Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dryi-syf58hAsQNN0qWbb2kWXMU.cer
File: dryi-syf58hAsQNN0qWbb2kWXMU.cer (raw, json)
Hash identifier: +ZKisvdkqEOn6kdoudYynHYPzNmcLYVmgQ1BW+SK+xY=
Subject key identifier: 76:BC:A2:FA:CC:9F:E7:C8:40:B1:03:4D:D2:A5:9B:6F:69:16:5C:C5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E332
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916F5D7/F7A1BB9C963D11E89FF3BD1AC4F9AE02/dryi-syf58hAsQNN0qWbb2kWXMU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916F5D7/F7A1BB9C963D11E89FF3BD1AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Mar 2024 16:51:48 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 2401:f040::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123698 (0x1e332)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 6 16:51:48 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A916F5D7/serialNumber=76BCA2FACC9FE7C840B1034DD2A59B6F69165CC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ad:1e:d7:8c:db:c0:79:e1:bf:02:af:37:fc:
74:ce:5c:ad:1d:8b:50:6d:c7:db:c3:c8:f7:63:78:
a4:a4:6b:58:1c:08:d3:59:31:c6:cc:a5:b5:d8:90:
90:92:38:05:2b:ef:4c:b5:70:07:ff:41:ae:33:08:
53:31:db:4a:45:ac:f0:30:2e:a1:f8:ca:a7:1d:fb:
ba:3c:88:61:60:a7:cd:8b:10:6f:b9:dd:1e:c1:d9:
14:bf:5f:16:9c:ce:ec:c5:8a:bc:9d:9d:b2:9e:28:
d2:ad:2e:30:61:05:8e:e4:25:46:24:30:d4:0d:7a:
db:68:7c:86:0f:eb:52:26:df:fe:c8:f6:9a:02:77:
ec:b9:18:de:a6:b6:2d:42:6f:83:ce:29:14:71:2c:
13:62:d9:2a:b9:87:06:04:89:02:87:fd:75:e5:42:
86:29:91:f4:84:68:91:b4:ea:3e:c9:8d:f4:f1:14:
fc:3f:fe:ab:19:4a:6b:d8:c8:ad:ad:28:63:5c:f4:
5b:c9:59:77:66:0b:c4:70:7e:71:cd:f1:98:b5:40:
c0:74:73:40:1d:7f:4b:51:31:10:a3:bd:2e:05:57:
b2:5d:6f:23:bd:c2:8d:9c:8d:af:f9:55:38:98:6c:
47:03:04:19:c3:bd:25:1c:d9:e1:57:d2:55:a7:74:
53:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BC:A2:FA:CC:9F:E7:C8:40:B1:03:4D:D2:A5:9B:6F:69:16:5C:C5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916F5D7/F7A1BB9C963D11E89FF3BD1AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916F5D7/F7A1BB9C963D11E89FF3BD1AC4F9AE02/dryi-syf58hAsQNN0qWbb2kWXMU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:f040::/32
Signature Algorithm: sha256WithRSAEncryption
74:01:c3:85:0d:32:52:77:9a:7c:b4:8e:37:a4:85:36:76:3f:
8e:a3:5a:fe:b2:61:9e:a4:53:08:1d:0c:78:3e:05:18:17:ad:
c7:3e:d8:bc:2b:c4:60:a5:f0:aa:d1:98:e2:da:11:77:19:a0:
ca:b7:f4:7d:a5:67:f6:1f:44:1b:77:33:35:ec:b9:33:e0:21:
23:8a:30:fc:5c:fa:63:3a:c1:da:c7:5c:8c:63:cd:bd:54:4d:
97:0c:e6:b5:95:c0:40:2e:16:28:32:1c:b7:a1:e7:15:60:8b:
15:53:bb:f5:18:98:db:c9:e4:ea:19:a6:00:08:02:f1:af:c4:
3d:c9:02:f9:75:aa:44:9d:c6:4d:05:cf:39:8e:bc:d1:e9:ac:
53:2d:bc:1f:8c:77:a1:92:7f:eb:0a:b3:03:a2:51:0c:e6:00:
3b:f9:d3:8f:b1:32:d2:43:70:59:f9:a4:95:e3:03:00:98:c9:
ec:eb:a3:be:69:ce:73:f4:fe:0b:47:d8:b4:5f:cd:cc:9d:ff:
9a:47:6b:3f:1f:84:63:bf:14:6b:b4:46:6e:43:5d:7c:e9:5e:
f8:7e:27:18:b9:23:aa:02:b9:0d:9d:8b:43:dd:60:13:a8:ba:
75:73:53:cd:32:81:54:f6:13:f6:f3:2f:35:fa:7d:23:6c:63:
02:37:ce:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:30 2024 by rpki-client on console-fra.rpki-client.org