Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWukX_AnbCxgSgM7B82k5MDfFdc.cer
File: vWukX_AnbCxgSgM7B82k5MDfFdc.cer (raw, json)
Hash identifier: KBDYKtCaFg3dbbGtsSUYK3Z6LOTNjFkZ/HaSXdkAFx4=
Subject key identifier: BD:6B:A4:5F:F0:27:6C:2C:60:4A:03:3B:07:CD:A4:E4:C0:DF:15:D7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DFFD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9159B6F/348AA908D09C11EE80AB8D7EC4F9AE02/vWukX_AnbCxgSgM7B82k5MDfFdc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9159B6F/348AA908D09C11EE80AB8D7EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 Feb 2024 09:33:08 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 138032
IP: 2001:df3:7c40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122877 (0x1dffd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 21 09:33:08 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9159B6F/serialNumber=BD6BA45FF0276C2C604A033B07CDA4E4C0DF15D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:14:4f:af:79:11:17:49:ab:fc:db:4f:c8:f5:
77:93:0c:6d:bd:44:64:8a:1a:b0:30:66:9f:38:a6:
b4:fe:2a:36:ed:97:74:ad:04:37:43:af:66:a2:7b:
d2:ff:34:d1:cd:02:83:0c:e1:62:94:de:32:ef:0d:
60:86:66:81:bf:74:e8:52:23:ad:f5:68:56:e0:71:
74:8e:48:12:8a:b2:9c:95:73:e1:c5:c2:1d:b1:4f:
fd:7e:17:21:a2:7f:61:76:90:26:14:c6:08:84:3a:
55:d7:64:4c:bf:f2:ff:6f:90:d0:3d:de:73:8b:5e:
90:64:87:f2:eb:c9:12:33:82:2c:af:db:fa:71:4d:
a8:b1:82:33:94:a5:73:86:ed:95:17:f4:41:0d:ce:
a1:a9:22:2c:f1:11:2d:97:4a:64:20:5a:e4:0d:e9:
f5:95:b4:0b:91:cd:32:b1:67:9d:ee:17:84:03:44:
60:18:01:ab:40:af:a8:25:3b:15:e5:84:b4:e2:00:
68:47:e8:70:f6:e8:fe:ae:df:50:65:60:69:29:ad:
0c:db:38:cd:bb:02:d5:00:ef:c5:f5:8b:c5:7a:5f:
57:06:81:21:76:35:a9:2e:49:1c:be:2d:58:fe:b1:
a6:8c:f2:7c:a6:d8:2c:38:aa:cb:bd:d6:df:07:d5:
ce:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:6B:A4:5F:F0:27:6C:2C:60:4A:03:3B:07:CD:A4:E4:C0:DF:15:D7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9159B6F/348AA908D09C11EE80AB8D7EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9159B6F/348AA908D09C11EE80AB8D7EC4F9AE02/vWukX_AnbCxgSgM7B82k5MDfFdc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138032
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:7c40::/48
Signature Algorithm: sha256WithRSAEncryption
bc:4f:a9:68:e9:52:87:c6:e8:9f:eb:70:bd:77:f4:ab:24:84:
7c:65:a6:55:0c:27:fc:41:6e:44:6a:e3:8e:28:24:d9:94:89:
6d:ea:0f:7a:ff:ba:53:30:e4:b9:b0:b4:01:45:10:e2:b5:6f:
e4:bb:87:7a:bb:45:af:a1:13:78:48:d9:f1:4a:d4:93:03:5b:
09:9a:80:f4:ee:5a:83:a0:bc:6b:a0:34:97:93:14:fd:26:47:
30:f4:42:3e:a6:12:e8:7b:18:40:cf:ba:4e:32:51:a3:e1:d2:
54:2c:85:ba:60:29:ea:de:76:fc:5b:2d:ad:0b:c5:30:93:f2:
53:0c:c5:a0:28:2e:0f:d3:7c:ae:f8:7c:b6:a8:1e:35:29:6b:
37:2c:78:eb:aa:69:81:6a:03:e7:f6:fd:45:10:0c:1e:ff:ba:
8c:d0:2a:15:e7:13:b0:10:ca:1d:27:4b:b9:9a:f6:d5:53:55:
6e:37:8e:0e:c2:4f:9f:3b:b6:18:93:8a:a9:87:8b:93:86:91:
e9:37:79:bd:4e:d9:5d:7e:ed:d4:c6:91:b1:16:08:3b:6d:e6:
74:01:2b:91:5f:6c:4f:fc:5a:eb:02:23:12:80:38:29:09:18:
29:f8:c3:29:bf:9a:20:0e:72:71:28:78:8f:65:de:a0:c3:bf:
de:13:a7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:05:36 2024 by rpki-client on console-ams.rpki-client.org