AE02/c72yoCvL7DyQAPZfcFyW6AgOlzA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F34BF/4F033D849CF511EE9E4C331FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 17 Dec 2023 15:59:56 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 152163
IP: 36.50.116.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 06:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119428 (0x1d284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 17 15:59:56 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91F34BF/serialNumber=73BDB2A02BCBEC3C9000F65F705C96E8080E9730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:74:96:bb:ef:a4:3e:9b:84:21:13:4d:18:8a:
0d:8b:a2:c1:1d:21:de:9e:29:52:fd:46:1c:da:3f:
3d:8f:d5:31:42:64:1d:98:0e:29:fa:d1:5e:f4:0e:
ac:e0:a8:3d:98:fd:4c:13:9e:93:19:54:cd:7b:2c:
0a:8e:b2:a8:e1:72:52:d7:a8:c5:7e:71:a5:0d:54:
97:f4:a5:e5:14:f5:d0:39:65:99:4b:30:2b:3d:71:
d5:81:ee:9d:e9:10:26:2c:0b:e2:c7:77:81:21:d8:
00:6a:fc:9e:6f:fe:ce:8d:5c:e6:69:f8:0c:79:96:
bd:0a:36:6f:3c:24:ac:9c:fe:60:2d:47:39:fd:c5:
c7:dd:6e:f9:97:3b:cc:b3:4b:27:1f:3b:3c:c4:10:
3b:8c:00:f8:08:81:af:2f:cb:85:bb:ec:d6:ac:ac:
87:ca:e5:44:85:83:a6:58:97:f2:ff:01:2d:98:2f:
a0:00:38:40:84:ee:00:1f:e1:70:af:ba:25:41:61:
ff:54:f2:18:be:9c:79:86:26:6b:08:29:ce:af:42:
20:d7:8a:4b:fa:82:08:3e:42:b0:b1:64:0b:4c:e3:
77:70:8b:0c:d5:36:08:f1:2e:e4:35:8c:17:66:2c:
14:fd:33:98:8b:b8:8a:95:ad:68:44:bd:af:c1:1d:
95:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:BD:B2:A0:2B:CB:EC:3C:90:00:F6:5F:70:5C:96:E8:08:0E:97:30
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F34BF/4F033D849CF511EE9E4C331FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F34BF/4F033D849CF511EE9E4C331FC4F9AE02/c72yoCvL7DyQAPZfcFyW6AgOlzA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152163
sbgp-ipAddrBlock: critical
IPv4:
36.50.116.0/23
Signature Algorithm: sha256WithRSAEncryption
d2:d3:de:6f:20:97:82:a6:11:8c:cc:7e:05:b6:80:77:04:c5:
48:c0:a3:be:24:51:f8:76:21:0b:8a:3c:d1:4e:c7:e9:3a:93:
e4:ab:36:e0:28:39:ce:ce:a0:23:f7:73:ff:8f:af:69:03:ab:
97:74:bc:26:e5:b0:10:2b:5e:ae:fb:69:18:1c:43:cd:b1:2d:
f5:dc:0b:5c:5a:d9:11:3a:de:0b:22:92:aa:af:92:c3:c4:ff:
23:5a:77:a1:c9:12:84:35:ea:ad:ae:6f:6a:10:70:af:87:5e:
37:65:c1:9a:93:19:e9:68:97:09:48:15:a2:bf:71:16:e7:ab:
99:10:cf:0c:af:c1:01:00:a1:d3:8b:be:28:c0:33:61:7e:ee:
91:31:c1:a0:4f:69:c6:19:a7:20:64:c2:a1:70:92:05:0c:90:
b4:34:10:6b:3f:c5:3a:1a:c5:a1:a0:6b:26:ed:26:7f:c4:df:
68:41:1d:ba:71:ea:fd:2b:ab:c6:dd:7a:05:b9:62:3b:75:af:
dc:01:a5:0d:78:9a:0c:d2:0c:33:cf:6d:00:c7:0e:1d:60:92:
c8:5c:23:df:0e:e3:e2:42:3f:c1:66:5b:8e:63:2e:23:75:84:
0e:84:df:a8:d2:f9:21:3f:8b:9d:3f:bc:d7:25:2a:61:12:78:
1a:4c:37:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 08:03:40 2024 by rpki-client on console-ams.rpki-client.org