Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer
File: rHyecYIsBWGFGGRT-WCywejKlOM.cer (raw, json)
Hash identifier: Q6kXFPtpmAXimp0YZWKdz9M41ZlQHUqR+3WUjCfwmnY=
Subject key identifier: AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F6B6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 03 Jun 2024 03:14:07 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 45947
IP: 202.43.84.0/22
IP: 203.22.215.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128694 (0x1f6b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 3 03:14:07 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91F4BB3/serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cb:67:fb:a5:ed:50:cd:bb:78:e9:a5:31:be:
df:5f:a0:07:d9:65:1f:21:45:fd:1a:98:45:c1:7b:
73:10:d0:98:d1:be:a9:07:c4:12:29:af:83:d6:85:
fd:33:f9:49:e1:55:6f:de:d1:5a:01:8e:96:fc:50:
af:be:d4:5e:db:e0:4f:c4:14:20:80:13:0e:fd:15:
05:e5:c2:40:38:88:ef:94:c7:11:b9:6d:eb:57:23:
c3:a9:42:1e:57:3a:55:bb:9e:1b:c7:74:a9:8e:cc:
49:c7:30:55:69:99:5e:2c:6a:ba:00:dd:41:98:bc:
99:6a:81:de:b7:9a:00:f3:0c:b1:db:e9:f1:40:b3:
3b:d0:ae:e2:77:ee:31:0c:3c:ef:ab:07:6c:1a:44:
1d:56:6c:be:21:2e:b7:62:63:c1:31:37:8a:32:a0:
fd:e2:11:ae:81:55:4e:e1:21:99:cb:74:56:0d:f5:
f2:a1:b6:c5:b3:fd:75:76:b2:c8:5f:15:b6:38:18:
03:3b:bc:31:8a:42:82:68:04:22:ac:0c:19:e0:a8:
93:cd:11:c9:1b:59:09:e5:49:a9:3f:a1:86:53:02:
34:74:aa:3f:77:3d:81:fb:42:2c:ad:96:b5:98:8a:
6a:69:8d:69:e7:02:18:cd:d6:88:67:8c:e2:8b:85:
7f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45947
sbgp-ipAddrBlock: critical
IPv4:
202.43.84.0/22
203.22.215.0/24
Signature Algorithm: sha256WithRSAEncryption
04:06:3b:23:dd:69:2e:88:d8:ea:00:36:05:dd:0e:58:50:6d:
8e:d5:35:44:ff:54:c4:d9:9a:d3:2e:fe:e8:d0:da:f3:4e:63:
f3:dd:e3:dd:c5:a2:c4:21:05:30:d0:d8:b9:49:52:9e:16:15:
a9:8f:27:e7:48:ef:31:1b:dd:fd:7b:ce:cd:9b:de:64:4d:05:
a3:6b:7b:17:04:1a:1d:ad:e7:1c:7f:75:12:f7:e0:3f:3c:f2:
d7:ca:0e:9f:6a:5c:1c:fb:32:49:a4:6a:1b:cf:65:bb:b0:ac:
35:96:e7:9e:d0:c2:73:8b:25:1f:56:7b:bc:18:8c:6a:58:5a:
60:87:db:9d:38:bc:fd:07:f5:1b:6c:7f:11:be:a9:d0:61:7f:
10:c5:ff:24:bb:8d:1c:5f:41:9e:0c:04:0e:71:c1:40:43:c7:
d7:22:8e:72:29:f3:3a:46:fe:3a:b6:4c:e1:c4:d4:5e:39:56:
fe:f3:6b:17:32:c2:3e:3e:5a:e4:1d:39:8a:c9:10:d4:01:15:
84:0e:1d:45:d7:91:a8:55:f1:ef:22:b3:23:bd:b5:5f:5b:be:
59:dd:f2:a5:5d:ec:d5:c9:bd:57:9a:b7:22:f4:99:93:c7:4a:
0e:ec:eb:75:0d:8e:a1:12:07:ee:2e:7a:fd:9b:9c:72:1b:5f:
2c:92:5e:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:05:32 2024 by rpki-client on console-ams.rpki-client.org