Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer
File: jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer (raw, json)
Hash identifier: 4PPvh+WSFSsGagLRZdz5zEps/0HUewGdqcbMWvvO7Mk=
Subject key identifier: 8D:4B:F7:9A:41:9E:EC:0F:A5:33:E5:FC:A5:0F:F3:72:A3:3C:B3:90
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0208DC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 Aug 2024 06:38:10 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 147006
IP: 2401:bee0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133340 (0x208dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 26 06:38:10 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A918497E/serialNumber=8D4BF79A419EEC0FA533E5FCA50FF372A33CB390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:04:aa:cc:bb:57:33:bf:b9:2b:82:b4:ca:83:
04:2f:7b:4f:e9:5e:a9:3d:81:72:76:43:b4:09:af:
4a:68:46:ae:c8:c0:00:f0:ae:b9:84:8a:31:91:c6:
a6:a0:e2:4a:0e:04:d7:db:0a:84:10:4e:10:a4:79:
ce:ba:dd:d6:9a:65:99:44:11:80:97:19:76:b1:b7:
b6:2a:51:bb:97:40:75:12:a4:ea:c3:08:3d:6c:1e:
a4:3a:84:58:4c:02:1a:c9:95:d7:c0:b8:82:fd:b0:
92:1b:8c:c8:33:7b:90:6a:d9:6e:d7:55:3d:c6:8e:
6e:1c:91:6e:90:e4:1e:c3:63:a7:8b:64:80:b3:4d:
03:52:50:3f:84:c5:6c:08:0e:7f:11:65:5a:31:fa:
9f:5d:af:11:cc:4d:c2:e7:51:cc:d8:bd:1b:97:ab:
22:d4:b5:8d:c6:8e:88:6f:51:02:07:47:f5:70:30:
8c:26:65:2d:19:df:c4:66:9c:eb:03:18:b7:12:d8:
91:23:d9:ba:b2:0f:b2:d4:17:4d:5b:1a:38:e4:5b:
66:e2:0e:1a:c1:09:78:36:3a:69:7e:a6:59:f1:7c:
e1:7b:1f:dc:69:3f:80:8e:62:dd:2f:59:81:77:9e:
7a:52:7b:7f:67:3a:1b:bd:86:dd:a3:f9:2d:c1:e1:
5c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:4B:F7:9A:41:9E:EC:0F:A5:33:E5:FC:A5:0F:F3:72:A3:3C:B3:90
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147006
sbgp-ipAddrBlock: critical
IPv6:
2401:bee0::/32
Signature Algorithm: sha256WithRSAEncryption
2e:94:d7:74:36:c5:97:b0:91:81:d3:16:36:f0:87:26:29:52:
28:aa:3d:28:3e:2b:98:30:9a:98:1e:3d:e9:20:ec:1e:48:64:
01:e0:64:14:15:94:76:ce:f7:1e:7f:f9:d5:4d:b6:64:ce:9b:
09:f4:88:d1:44:0b:cc:b7:a6:a1:46:90:7a:21:d0:b9:cf:86:
38:f7:63:5e:76:b7:e3:ca:1f:e6:45:8e:fa:18:10:d3:c0:a5:
74:c6:31:ea:23:8e:4e:7b:07:e8:45:cb:8d:47:60:a0:2f:ce:
43:0a:f9:93:4a:d7:d1:a9:73:c4:6b:c2:76:4e:18:1a:7f:af:
d8:44:70:0a:b0:b3:b6:59:9d:b0:58:a4:6c:91:83:f5:41:69:
60:b4:62:02:7d:c3:1d:b5:01:82:98:a2:f6:8f:cf:6c:ae:1f:
1e:71:a4:31:b6:1b:41:d3:3b:ce:83:e4:99:df:64:c7:5a:75:
97:88:6a:ca:ef:d9:eb:40:55:65:3a:72:b1:c9:31:8d:20:53:
35:1e:f4:ae:0c:87:4b:1a:48:a3:94:ba:19:e2:5d:71:4e:bc:
5a:86:48:2f:7a:f3:c1:34:5e:43:6d:fd:35:b3:c5:1d:81:8d:
4e:bb:f5:a9:11:56:07:47:bb:12:4a:94:8d:06:2f:6b:4b:78:
d8:37:29:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:22:03 2024 by rpki-client on console-fra.rpki-client.org