Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho7LZCXagzKIkuV7sN9kThrrc7M.cer
File: ho7LZCXagzKIkuV7sN9kThrrc7M.cer (raw, json)
Hash identifier: S4bsb974kBdvVST7Mol5CLFj7DQxlu5Y1wf4YCcCu5w=
Subject key identifier: 86:8E:CB:64:25:DA:83:32:88:92:E5:7B:B0:DF:64:4E:1A:EB:73:B3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021B7F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/ho7LZCXagzKIkuV7sN9kThrrc7M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 14 Nov 2024 19:17:30 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 2404:f980::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:53:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138111 (0x21b7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 14 19:17:30 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91C9945/serialNumber=868ECB6425DA83328892E57BB0DF644E1AEB73B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:03:50:b6:1f:3a:73:25:a9:1f:69:61:32:08:
b5:34:2e:8b:9f:30:c7:f0:63:b6:20:76:29:a6:ac:
69:59:9c:b7:63:a5:38:25:07:75:0c:cf:71:61:db:
db:e0:03:f4:76:40:be:ea:43:cf:6e:19:6f:db:35:
59:e3:35:fe:ba:d0:95:35:a6:6a:bd:0e:06:95:e5:
68:8f:73:3d:00:42:60:c3:43:3f:fb:31:2c:6f:5f:
f8:54:1f:ce:05:33:83:df:04:ba:67:ae:cd:2a:d3:
45:cb:21:a6:a3:e4:f6:e0:c6:7c:74:34:fe:28:3a:
b1:db:4e:96:a1:04:aa:e6:90:fc:4d:f2:e2:9d:bf:
8b:29:e2:b8:33:9e:23:ba:6a:d1:ec:5e:b0:df:bf:
3f:aa:92:8a:f2:8f:4e:ea:47:1e:72:7b:17:b3:9e:
7a:d1:71:cb:1b:a4:26:d5:d3:d0:68:35:39:dd:9e:
cb:0d:19:78:ed:bb:a4:e8:97:3c:83:a7:95:18:b9:
88:fd:69:ce:94:ff:3f:1d:c4:dc:13:18:0f:6e:d8:
0b:81:75:cb:4b:a5:ad:33:f8:31:c7:25:25:94:16:
7e:ef:91:5f:e2:91:15:ec:45:93:cd:b6:96:67:be:
37:a7:aa:9a:f7:7f:f2:ed:e4:aa:fb:07:8e:7e:00:
a9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8E:CB:64:25:DA:83:32:88:92:E5:7B:B0:DF:64:4E:1A:EB:73:B3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/ho7LZCXagzKIkuV7sN9kThrrc7M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:f980::/32
Signature Algorithm: sha256WithRSAEncryption
61:f5:af:93:b9:34:4f:08:d5:87:e3:90:d8:97:2f:73:3c:c3:
db:f9:aa:f6:ca:be:ca:fb:6e:70:1c:9e:eb:6d:45:06:b7:15:
30:eb:1c:29:96:a3:4a:41:1a:03:0e:40:ed:15:94:67:66:14:
28:ec:6a:6d:eb:90:c8:04:2e:1e:32:c0:b5:8e:5d:2e:d3:31:
66:bd:48:dd:b2:8b:25:7d:c5:1b:20:3d:ff:0f:13:a6:4f:fb:
23:10:a7:0f:ca:18:b2:82:ea:f1:d6:45:d5:53:d6:16:04:eb:
ff:77:0a:5c:16:18:70:9e:4d:07:1d:c3:37:e8:79:ad:80:47:
9d:e6:c6:5e:af:c5:3d:0b:8f:83:0a:84:22:f8:8e:e7:9f:c5:
78:58:5e:f2:12:c3:96:91:6f:d7:1f:fd:ba:a1:0b:c1:ee:00:
a8:ab:4b:c0:07:69:b2:a5:90:e5:54:04:11:8b:b8:75:39:ec:
18:98:2f:d4:df:cf:d1:d7:c0:d8:11:8c:54:d1:c7:c6:3e:40:
4e:10:b6:bf:07:92:6b:c6:17:8e:a1:c3:65:26:a4:9f:c9:20:
af:33:b6:db:59:bb:04:2f:24:b2:c8:fb:22:73:e5:7f:48:2a:
d8:82:9a:13:26:ea:32:d0:35:1f:8f:a3:2e:e4:a8:a3:8b:51:
70:2c:21:35
-----BEGIN CERTIFICATE-----
MIIF/zCCBOegAwIBAgIDAht/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTExNDE5MTczMFoXDTI1MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQzk5NDUxMTAvBgNVBAUTKDg2OEVDQjY0MjVEQTgzMzI4ODkyRTU3
QkIwREY2NDRFMUFFQjczQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC2A1C2HzpzJakfaWEyCLU0LoufMMfwY7YgdimmrGlZnLdjpTglB3UMz3Fh29vg
A/R2QL7qQ89uGW/bNVnjNf660JU1pmq9DgaV5WiPcz0AQmDDQz/7MSxvX/hUH84F
M4PfBLpnrs0q00XLIaaj5Pbgxnx0NP4oOrHbTpahBKrmkPxN8uKdv4sp4rgzniO6
atHsXrDfvz+qkoryj07qRx5yexeznnrRccsbpCbV09BoNTndnssNGXjtu6TolzyD
p5UYuYj9ac6U/z8dxNwTGA9u2AuBdctLpa0z+DHHJSWUFn7vkV/ikRXsRZPNtpZn
vjenqpr3f/Lt5Kr7B45+AKl/AgMBAAGjggL0MIIC8DAdBgNVHQ4EFgQUho7LZCXa
gzKIkuV7sN9kThrrc7MwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUM5OTQ1L0JDMDBDOEYyRjA5RTExRUNBRUU3M0UxOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDOTk0NS9CQzAwQzhGMkYwOUUxMUVDQUVFNzNFMTlDNEY5QUUwMi9obzdMWkNY
YWd6S0lrdVY3c045a1RocnJjN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAP
MA0EAgACMAcDBQAkBPmAMA0GCSqGSIb3DQEBCwUAA4IBAQBh9a+TuTRPCNWH45DY
ly9zPMPb+ar2yr7K+25wHJ7rbUUGtxUw6xwplqNKQRoDDkDtFZRnZhQo7Gpt65DI
BC4eMsC1jl0u0zFmvUjdsoslfcUbID3/DxOmT/sjEKcPyhiygurx1kXVU9YWBOv/
dwpcFhhwnk0HHcM36HmtgEed5sZer8U9C4+DCoQi+I7nn8V4WF7yEsOWkW/XH/26
oQvB7gCoq0vAB2mypZDlVAQRi7h1OewYmC/U38/R18DYEYxU0cfGPkBOELa/B5Jr
xheOocNlJqSfySCvM7bbWbsELySyyPsic+V/SCrYgpoTJuoy0DUfj6Mu5Kiji1Fw
LCE1
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:06:34 2024 by rpki-client on console-ams.rpki-client.org