Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5QiUrfUBOM9ubHjVOCRA6rFAYQ.cer
File: j5QiUrfUBOM9ubHjVOCRA6rFAYQ.cer (raw, json)
Hash identifier: 9VsHVx6GvQgI3/TRoDWtqhnjlH/9NRWh9JI9Xhh76e8=
Subject key identifier: 8F:94:22:52:B7:D4:04:E3:3D:B9:B1:E3:54:E0:91:03:AA:C5:01:84
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D981
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918127C/E697112A06AD11EB9821057FC4F9AE02/j5QiUrfUBOM9ubHjVOCRA6rFAYQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918127C/E697112A06AD11EB9821057FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jan 2024 16:52:38 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 2406:8600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 21:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121217 (0x1d981)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 19 16:52:38 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A918127C/serialNumber=8F942252B7D404E33DB9B1E354E09103AAC50184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e4:8e:4a:e2:e1:c6:ad:ff:cb:60:e4:be:c5:
e8:0d:b8:24:15:dc:bb:26:2c:94:09:c2:ce:95:cd:
17:3d:a3:63:45:36:52:96:75:53:b7:1b:db:9a:5c:
c3:06:ad:f5:c8:7a:b9:6f:41:b5:f8:da:3a:b3:66:
22:ca:6f:44:37:f2:ec:4e:cd:ca:88:01:6a:a9:cd:
69:27:c0:61:68:39:30:93:67:ba:c7:00:fe:b4:d8:
16:8d:6d:11:59:97:3e:0a:d6:07:00:46:e8:85:d4:
e8:c6:17:23:43:27:bd:97:f9:52:4b:8e:f7:c4:c8:
61:da:5b:62:96:a5:ba:b9:ca:6c:e4:30:79:65:51:
cf:8e:a3:0b:b8:f3:ba:0c:b0:b3:8d:99:c7:ad:e8:
2b:c5:ce:67:40:ca:62:12:41:f8:bf:cb:eb:38:0d:
6f:86:3a:09:81:5c:a3:b9:55:83:4b:fe:65:a0:ab:
d8:9a:5c:fc:f1:29:2c:d3:76:8b:ad:2e:9b:7c:ad:
48:86:f1:e4:8a:fb:08:6b:b3:85:33:f6:94:c0:82:
da:82:d2:7f:c1:ce:51:df:9c:b8:5c:26:77:09:36:
ee:92:14:f8:f0:98:ab:eb:41:d0:c7:0b:46:9c:a3:
09:64:dd:c9:ac:03:54:0d:1d:16:8d:d6:31:b7:f4:
2f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:94:22:52:B7:D4:04:E3:3D:B9:B1:E3:54:E0:91:03:AA:C5:01:84
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918127C/E697112A06AD11EB9821057FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918127C/E697112A06AD11EB9821057FC4F9AE02/j5QiUrfUBOM9ubHjVOCRA6rFAYQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8600::/32
Signature Algorithm: sha256WithRSAEncryption
8e:58:04:a2:9d:db:4e:88:e7:dd:f6:68:c7:c5:7f:1b:33:36:
d3:5b:6c:a4:19:d9:eb:6d:c0:57:97:77:44:6c:2a:e0:a8:d3:
e0:c2:d0:7d:8a:cb:b0:95:de:ee:75:eb:1e:a8:7c:d2:48:f4:
8c:c0:6e:f3:87:af:25:05:a3:a0:45:90:63:44:90:ac:3a:20:
35:68:fd:3d:79:a7:f7:d0:8a:97:c4:6f:77:ef:70:22:a2:3b:
16:ae:96:f8:9d:ba:e7:99:ac:2c:18:f4:1c:d2:4b:e8:ee:43:
ab:c9:2e:4b:61:b2:f2:49:e4:b0:4f:e7:9f:d5:33:49:0d:b0:
c0:3f:b7:70:ab:32:29:9f:38:b3:23:d3:57:1a:65:9e:be:14:
cf:fa:87:b0:6a:fc:41:53:2a:14:f3:07:21:4d:d5:95:d1:3a:
fb:4a:cb:26:33:4f:01:66:c1:09:07:b7:dd:4e:d5:95:92:09:
53:94:42:7c:3b:7c:ee:35:7f:f2:c6:02:2c:9a:bb:16:35:0b:
78:ae:9d:df:0e:c8:01:d6:cc:5b:45:f4:3d:f6:e5:dc:65:61:
b4:e4:91:91:ec:7c:b6:7e:32:18:02:eb:aa:76:76:9c:63:db:
dc:b6:c0:87:bb:fc:33:f2:46:af:59:47:82:a1:a8:b5:56:ba:
ed:fb:70:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 22:16:50 2024 by rpki-client on console-fra.rpki-client.org