Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhzB2_q9QLZBTCPj39iRRVJ98yE.cer
File: jhzB2_q9QLZBTCPj39iRRVJ98yE.cer (raw, json)
Hash identifier: ughi1lhH5v+t1ncGkKtyutzlk49Z046QCxC8xaS+IzM=
Subject key identifier: 8E:1C:C1:DB:FA:BD:40:B6:41:4C:23:E3:DF:D8:91:45:52:7D:F3:21
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021F39
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186363/BD863D72AFAC11EFB886D651C4F9AE02/jhzB2_q9QLZBTCPj39iRRVJ98yE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186363/BD863D72AFAC11EFB886D651C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 01 Dec 2024 06:23:17 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 153470
IP: 2001:df4:afc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Jan 2025 09:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139065 (0x21f39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 1 06:23:17 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9186363/serialNumber=8E1CC1DBFABD40B6414C23E3DFD89145527DF321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3f:71:c6:d6:4d:ea:19:d5:e5:d4:89:b9:3b:
25:93:fa:36:f4:54:46:0f:1e:5a:aa:a9:3e:40:39:
15:98:63:75:97:90:f0:48:3b:f7:d9:90:08:d3:7c:
f7:1d:77:4c:17:f3:f8:e8:1c:4c:23:23:be:68:bc:
0a:e5:4f:96:ea:1e:b0:09:61:d6:0d:93:3d:16:e2:
16:a8:ed:00:41:12:20:04:83:f2:9d:a5:45:f7:c9:
a2:a4:86:ce:26:d8:10:5c:34:1b:da:b8:df:1b:d4:
7e:a6:c4:1a:7b:68:40:9e:23:0d:8c:01:14:3a:a9:
b2:94:e6:1b:0b:2d:38:cc:1c:71:0b:83:e4:7b:24:
e4:ab:ab:f3:cd:25:2b:c1:60:05:fe:47:42:40:2b:
96:68:04:f6:73:2d:66:de:05:1f:2f:8d:33:49:c2:
42:8a:ab:f0:81:d1:85:61:de:19:70:5d:76:d1:69:
ea:58:9d:18:1b:7d:a9:2c:19:15:52:cc:4b:0a:f6:
16:e4:47:d9:af:d7:4e:0b:ff:ef:4a:1e:b4:ff:94:
e0:8a:cf:de:a5:ec:4c:39:19:95:e5:55:44:17:bc:
fa:92:55:c7:ca:55:a3:fe:1e:35:95:e1:3e:e0:bd:
e4:3c:ff:2a:b4:9a:eb:3c:06:cb:bc:4d:7a:54:00:
77:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:1C:C1:DB:FA:BD:40:B6:41:4C:23:E3:DF:D8:91:45:52:7D:F3:21
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186363/BD863D72AFAC11EFB886D651C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186363/BD863D72AFAC11EFB886D651C4F9AE02/jhzB2_q9QLZBTCPj39iRRVJ98yE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153470
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:afc0::/48
Signature Algorithm: sha256WithRSAEncryption
d1:60:59:27:09:7d:92:b3:88:c0:c3:24:9e:07:21:53:8c:4a:
46:7b:60:98:3f:1d:09:9b:7b:8c:a0:a3:84:da:f3:a8:67:b7:
ba:b9:98:d0:74:52:0d:24:7c:98:50:a8:af:d0:75:a7:14:ba:
3d:e6:36:d8:7f:cd:7a:b7:ea:81:9f:74:31:b3:e3:40:45:d3:
10:d1:b5:9c:1c:1e:d9:f6:26:3f:fb:41:ed:c2:73:26:56:0e:
f4:5e:c3:ad:fb:06:d7:bd:49:6d:6b:8c:45:67:66:28:0e:6d:
a1:b0:6b:ab:97:63:fe:4a:40:96:1b:6f:c9:be:f5:8c:c9:7f:
6b:26:8c:1c:41:25:3a:e6:ae:a9:b4:44:fa:6e:d5:95:8b:93:
aa:56:fe:60:88:8e:2f:73:98:2c:02:d0:a5:ed:91:58:42:5a:
a1:3a:0b:5a:dd:56:0d:09:72:b9:05:dd:86:dc:84:53:67:27:
9a:4a:67:fa:d4:27:1f:1e:86:21:fe:92:bb:6b:14:75:dc:57:
b9:73:e8:8f:1b:4a:9e:93:71:92:ce:90:c7:01:cb:83:75:bf:
67:e2:95:31:9f:f3:41:8b:6e:49:3c:08:9b:c6:d3:d4:cc:d8:
ca:e7:09:6f:11:cb:03:9c:5d:15:23:cd:2b:f9:c0:4c:67:5d:
a3:1f:a9:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 10:23:17 2024 by rpki-client on console-fra.rpki-client.org