Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer
File: ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer (raw, json)
Hash identifier: bN1KlMIZ1y8SsSULDZIQFAavxwxxZ5bQeKv5ww4xuiM=
Subject key identifier: 7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02103B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.mft
caRepository: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/
Notify URL: https://rrdp.sub.apnic.net/notification.xml
Certificate not before: Sat 28 Sep 2024 16:26:26 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153346
IP: 2001:df4:5140::/44
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135227 (0x2103b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Sep 28 16:26:26 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A917447B0000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fa:63:1d:5c:71:ff:3a:1f:78:f9:d7:6f:98:
9a:43:0f:56:79:72:fb:7a:22:06:2f:03:a3:8e:53:
1e:36:5d:69:5a:24:69:b1:7d:3c:3f:45:03:15:f2:
1f:78:7a:10:74:cd:80:47:34:89:38:f3:90:12:a6:
68:5f:cc:26:36:80:9c:88:58:d5:3b:4f:a9:70:48:
3a:2d:f5:61:81:eb:a2:ee:cf:c3:79:3f:d5:ba:27:
bb:56:67:7e:1f:50:77:ac:ce:17:50:2b:ca:ba:83:
e4:7a:a3:a6:06:17:6b:f3:8b:8f:de:9c:b0:33:40:
f6:ba:de:4d:64:97:a0:35:f5:ba:83:a3:16:84:14:
2e:91:40:ae:d2:ea:07:8d:47:e5:54:30:05:db:23:
70:c6:65:49:89:c4:f3:5d:6d:83:1e:32:5d:67:1b:
4e:bf:43:e9:82:f3:6e:ff:67:72:40:b2:6c:f9:b4:
75:b7:cc:59:91:9a:34:bc:ae:fb:b3:96:c0:85:da:
79:e1:68:33:fe:23:a6:78:dc:27:54:0c:02:66:45:
35:ef:e0:a2:4e:dc:81:a0:e8:c0:b9:03:af:5d:fb:
77:75:b3:f2:f1:40:f3:3a:d7:12:27:d6:94:f1:78:
c2:56:00:75:f2:91:9b:11:bf:d8:23:76:4b:91:98:
03:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/
RPKI Manifest - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.mft
RPKI Notify - URI:https://rrdp.sub.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153346
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:5140::/44
Signature Algorithm: sha256WithRSAEncryption
5c:60:57:0e:24:ed:8c:cf:42:78:09:99:20:99:70:71:10:18:
3c:d0:1a:73:ba:20:e5:e0:b1:6f:a7:de:76:d3:62:ed:ef:ed:
f1:8e:c0:2f:f0:a1:37:a3:70:18:49:74:d8:83:03:7c:45:fd:
d6:2b:87:6e:97:0d:e3:23:1d:64:fd:08:a6:20:da:d7:fb:83:
fb:e7:cd:8b:f3:88:c5:e0:34:90:58:6f:89:87:72:ad:0c:cd:
45:c1:cb:b8:04:fb:2e:a3:d9:12:e7:8a:b2:8d:65:61:56:de:
b0:c8:91:74:1d:44:73:4d:d6:80:ee:34:bd:be:15:7e:83:62:
2a:31:cb:cb:6a:e1:00:80:5d:0e:99:10:e1:9f:49:43:c2:f4:
88:57:ae:4f:4e:67:b2:e6:b0:d4:28:6f:65:14:e0:d9:c8:53:
2d:50:3a:07:22:08:3e:73:66:f7:75:42:85:7b:30:55:13:d4:
5b:74:0a:40:91:80:e8:0e:4f:11:d0:44:9d:0e:8e:3a:9c:d0:
cc:4d:89:22:fc:c0:1d:c8:a1:9c:c8:f2:19:bc:08:f0:36:55:
b3:24:d4:d6:08:5f:4a:57:dc:b3:f1:4a:c4:35:52:ae:61:4f:
d4:81:be:0a:42:f9:aa:d4:fe:40:1e:e5:d9:82:1f:99:87:92:
3c:b1:1d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:51 2025 by rpki-client