Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eBEnDnjlL4Hsbw6W2ZbHkJPBJDI.cer
File: eBEnDnjlL4Hsbw6W2ZbHkJPBJDI.cer (raw, json)
Hash identifier: ILq+OSk6kh1Udo3x7tf1kWLIgcjQwzGTKSEDQOMBAK4=
Subject key identifier: 78:11:27:0E:78:E5:2F:81:EC:6F:0E:96:D9:96:C7:90:93:C1:24:32
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E556
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917ACF1/909BC028A03911EC8A1F1C23C4F9AE02/eBEnDnjlL4Hsbw6W2ZbHkJPBJDI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917ACF1/909BC028A03911EC8A1F1C23C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 19 Mar 2024 16:40:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 7582
IP: 2001:ff8::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 14:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124246 (0x1e556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 19 16:40:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A917ACF1/serialNumber=7811270E78E52F81EC6F0E96D996C79093C12432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:07:0d:7c:04:87:86:c5:03:62:7d:fe:65:2f:
f8:54:f3:ad:ca:b6:77:d4:7b:fd:0b:57:c2:5b:07:
c5:91:e8:42:e6:4a:37:24:4f:98:d5:da:83:d3:ac:
d2:75:f0:f5:c6:1c:ac:5c:6b:f1:e5:45:08:3a:b3:
ab:b8:26:d8:fa:4f:76:cc:48:31:33:89:d9:bd:f2:
1d:9f:9d:33:2a:bb:5e:a9:1d:db:d7:9f:b2:ba:1d:
08:3a:b2:f6:78:33:6b:3f:87:01:f4:66:59:b5:83:
15:19:54:a5:48:43:b7:c1:5a:1b:0b:9b:5a:d3:50:
63:56:b3:94:05:a9:db:aa:e4:a1:71:39:bf:dd:33:
3a:a1:12:f1:71:76:81:76:d1:18:11:65:e4:1a:cf:
14:6a:8e:a0:98:42:27:9e:07:38:c3:4c:be:85:3c:
db:fc:e8:ae:f3:95:4b:1e:be:ce:c8:c5:6c:39:4d:
fc:a1:92:48:65:64:39:15:b3:27:c6:ca:3b:d3:07:
6f:bb:46:05:22:a1:52:58:75:1d:51:82:0c:c2:44:
cb:0a:5e:4b:fc:24:54:8c:a2:42:37:55:bd:be:1a:
fa:5b:bd:b0:93:38:9a:79:8a:d8:a5:48:18:c9:a4:
08:9a:33:51:92:01:13:79:3f:52:9f:78:f0:d1:d1:
b4:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:11:27:0E:78:E5:2F:81:EC:6F:0E:96:D9:96:C7:90:93:C1:24:32
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/909BC028A03911EC8A1F1C23C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/909BC028A03911EC8A1F1C23C4F9AE02/eBEnDnjlL4Hsbw6W2ZbHkJPBJDI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7582
sbgp-ipAddrBlock: critical
IPv6:
2001:ff8::/32
Signature Algorithm: sha256WithRSAEncryption
79:a2:0b:c0:87:58:2d:95:77:7e:44:db:f2:84:2d:af:08:3e:
10:1b:be:f1:34:35:db:f5:bc:63:04:9d:a0:93:2e:17:61:9b:
47:fe:78:72:cf:b5:59:1c:d2:22:63:df:ef:16:97:bd:c3:61:
9d:5c:86:37:09:c6:94:4c:95:6d:c1:13:78:94:11:4d:d9:28:
06:05:d5:b8:18:b7:05:59:d4:e0:1a:43:c5:c9:50:5e:32:33:
c8:15:83:b6:60:0a:68:00:1c:39:f6:19:11:e9:2b:73:cc:eb:
76:22:d1:0b:21:f4:ac:69:9d:8f:c8:56:f3:59:41:9f:e3:75:
63:e2:70:ff:28:fc:04:f3:64:e2:ba:76:02:02:18:31:8c:98:
48:8b:20:65:3d:b5:10:ce:08:4e:d5:da:b1:e3:79:a8:bf:84:
02:17:f3:49:ed:5e:02:2c:54:c5:4e:a6:55:46:20:98:6a:d2:
90:c8:8a:62:5f:23:2d:e2:9c:f9:79:cc:30:57:bb:27:b9:f0:
fe:09:2d:57:f4:0a:a9:c6:db:6e:78:b7:dd:42:52:a0:03:e9:
ea:fb:83:91:36:7e:42:3c:34:b4:53:b6:c2:bf:e9:83:54:b7:
6a:d4:dd:93:91:9d:c9:fb:8a:10:fe:02:9c:6d:1a:cc:de:93:
f5:dc:b0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 16:13:21 2024 by rpki-client on console-ams.rpki-client.org