Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ePv82NUyv7urfXnFGnc46klMJrc.cer
File: ePv82NUyv7urfXnFGnc46klMJrc.cer (raw, json)
Hash identifier: yf2eP1taIT/sN7yS+wnqm7Qwry8htfzGDkERaSwZPlA=
Subject key identifier: 78:FB:FC:D8:D5:32:BF:BB:AB:7D:79:C5:1A:77:38:EA:49:4C:26:B7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FAB5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91106C7/77B69434320E11EFB6E0DA76C4F9AE02/ePv82NUyv7urfXnFGnc46klMJrc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91106C7/77B69434320E11EFB6E0DA76C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 24 Jun 2024 09:45:26 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 152928
IP: 2001:df3:f640::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 24 Oct 2024 20:54:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129717 (0x1fab5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 24 09:45:26 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91106C7/serialNumber=78FBFCD8D532BFBBAB7D79C51A7738EA494C26B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:10:6b:ff:06:1b:a8:74:70:46:19:f3:e8:df:
63:65:89:b3:41:87:43:57:8b:9a:7b:df:f4:19:8c:
f0:66:67:69:00:a8:d0:e4:d7:c6:e8:49:8a:eb:e0:
58:92:27:df:4a:16:35:27:49:4e:2f:ef:8e:c2:59:
7a:1d:59:42:e9:dc:8e:43:30:20:e9:f0:ff:42:d5:
4e:e4:02:56:02:41:e7:cd:a7:01:5d:4f:5d:08:9e:
bb:19:0f:f9:aa:a1:8a:59:f7:7e:89:ce:9f:8b:ff:
47:53:24:79:07:43:d2:2d:e6:cd:f3:1f:59:4c:13:
eb:89:9f:dc:71:7f:aa:eb:af:d5:5e:73:58:c9:bd:
e3:eb:f9:5b:40:b6:88:09:45:c8:3e:47:6a:e1:ad:
71:55:93:b8:4d:18:28:d1:3e:33:21:96:d3:2b:b4:
c1:f2:ff:0e:34:b3:9e:37:f4:6b:8b:bc:84:c6:77:
e0:d9:57:00:4e:20:ea:d7:49:e4:0d:68:50:10:02:
9d:04:80:be:02:66:07:5e:68:06:7e:17:2e:25:43:
e6:06:e3:7d:e3:94:4f:93:2c:4b:22:92:6f:44:32:
a1:03:6e:c6:79:21:fa:c4:ee:17:94:26:b3:ca:67:
a9:d3:2e:0f:a2:d0:b7:af:54:b7:c1:12:22:14:88:
28:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:FB:FC:D8:D5:32:BF:BB:AB:7D:79:C5:1A:77:38:EA:49:4C:26:B7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91106C7/77B69434320E11EFB6E0DA76C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91106C7/77B69434320E11EFB6E0DA76C4F9AE02/ePv82NUyv7urfXnFGnc46klMJrc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152928
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:f640::/48
Signature Algorithm: sha256WithRSAEncryption
49:81:82:78:22:71:a1:27:b9:03:d3:7a:8f:25:a1:ae:82:a6:
a2:a1:1a:7b:a2:0b:11:37:0e:07:d2:f4:ad:1b:3c:5f:35:ef:
5d:6e:c9:e3:93:ce:57:79:71:9d:be:d9:63:a3:39:ac:1d:58:
a8:26:f6:98:2e:bf:d5:4a:c2:b9:2e:9c:be:11:3f:ff:01:ed:
87:05:6c:95:f1:82:63:11:ef:a8:d9:60:86:6c:7c:f7:69:f8:
8b:55:b6:9e:e0:42:1f:47:4b:54:10:94:f9:6b:bd:80:7b:f1:
41:3f:91:78:01:ec:04:46:31:6f:b4:69:69:f2:3a:36:6e:1a:
7a:3f:8a:57:6c:d9:d8:51:fb:39:c7:7b:66:7b:11:09:89:df:
d0:26:28:79:aa:dd:8e:72:45:80:f7:24:c9:b5:ab:22:b1:3a:
0d:c4:1b:d2:33:d6:8a:b9:f2:b0:a8:01:2c:75:f4:3d:cf:4e:
ff:97:88:a3:f2:68:f5:b8:90:ea:de:e5:b5:b9:24:85:13:44:
fa:99:ae:e6:f7:47:8b:ae:fb:92:cc:d2:e3:58:67:64:50:00:
43:25:9a:38:b5:e1:3d:bf:d1:14:9f:9e:5a:c7:1e:5b:ad:a3:
9b:f1:41:ca:43:25:59:98:f2:b3:a2:9b:3d:c2:80:64:75:f8:
26:0b:be:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 23:10:13 2024 by rpki-client on console-fra.rpki-client.org