Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer
File: myAvlYUe_EtkzjtAnGxgSzW0mNg.cer (raw, json)
Hash identifier: NGJhAmcULGixosJZLDnozVk6/njLIOVfQCC9kvS4RfI=
Subject key identifier: 9B:20:2F:95:85:1E:FC:4B:64:CE:3B:40:9C:6C:60:4B:35:B4:98:D8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020CCA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Sep 2024 23:16:08 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 103.141.24.0/23
IP: 2001:df0:e780::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134346 (0x20cca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 9 23:16:08 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91F5CE4/serialNumber=9B202F95851EFC4B64CE3B409C6C604B35B498D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:aa:26:7b:1e:02:10:91:6a:86:d8:26:e1:63:
45:81:af:b1:42:8f:0a:76:35:48:2d:43:96:8f:42:
96:48:93:ff:6f:13:bc:05:e0:21:84:ec:3d:39:a5:
8f:6f:f0:62:72:ab:d4:a3:8f:25:43:20:a7:8c:32:
82:39:63:3d:78:93:f6:49:95:6d:e7:44:32:2c:6b:
fe:5c:25:4d:bd:b3:70:95:f9:59:8a:f1:fb:e3:aa:
e9:58:45:99:14:30:78:f3:eb:21:29:b6:a6:98:f7:
dc:f5:1b:2a:54:a1:c4:70:96:70:36:b3:35:d1:48:
fe:49:1c:83:bc:2b:05:50:73:6e:e7:f2:37:44:8b:
4e:61:a2:87:1b:be:69:d5:d5:80:7b:73:bf:d0:e4:
72:c6:7f:c7:48:1b:84:00:1d:1f:b6:37:01:31:24:
7c:f3:22:bd:9c:30:94:a5:bd:2d:57:d7:67:0e:a1:
65:f5:7e:59:76:33:ea:1e:ff:9d:77:9b:2d:10:df:
bc:17:fb:dd:0d:5b:79:35:52:93:df:4e:7f:5e:44:
00:e3:c2:37:c6:e5:41:e1:05:d3:60:1d:ae:f0:9f:
cc:4f:47:3f:03:d9:4b:5d:e5:4f:f6:1e:67:b2:a1:
d8:b8:39:68:06:52:ae:39:92:7a:b6:20:41:1f:21:
0a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:20:2F:95:85:1E:FC:4B:64:CE:3B:40:9C:6C:60:4B:35:B4:98:D8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.24.0/23
IPv6:
2001:df0:e780::/48
Signature Algorithm: sha256WithRSAEncryption
4c:dd:ee:2e:2a:8a:27:5f:3e:5d:d2:73:2b:3a:4e:66:c2:5f:
3f:50:e7:82:5a:09:ed:36:6f:ce:69:5d:e4:53:cc:55:a5:18:
00:c0:2b:07:79:a0:e7:b5:93:5f:71:2b:fc:c7:f2:90:ae:c0:
b8:74:77:63:6d:c9:b0:6c:81:58:d2:46:c6:ab:3b:b8:cd:fd:
e1:ba:b3:fe:0f:f6:34:30:ef:69:80:9a:f7:ea:90:ca:c4:89:
80:c6:24:38:7d:36:e7:85:67:33:d4:2b:f6:71:fa:f7:da:d2:
5d:5b:e4:58:b9:13:be:d3:f4:f3:bc:79:7e:5a:a1:a0:46:e8:
f2:ea:b5:c6:bd:71:ce:6a:56:dd:75:13:3c:ca:d2:36:05:dc:
1b:e7:50:63:6e:65:00:b3:33:f7:ca:ab:fb:0c:54:75:7d:b2:
a4:75:5c:57:08:ae:a2:e7:3c:fc:b6:ce:25:3f:ba:74:ee:53:
fd:6b:c2:96:26:ec:ad:0a:3a:a8:f7:10:64:23:ad:d3:45:cb:
5f:d6:56:4d:ab:c1:48:7c:ec:f5:e9:cb:12:08:b8:ad:1e:2a:
bd:07:a7:42:27:8d:db:60:7d:fd:41:b0:20:92:97:36:d4:8e:
ed:4b:b4:7e:60:68:9c:7e:1b:da:b1:42:17:78:78:ba:9e:27:
40:31:55:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:02 2024 by rpki-client on console-ams.rpki-client.org