Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer
File: sboYaLp865TN1k8FdBOaAaULkNU.cer (raw, json)
Hash identifier: 1pAkWPV0o/DUMm4OhiYbfPZmIXr+tT7cRAXa8qoXwxw=
Subject key identifier: B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0220FF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Dec 2024 02:16:18 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 152169
IP: 2401:dc20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Jan 2025 09:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139519 (0x220ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 6 02:16:18 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91DF233/serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:46:f1:e8:df:22:db:d0:3f:fe:86:88:52:fb:
b2:b4:b5:42:1f:18:4f:20:cf:60:45:33:e9:e0:5d:
6c:12:aa:9a:58:a5:71:82:b5:fb:21:a9:63:e7:b8:
46:c5:d2:74:e1:0f:1e:3e:3c:77:ec:78:87:e5:07:
58:11:82:a7:96:76:98:44:d4:4d:d2:0e:1e:a6:37:
ba:aa:66:b4:85:8c:41:77:57:e6:c6:71:c3:f5:19:
58:31:b9:01:52:0e:94:80:1e:45:df:2d:5b:fe:41:
24:08:ab:44:4b:f6:72:21:f6:64:99:a5:c6:07:42:
1b:c1:41:3d:ce:86:9a:3b:55:42:f9:ce:b7:c6:48:
85:2b:e1:4d:61:8c:44:0a:99:bd:79:62:a7:8f:c0:
54:41:29:88:e4:cc:dd:15:e4:27:5a:65:9e:2d:e0:
c3:9a:86:68:8a:70:74:e0:a5:2b:d1:b0:7f:3f:fb:
d0:61:38:eb:68:51:d0:6e:da:8e:d9:cb:d6:51:41:
04:d4:df:45:c7:06:41:39:86:e5:14:e2:01:21:3f:
2c:7f:e3:44:5c:39:2a:0b:da:71:e2:13:4a:48:af:
7b:d6:76:dd:81:de:84:0a:90:e7:07:ad:fa:1b:8b:
db:7a:a1:1a:20:e8:db:1d:76:53:87:05:51:36:0a:
12:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152169
sbgp-ipAddrBlock: critical
IPv6:
2401:dc20::/32
Signature Algorithm: sha256WithRSAEncryption
d1:e6:99:35:ec:14:03:c5:71:39:54:d4:f1:2c:63:24:d7:3e:
89:2c:72:1f:18:dc:a8:60:4e:81:28:a5:14:00:b3:73:6f:e8:
b1:94:4d:39:92:64:fb:55:46:aa:43:81:59:f6:c1:fc:5f:b8:
85:af:24:c8:da:c0:51:59:f4:11:a3:05:66:ff:e6:83:ab:be:
4a:d1:c7:b3:3b:a1:f3:57:9f:8e:50:53:db:84:45:c5:be:46:
c1:3a:b3:eb:2c:86:e1:0c:60:06:9c:f0:9c:7d:eb:bf:83:b6:
7b:a2:39:75:a6:33:b8:cf:e7:dc:4e:cd:6f:d1:56:00:c3:7c:
9f:21:bd:76:22:5e:61:07:c1:10:7b:cc:48:f5:7c:ec:8c:20:
81:95:22:3d:d4:08:96:dc:04:95:83:50:d4:7d:68:39:14:86:
ea:22:29:17:88:2a:3d:69:b6:6d:27:df:97:21:8a:a4:93:32:
0c:16:5a:e4:ea:ed:d2:f1:80:b0:d0:2b:48:a7:35:ca:4c:3f:
e4:d8:98:01:0a:e5:89:de:b8:5b:fd:0e:97:9b:33:6d:ef:29:
32:61:12:15:d1:90:e5:9c:c9:85:7a:32:17:d5:59:a2:c9:9b:
86:f1:77:eb:b4:5d:66:c7:34:22:8f:3c:2f:51:fb:00:2d:11:
46:74:3b:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 10:26:08 2024 by rpki-client on console-ams.rpki-client.org