Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer
File: hPqw1oT6rxaVCqyjjm1lOszyWLw.cer (raw, json)
Hash identifier: EHnEGtvzo7CXQ2KSOW40joWtt8yTMAZ0LiQS+yTLcAE=
Subject key identifier: 84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0209F2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 30 Aug 2024 14:22:44 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 24014
IP: 2001:df3:c600::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133618 (0x209f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 30 14:22:44 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A914247C/serialNumber=84FAB0D684FAAF16950AACA38E6D653ACCF258BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0d:4e:1e:31:98:ce:ab:f8:a0:a8:71:ab:38:
a9:13:8d:6a:14:bc:f1:0c:78:0d:66:7b:70:6b:1c:
5d:86:db:ee:fa:e6:2d:77:62:9e:34:fc:e0:0a:93:
04:76:8c:b2:f6:b3:50:56:d1:5e:00:55:40:99:7d:
34:e1:80:a8:ce:b5:70:67:db:fb:c5:15:0c:d7:1d:
75:56:d9:39:8b:d3:aa:38:17:15:f0:3c:f9:f6:c9:
6c:3f:9b:37:e3:e2:99:74:67:39:b7:89:d8:ca:e6:
24:ab:a4:39:8f:f4:78:00:9d:e5:0e:65:ff:e9:bf:
1d:c4:be:48:5f:5e:e1:1a:c5:d1:27:04:42:01:f4:
4a:48:cb:42:b1:be:d6:b7:c0:7e:38:6b:ad:f8:3e:
40:3f:00:f7:07:75:27:a3:78:ef:04:dd:d4:d7:29:
8d:c1:f1:a2:7e:10:4c:66:1e:4e:ed:cb:2d:c1:45:
4c:6f:50:8a:08:e6:26:ba:69:14:df:4b:6f:da:e9:
65:39:22:21:17:f9:56:1d:ab:ea:13:79:89:2e:44:
b1:07:42:12:09:df:ed:f4:c2:62:67:eb:80:08:08:
46:4d:1f:1e:98:6d:95:54:d1:f3:f3:cd:59:f5:a3:
30:09:74:e4:df:5d:85:9e:c1:5f:df:9c:c4:8d:07:
b2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24014
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:c600::/48
Signature Algorithm: sha256WithRSAEncryption
9d:fa:96:44:4e:6d:f1:7f:9d:d4:eb:55:49:2f:f6:ae:fe:d0:
1c:0c:0d:e5:fa:ff:5c:9a:34:24:74:c4:26:47:9d:cf:aa:df:
d5:3c:3e:a7:d1:85:78:33:cc:2e:1e:78:7f:d7:2f:72:b0:7c:
cf:79:41:1c:2e:72:bb:00:01:43:73:76:f5:a8:6a:a4:09:53:
71:6b:2b:47:43:cf:96:02:c0:af:cf:8a:93:ab:73:40:1c:74:
99:05:29:44:bc:1d:62:f7:38:82:b2:dc:f5:e9:16:3f:48:c4:
5a:82:fe:17:fc:28:a5:d3:7a:32:6b:1e:61:80:4f:2b:ef:18:
db:69:af:eb:d0:a7:f1:18:6f:73:20:f9:45:ee:c9:2a:6b:c8:
98:69:bb:d9:85:24:9e:07:f5:9e:2d:dd:12:20:b6:70:80:08:
1a:f6:5a:3d:3b:76:5b:7a:95:fa:32:01:41:34:e8:29:c0:6e:
2a:00:5e:92:d1:a0:cc:e5:06:23:fe:51:60:28:53:37:70:6b:
69:c3:d1:9e:58:e1:0a:35:3a:6a:23:f2:06:00:df:e6:d2:18:
cd:17:7b:03:6d:40:31:f0:36:21:b9:07:5b:38:4a:0c:ca:ae:
c6:62:cc:8f:68:71:d5:b4:d4:e7:e0:80:c3:1d:7c:5f:3d:0f:
fb:cf:c0:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:05:22 2024 by rpki-client on console-ams.rpki-client.org