Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vO4SgFOJtXjDX9i0JVpggdJoP3w.cer
File: vO4SgFOJtXjDX9i0JVpggdJoP3w.cer (raw, json)
Hash identifier: 27LZKNUdbbwjpQxXkQjHO1NF58WW/+kBUP3tE4ZcQ7c=
Subject key identifier: BC:EE:12:80:53:89:B5:78:C3:5F:D8:B4:25:5A:60:81:D2:68:3F:7C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F6FF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Jun 2024 02:57:19 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 152588
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128767 (0x1f6ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 4 02:57:19 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91B4B33/serialNumber=BCEE12805389B578C35FD8B4255A6081D2683F7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:83:ac:31:fa:c5:8b:05:5a:fe:ae:ab:b2:00:
00:ab:86:4e:ca:6e:be:c7:54:19:0c:84:e7:8b:2e:
33:b1:e0:f3:67:6d:70:95:0a:95:0e:28:0a:72:8b:
2d:70:52:bf:52:6e:54:1f:2c:98:3b:bc:ea:7c:9a:
c2:32:46:ce:24:41:22:7b:3f:0a:28:48:bb:e2:38:
e2:e7:14:2a:e3:57:50:9b:81:a1:6f:fc:38:56:c4:
57:71:0b:57:c9:59:5f:05:40:99:37:ff:96:5b:46:
6c:82:e1:77:c6:a8:ad:30:c1:6c:7e:46:16:5a:e2:
ab:83:e9:5f:fa:f9:a0:c7:06:7f:03:e6:30:a9:e9:
f0:16:ec:e4:22:b3:00:18:cb:22:b1:44:26:84:aa:
ac:3f:fb:8b:94:17:83:14:c1:32:7e:f2:ec:1b:61:
08:c5:54:95:37:7f:6b:fc:cf:ca:e8:9b:c4:b2:c2:
78:fa:e3:76:b7:3c:11:39:73:f6:90:f2:bb:5e:5f:
75:4f:20:48:ee:5f:42:97:ce:f9:a9:24:70:04:58:
dd:74:91:fa:9b:a3:ee:0d:db:4e:43:1b:9f:35:1b:
ed:cf:e4:78:b0:f7:6c:12:6b:43:9e:0f:dc:31:89:
1e:4a:2b:38:61:d0:72:54:65:d4:f2:2f:d1:e8:07:
66:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:EE:12:80:53:89:B5:78:C3:5F:D8:B4:25:5A:60:81:D2:68:3F:7C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152588
Signature Algorithm: sha256WithRSAEncryption
b8:e4:2c:5b:61:39:85:5b:59:74:b8:77:31:ab:79:cc:e3:6c:
96:c7:8e:24:73:75:14:ca:30:cb:0b:53:19:cd:9b:99:e7:a3:
e0:59:7e:98:9c:47:ca:a7:33:a6:96:46:df:7e:97:ab:7c:78:
dd:c3:c0:f9:c7:b4:54:2a:cd:7d:b8:29:40:4b:8f:9b:7a:bc:
c5:c1:6b:83:cf:47:46:33:14:a5:f1:ac:95:03:03:49:84:71:
32:0f:67:c6:33:29:d8:95:6b:f2:95:6a:1c:37:d4:c3:aa:00:
df:79:42:89:ed:ff:9c:1f:8c:2b:05:56:92:f8:eb:79:c7:4c:
04:b8:6d:37:66:41:78:fb:bf:85:5b:ba:77:0f:d9:df:ca:d4:
d5:80:78:f9:e5:83:62:79:8c:b5:9d:d6:00:20:06:58:5c:c8:
61:4b:d9:51:6e:63:ff:3e:66:d4:53:71:10:63:1c:08:d9:1b:
35:a2:93:e5:f0:7c:e2:18:50:a9:e3:81:9d:ea:6e:6e:3a:ae:
46:be:58:42:7e:4c:a9:7d:86:e0:23:41:7c:f2:80:84:12:96:
98:80:5a:d6:78:4e:76:b9:04:d9:9d:44:8c:73:59:c9:4b:ff:
ca:8f:f9:18:a1:81:8b:d4:b6:d2:fa:58:ab:c3:be:4f:36:ad:
5c:81:40:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 22:42:14 2024 by rpki-client on console-ams.rpki-client.org