Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ul-4WRv8DEUKTkTW_D47x76GVBY.cer
File: ul-4WRv8DEUKTkTW_D47x76GVBY.cer (raw, json)
Hash identifier: hMS+sdACFnoqyKuK5XghO2jxBMs7FruMj5LglwSpXuA=
Subject key identifier: BA:5F:B8:59:1B:FC:0C:45:0A:4E:44:D6:FC:3E:3B:C7:BE:86:54:16
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EDD8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A5213/5543BCC405E511EFAB461C09C4F9AE02/ul-4WRv8DEUKTkTW_D47x76GVBY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A5213/5543BCC405E511EFAB461C09C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Apr 2024 05:00:08 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 152650
IP: 202.6.86.0/24
IP: 2001:df3:8ec0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126424 (0x1edd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 29 05:00:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91A5213/serialNumber=BA5FB8591BFC0C450A4E44D6FC3E3BC7BE865416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7a:37:5a:c2:2b:09:20:bc:1e:ca:88:55:d5:
55:06:b1:cb:b3:92:45:fd:24:5f:e0:ba:48:1f:92:
52:af:45:68:46:2e:d2:eb:2c:03:85:13:82:3c:4e:
72:88:88:b3:c8:4e:96:40:e6:45:8e:e4:88:88:b3:
6a:83:04:34:36:33:a5:8f:0e:8e:69:44:0c:45:65:
40:f6:be:3c:96:fc:3a:d1:68:0f:fb:d4:4f:7b:06:
dc:25:21:df:41:6e:c7:85:90:39:51:b8:fb:6e:89:
9c:8a:d2:cd:63:d3:66:fc:9a:3b:b2:05:75:92:27:
64:03:da:2c:b2:2b:9a:d4:e0:1a:d1:5f:ab:11:50:
44:50:87:c0:b4:a2:2e:2d:5a:22:ae:51:4c:01:47:
a7:68:d4:54:e0:fa:95:4c:48:1d:e8:33:f9:73:e9:
6a:7a:8a:ea:cc:d4:38:1e:6c:83:92:7e:4a:0f:f6:
61:c1:1f:0c:09:58:7b:f0:0f:69:6a:ca:4b:b6:81:
0b:5c:9f:2c:92:b7:4c:14:d1:73:6b:b2:fd:67:4e:
a6:af:6a:f5:38:ae:ef:43:c8:6b:ac:be:71:3c:0f:
e4:68:03:db:3b:76:3b:cf:47:89:88:12:a2:33:93:
ce:bf:ff:89:b9:32:35:b3:95:c7:85:b9:53:72:39:
b9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:5F:B8:59:1B:FC:0C:45:0A:4E:44:D6:FC:3E:3B:C7:BE:86:54:16
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A5213/5543BCC405E511EFAB461C09C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A5213/5543BCC405E511EFAB461C09C4F9AE02/ul-4WRv8DEUKTkTW_D47x76GVBY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152650
sbgp-ipAddrBlock: critical
IPv4:
202.6.86.0/24
IPv6:
2001:df3:8ec0::/48
Signature Algorithm: sha256WithRSAEncryption
4a:98:15:25:89:8e:af:a8:b4:8d:b8:2f:55:e2:8a:73:ec:65:
e5:ad:78:cd:52:7f:0a:38:1c:03:64:06:2c:81:7b:e5:95:f9:
7f:21:55:a9:80:6c:b8:ab:e1:8a:b9:d2:62:d6:aa:61:0d:1e:
c0:1c:3e:7b:51:cf:21:25:e1:3d:f3:dc:7e:56:1d:70:69:fd:
ae:7d:31:e5:fe:0b:6e:41:bd:12:3f:03:af:f4:df:85:a1:d1:
7b:23:8d:ba:7d:44:dd:36:ce:fb:e4:ee:9e:c1:e3:74:64:36:
78:78:d0:ce:41:1a:c6:a0:f8:59:52:dc:8b:d1:4a:af:78:cb:
a8:dc:0f:c3:ce:15:b3:6a:a7:9d:6d:33:23:0d:f3:c2:4a:25:
dc:42:02:03:93:17:1d:17:5b:30:4b:cd:ec:67:15:84:86:ac:
db:cc:01:92:6f:d3:7d:93:c9:8c:f2:02:f8:2f:3a:81:0c:46:
20:cd:fe:86:64:d1:b2:63:a5:01:94:3d:d5:e3:69:95:2b:b7:
25:a1:ce:8c:11:a3:f1:1b:fe:b9:ec:1d:12:3d:7f:5c:1e:b6:
2d:d7:46:ff:26:aa:19:6e:94:f4:c8:3c:27:5d:9e:f0:ea:a4:
c9:3e:11:a3:42:27:d5:b8:ea:ca:d8:13:52:8a:0d:9c:be:56:
6e:d3:87:a4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:54 2024 by rpki-client on console-fra.rpki-client.org