Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer
File: rOKNq-U2SWN_puTjId4bY0Y7g88.cer (raw, json)
Hash identifier: aDkml00I6yh1l6j8FiTESQJuVhpjx4tOVtFycERPYe8=
Subject key identifier: AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E028
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Feb 2024 10:53:44 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 152585
IP: 2001:df3:7ec0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122920 (0x1e028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 22 10:53:44 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9186249/serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:65:0e:b0:0c:51:bf:30:54:fe:ef:36:e9:53:
ed:30:d8:45:bd:71:e4:42:f5:21:3c:b0:85:64:6d:
cd:c9:00:cd:4f:6b:82:26:94:f0:09:bb:e2:a1:74:
25:eb:81:7e:e5:7c:78:22:d7:c6:bd:ad:d9:6a:93:
39:12:e6:18:97:19:02:46:13:89:cc:fd:21:72:41:
d2:3b:2a:27:7d:56:2d:88:64:5a:a5:f4:d7:69:b4:
f8:a5:bf:9b:eb:39:a0:b8:3e:4e:8d:69:90:c3:f2:
19:74:65:d7:86:a3:51:ac:84:54:10:12:23:7c:d8:
6d:c5:e2:39:f3:13:09:63:b2:86:f1:61:05:4a:e6:
32:a1:ff:bf:05:e1:9d:ea:fe:80:f6:51:3c:06:fa:
4a:dc:02:ae:64:0a:3b:08:22:62:ed:a3:b9:7e:e4:
b6:af:d6:f7:a2:c2:08:63:0d:da:0a:9d:d2:a8:5a:
f9:0f:5a:96:17:72:f7:f6:5b:71:f1:5a:6a:e4:74:
0b:df:2c:63:43:e8:84:b7:c3:9d:7a:a0:e9:31:38:
75:67:40:bf:bd:9b:f6:26:4d:b6:60:62:a4:4a:55:
51:38:34:80:c1:27:47:95:09:e2:86:77:f6:78:ad:
43:47:48:f5:41:04:09:06:78:82:cc:de:99:04:d9:
a2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152585
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:7ec0::/48
Signature Algorithm: sha256WithRSAEncryption
c6:d3:d4:ae:4b:6b:23:2c:05:dc:33:67:a6:6f:ee:3b:cc:b8:
45:80:2e:e5:51:82:48:cb:db:58:5d:3f:93:95:71:c8:ca:6e:
90:4a:28:39:1d:03:70:54:32:bf:7f:cc:99:03:1d:dd:48:2b:
af:60:32:f4:a6:19:e3:65:1c:57:6d:22:10:48:4e:b2:68:6a:
a8:a7:b1:59:9f:c7:27:d3:08:2b:31:3a:83:36:be:ae:60:f7:
cf:ae:e9:a6:3d:a0:bf:16:6d:c7:97:67:d9:ea:88:f1:48:35:
b2:07:6d:56:72:36:eb:68:b8:c1:17:7b:a6:fc:b9:3d:30:2e:
d2:c4:c0:bd:fd:7a:e0:9d:dd:1d:f0:3a:fe:2c:fe:f2:f5:21:
fb:dd:55:5f:eb:bf:53:1b:fc:80:e2:ea:e8:d3:22:de:09:99:
c4:bb:fe:88:7c:9d:e2:bc:09:8e:23:bc:d0:a2:7c:5f:4b:c7:
c5:57:d4:78:40:e7:9e:a1:2e:f6:8f:52:c8:d5:d3:7f:cd:60:
c4:2c:26:84:3e:ee:e8:53:f3:b9:35:a1:41:5b:ba:30:f7:1e:
d8:23:da:ba:7a:87:bb:7a:4e:28:b1:08:96:e8:9b:3c:46:cf:
d0:da:cb:2c:27:d3:fd:55:93:f5:33:a1:e7:fb:32:c6:59:54:
06:cb:a0:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:51 2024 by rpki-client on console-fra.rpki-client.org