Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNoITiPVt1Cao6ktrKCxrcnZ-0g.cer
File: jNoITiPVt1Cao6ktrKCxrcnZ-0g.cer (raw, json)
Hash identifier: tePdvG7eR4cuSk6AzCjcUP60K2oaq5WEvEPV6+KZgLQ=
Subject key identifier: 8C:DA:08:4E:23:D5:B7:50:9A:A3:A9:2D:AC:A0:B1:AD:C9:D9:FB:48
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021640
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91684D0/DCCD58B65E8F11ED8C996963C4F9AE02/jNoITiPVt1Cao6ktrKCxrcnZ-0g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91684D0/DCCD58B65E8F11ED8C996963C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 25 Oct 2024 14:54:02 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 138162
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136768 (0x21640)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Oct 25 14:54:02 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91684D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:7f:c5:95:52:23:c8:66:96:61:3a:91:ad:b8:
7c:2a:0a:a7:da:99:b8:00:ef:0f:5d:63:ae:40:db:
61:53:6d:9e:18:a5:ec:b0:5f:c0:16:5d:a5:25:08:
a7:b1:f8:d8:16:9f:57:86:d3:a6:fc:e4:59:20:8e:
64:00:67:9d:08:08:36:d1:be:66:7e:05:bd:46:94:
da:f6:69:01:81:84:ee:4b:30:a1:e3:b0:e3:c7:d9:
50:31:0c:e7:fc:69:ea:d1:17:5c:d8:7b:d6:24:10:
3d:19:0b:64:ff:67:ba:91:d1:57:58:47:1d:b6:11:
4a:1f:11:b9:9c:1d:24:08:bd:fa:13:23:79:22:48:
43:20:0d:6f:88:60:ec:dc:98:3f:6a:06:09:d3:7f:
a8:8d:6e:9c:33:b6:20:d3:21:3b:de:36:40:1d:28:
9b:9b:e4:39:bb:34:4f:df:ff:2f:3f:ff:15:27:ce:
dc:0e:64:e1:48:d4:ea:85:7b:54:c8:b4:db:73:ce:
6f:ed:c2:f9:66:22:23:be:41:80:bc:af:20:aa:31:
5c:14:0d:68:b2:e4:2d:d9:8f:7b:d1:44:45:1f:64:
d2:b5:48:a3:34:e6:85:03:b5:77:b4:b0:ae:3b:02:
26:89:c7:7e:7a:9e:6d:a7:b8:77:fa:a0:ec:c0:d0:
8a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:DA:08:4E:23:D5:B7:50:9A:A3:A9:2D:AC:A0:B1:AD:C9:D9:FB:48
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91684D0/DCCD58B65E8F11ED8C996963C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91684D0/DCCD58B65E8F11ED8C996963C4F9AE02/jNoITiPVt1Cao6ktrKCxrcnZ-0g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138162
Signature Algorithm: sha256WithRSAEncryption
3d:cf:1d:1e:c7:d1:74:9b:6c:67:cc:3a:0b:78:84:6d:30:24:
3f:63:b0:4f:5c:ec:8c:a0:6f:6b:0d:44:ae:3b:da:9c:1c:ff:
96:19:4f:ce:3e:df:09:1c:ad:30:b7:4d:92:ad:f5:57:6a:7c:
9f:1f:bb:a1:b8:4b:63:29:76:87:2d:e7:cc:10:46:41:61:d6:
65:f0:96:74:7f:c8:1c:de:a6:54:75:94:41:ec:44:4f:f3:7a:
c5:23:d8:30:44:b3:a4:fd:f3:ef:c7:39:59:b6:61:f0:c2:21:
63:2b:4b:41:37:97:99:c1:c8:07:a3:56:a9:7e:7d:20:2f:63:
14:fe:55:ff:57:d2:b2:29:d6:0d:0e:0d:57:2f:b0:bb:1e:6a:
81:29:fa:3c:9d:fc:1e:51:92:3a:11:aa:34:e9:c3:ae:2c:79:
b6:95:48:89:86:fd:3d:4b:49:d0:6b:de:5f:ff:fe:79:4e:48:
2b:b2:d1:d8:dd:13:c6:24:09:0e:67:23:cc:5f:bd:02:32:42:
c2:8a:50:68:a3:40:ae:b3:4e:94:74:78:c8:4b:39:ed:17:9d:
8e:bf:4a:77:67:3e:35:51:39:46:b2:15:a3:ae:bb:d7:35:b2:
21:77:6f:23:1f:10:5f:6d:76:9e:71:19:40:62:52:41:01:77:
9e:8c:e2:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:42 2025 by rpki-client