Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dUx6CJILdd5uGzejtUuNUyXY33M.cer
File: dUx6CJILdd5uGzejtUuNUyXY33M.cer (raw, json)
Hash identifier: WnTEFyj75OZivUmGBzWtGlx4tJ5pAsyB0Q7GHsI87/8=
Subject key identifier: 75:4C:7A:08:92:0B:75:DE:6E:1B:37:A3:B5:4B:8D:53:25:D8:DF:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021D0F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/dUx6CJILdd5uGzejtUuNUyXY33M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Nov 2024 15:04:03 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 149296
IP: 2403:7840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138511 (0x21d0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 22 15:04:03 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9160C86/serialNumber=754C7A08920B75DE6E1B37A3B54B8D5325D8DF73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:74:2f:9f:a0:ce:2d:c2:0a:aa:7b:10:29:eb:
a4:c2:8f:35:80:8e:31:aa:ba:74:6d:f7:18:a6:4d:
88:b3:a4:db:05:7d:b3:1a:71:ab:6d:b0:5c:f8:ed:
2f:fe:b3:53:93:a2:67:c3:ae:c3:de:dc:7a:7a:51:
d5:2e:bf:75:fc:0a:fc:6b:0a:5a:50:e8:66:ea:90:
96:55:cf:ce:77:8f:d0:0a:4d:c0:0e:ea:09:9c:cc:
82:11:ec:24:a3:23:e9:54:c5:d4:ee:0d:43:1e:2e:
e9:c5:3e:37:c1:54:ff:ae:bc:ed:88:1c:27:51:e5:
09:a7:68:10:7c:dc:2f:81:32:8f:99:44:87:ad:b5:
d7:a1:b3:33:ca:5c:d4:dd:6a:01:c9:5a:00:f3:35:
d2:73:25:dc:c6:51:1c:17:71:18:4b:eb:23:c4:8e:
98:b4:48:23:68:6c:52:d1:14:af:a7:89:63:1f:56:
71:42:3e:d2:d3:bb:40:b4:f4:c0:e5:f0:18:3f:a6:
7a:6e:4c:75:ed:88:ea:d4:c6:93:99:aa:33:aa:81:
fa:4e:c4:af:75:76:c1:12:71:2c:38:52:ba:a2:60:
74:f2:8c:df:35:17:97:82:4d:24:2a:42:aa:07:91:
16:2a:c8:71:a7:5f:c7:60:f9:1d:78:17:52:cb:10:
f6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:4C:7A:08:92:0B:75:DE:6E:1B:37:A3:B5:4B:8D:53:25:D8:DF:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/dUx6CJILdd5uGzejtUuNUyXY33M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149296
sbgp-ipAddrBlock: critical
IPv6:
2403:7840::/32
Signature Algorithm: sha256WithRSAEncryption
15:52:99:ee:29:e1:ee:b6:50:74:85:41:c9:c9:10:20:99:89:
a1:05:b4:cf:51:cd:91:8d:68:c0:51:6f:6a:ac:9c:64:7b:4a:
41:75:5c:1f:ca:16:11:d0:05:9b:9b:53:4a:b8:2a:b5:c5:c1:
aa:aa:46:5c:63:b8:ab:db:2a:7d:57:ff:5e:99:c8:6a:8d:a4:
47:30:3a:c6:97:c0:8e:cb:51:a6:fd:fb:27:07:98:c3:de:c7:
42:55:d7:ba:72:41:6d:3f:0b:ed:f8:a0:13:00:19:ec:79:4c:
49:c5:b8:55:02:72:6c:55:3d:23:d2:4a:72:b1:9e:7c:6c:a5:
de:03:ff:d9:44:90:e0:b2:06:61:64:10:03:10:18:94:46:c0:
94:6b:66:aa:04:6f:9a:7b:ba:85:9a:ce:64:24:b6:51:0b:ee:
51:bd:76:13:df:73:6c:b9:db:6a:25:75:25:48:db:ed:62:6f:
1f:8d:c5:bd:c1:81:7c:4e:42:9b:89:97:f9:5b:bf:62:17:fc:
77:3e:ad:ef:f4:e8:ea:76:72:17:2d:9c:d5:7b:71:51:11:a9:
b0:d0:66:56:12:1f:a8:6b:5a:24:f6:57:66:81:7f:80:b8:94:
55:83:b9:ee:7d:22:a9:f7:0e:20:cd:e3:80:64:5e:73:02:2e:
06:89:a8:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:39 2024 by rpki-client on console-ams.rpki-client.org