Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer
File: lX5Qp1--UC844-2_P0qq5mWuFIs.cer (raw, json)
Hash identifier: RMOkZXxULcR5+Ao9MZICNxpQBx1IJ/pX9kv0dcTxS68=
Subject key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0211CD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Oct 2024 06:54:09 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 153055
IP: 2401:afe0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 31 Oct 2024 10:39:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135629 (0x211cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 3 06:54:09 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6f:77:d6:ef:bd:5d:83:f2:8c:3b:7a:51:6c:
7c:94:1e:c6:2f:32:03:71:50:6f:5f:77:7a:74:87:
1b:fd:87:63:1b:30:66:a2:5b:12:3b:07:0b:ec:6e:
bd:3f:61:9a:d7:93:87:f3:de:e1:92:7b:d9:2b:65:
70:8a:49:a6:a1:ca:00:50:57:1d:cd:3b:85:31:c8:
ff:e8:29:e0:0c:51:6f:6c:2f:c4:a2:6c:a1:0f:78:
75:f0:49:b1:9a:5e:05:e0:e0:52:4c:7e:fc:af:aa:
29:ec:48:04:29:e0:82:ad:20:7d:e9:43:3b:5d:36:
23:3e:b2:7e:e8:a3:bb:c9:c1:c0:30:4e:e3:09:e3:
e4:ed:c9:04:20:50:a1:a7:7f:aa:33:06:d3:b6:99:
16:cb:f5:0d:7e:32:c5:4e:8a:f9:d4:34:1c:02:0d:
62:7d:26:9d:83:c2:b4:86:53:b7:43:22:04:61:9b:
bf:07:c7:c8:99:1d:08:a0:a9:25:df:c1:16:18:de:
05:97:18:c5:7c:2d:64:21:82:f9:25:75:20:a0:a3:
36:ad:6e:03:ad:9d:94:a0:f7:e4:bd:f8:34:37:b8:
13:30:4a:c5:57:53:87:2f:28:28:6e:18:c4:90:07:
a1:ed:b3:e2:b2:94:b2:a7:89:70:8a:18:b8:04:99:
a5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153055
sbgp-ipAddrBlock: critical
IPv6:
2401:afe0::/32
Signature Algorithm: sha256WithRSAEncryption
6d:26:96:2b:74:e1:cb:2d:07:21:08:26:bb:aa:e9:18:16:cd:
9b:63:b8:83:9c:cd:76:f2:7f:96:b3:73:70:08:e7:40:a1:48:
57:09:95:a1:b9:f1:4d:4b:24:d6:29:6a:dd:84:f7:7b:5b:69:
40:34:9c:64:40:7d:0e:ea:d9:49:7a:17:55:2e:f9:7e:8c:9f:
bc:1f:95:f8:7d:65:e7:a9:f3:52:27:fb:1a:d0:4f:68:80:43:
93:7c:6e:ca:ae:af:91:45:a2:10:8f:56:76:3c:d7:12:6b:d5:
3f:97:d9:7b:28:0b:68:ff:b1:2c:a6:6b:07:37:16:ea:d2:cc:
4b:2e:73:44:c1:60:2e:cd:99:5e:d4:2d:35:25:4b:fa:32:81:
19:cc:9c:54:7f:eb:b0:f4:86:7b:91:2d:96:21:a7:93:41:5a:
a8:19:1d:1f:24:a9:07:16:5c:0e:9f:15:2e:ea:78:91:1c:f9:
be:c4:27:81:87:60:a5:b4:f1:b9:88:72:da:b1:c9:fb:56:de:
bd:53:4a:0f:05:2a:ca:e9:24:9a:5d:d9:72:ae:05:cc:1e:28:
01:d6:51:a5:f4:d4:3d:ca:fc:42:3e:53:90:b5:80:c6:2a:3f:
65:c6:f0:d1:88:ce:5a:05:4c:40:d8:05:05:df:cc:d3:65:9c:
b5:a9:9d:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 11:39:44 2024 by rpki-client on console-ams.rpki-client.org