Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer
File: cz1KHp8pnM0_jnJKteer9Ci7GV0.cer (raw, json)
Hash identifier: 6IE0vkR6zyar2AgLR7jXhk7TPCxlCHxXDgQnAzHNbdM=
Subject key identifier: 73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DE36
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 09 Feb 2024 09:26:28 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 152469
IP: 2001:df3:73c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 23:13:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122422 (0x1de36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 9 09:26:28 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91DE500/serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:09:25:d7:83:df:91:bf:d3:ac:a1:4e:cf:01:
6d:c5:5c:62:5d:33:ad:31:89:87:7a:e7:00:bf:aa:
7c:8a:fe:2b:e2:de:2a:e1:1d:2a:bb:ad:34:a0:00:
be:c9:33:9c:2d:18:a5:ec:4d:9f:1f:50:74:d0:92:
35:9c:f9:36:0f:f7:09:2f:2a:32:bd:86:37:0f:66:
be:c9:d1:97:04:15:42:c1:3d:39:9e:06:45:81:00:
bd:cd:57:bb:a3:41:1b:cd:34:75:95:e2:e6:c4:1c:
91:c5:ee:50:ce:7a:8c:70:88:93:5d:56:9b:15:7a:
48:6b:8e:7b:89:37:69:ae:06:60:09:0f:b6:bc:7b:
65:ae:37:a2:6f:87:eb:e7:bf:c1:91:01:a4:1a:6f:
2f:01:39:97:d5:1f:30:50:7f:a8:e7:7e:8f:6f:4a:
24:4d:35:76:75:35:86:ba:55:ae:bb:21:84:eb:af:
d5:9a:18:d7:02:a0:ee:b1:7a:8d:78:c4:e5:23:3d:
5b:01:20:be:f3:28:36:15:95:e8:cd:de:50:8a:8d:
2b:d0:d1:11:f5:31:c7:ac:1f:42:0c:57:c0:1d:89:
1b:3c:b8:aa:d2:4c:fb:04:50:42:95:c9:04:fc:12:
b4:8a:6d:e2:fb:41:b3:9e:97:af:4a:cd:2c:41:de:
56:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152469
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:73c0::/48
Signature Algorithm: sha256WithRSAEncryption
ae:e1:48:ca:4d:7b:0c:41:04:11:b3:cc:67:59:e0:5b:c5:29:
d8:8c:0c:3f:35:7d:2c:9e:cf:a9:0e:91:2f:b7:d2:b7:fa:92:
0d:33:99:6c:7a:4b:15:59:1f:7a:91:ac:37:87:58:8b:14:e6:
a8:aa:4c:c1:a1:ae:4c:a8:21:37:b5:65:22:65:d2:c6:d3:62:
9b:2e:75:f3:69:ff:01:d0:fb:85:0e:63:f1:95:e6:fe:73:35:
27:e4:a6:69:29:86:ac:ca:3d:fe:83:48:69:a8:8c:26:64:a5:
fa:03:b6:59:98:48:3d:08:7e:be:90:f7:bc:cf:58:5c:91:81:
45:18:32:9f:0e:98:cd:52:f5:0d:fc:fc:9e:b6:45:4e:68:5f:
a9:c1:4d:4c:1d:a0:d1:24:60:d7:1a:3c:c0:19:c2:dd:34:af:
75:6d:04:a3:b8:5b:b5:f2:be:10:92:95:72:d7:dd:b8:5f:30:
2a:6b:86:38:b5:dc:6f:a6:27:2e:7f:35:eb:68:88:f4:3b:f7:
61:ca:c0:c8:5b:d4:de:4f:c4:d5:17:fa:89:7b:9d:e9:b6:7b:
46:5a:cb:7d:0b:f6:9f:88:8e:8d:84:b7:cb:6d:52:1f:6e:cf:
5f:98:10:96:fc:59:51:ec:c4:49:1d:4f:b4:c1:03:f0:13:d3:
b4:c4:23:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 00:11:03 2024 by rpki-client on console-ams.rpki-client.org