Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/veGzlV8WJd92Ja9xy7eUuHw53Gc.cer
File: veGzlV8WJd92Ja9xy7eUuHw53Gc.cer (raw, json)
Hash identifier: p2+QogfEKW78TATBU8h48iUfOyAaAQGN/1SBeXwkfgk=
Subject key identifier: BD:E1:B3:95:5F:16:25:DF:76:25:AF:71:CB:B7:94:B8:7C:39:DC:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FAC7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913387C/2C7D79E81D8911E28A693DE208B02CD2/veGzlV8WJd92Ja9xy7eUuHw53Gc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913387C/2C7D79E81D8911E28A693DE208B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 24 Jun 2024 14:33:17 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 4844
IP: 210.23.0.0/19
IP: 2406:f000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129735 (0x1fac7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jun 24 14:33:17 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A913387C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:14:00:46:37:22:8d:d9:db:c5:43:de:cb:
86:f0:dd:0f:ec:c2:0a:4b:4a:0b:1f:ec:9d:64:38:
24:53:ee:a5:08:06:94:f5:da:cf:d5:c5:85:ad:c2:
d0:76:8f:58:c0:17:19:14:d8:94:f5:a3:67:68:6a:
15:e4:09:9e:ef:ba:e0:05:ec:f9:ec:c9:32:fe:d6:
a3:30:2b:0d:f6:cb:18:84:12:73:dc:db:32:81:5a:
42:ca:8a:f5:ab:13:60:e7:0b:f9:83:5d:56:fa:82:
ec:60:cf:cb:85:a2:4b:2b:4f:8c:02:a2:b4:e1:e6:
5f:7c:33:87:6a:9a:3c:4b:d8:aa:7e:e2:64:0e:cd:
f4:e0:de:4a:c0:3c:96:60:33:54:9e:43:1c:df:78:
b6:b9:a0:ff:98:6d:c6:f4:8c:78:d0:ff:ec:7f:d9:
3f:b8:ce:30:cd:3b:c1:ea:fb:f9:e5:da:2c:05:2b:
5e:4d:ff:34:64:49:e0:62:10:fe:41:4c:5c:7d:dd:
77:ba:15:d2:38:cf:d7:16:2e:e1:e1:d2:7b:7d:3f:
1b:60:07:c2:d4:fd:61:36:52:ce:37:01:59:db:76:
0b:8f:c4:db:61:2f:47:06:39:2d:c9:dc:86:d5:40:
67:19:eb:6d:82:01:33:08:5c:0b:83:90:ce:6f:e9:
55:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:E1:B3:95:5F:16:25:DF:76:25:AF:71:CB:B7:94:B8:7C:39:DC:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913387C/2C7D79E81D8911E28A693DE208B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913387C/2C7D79E81D8911E28A693DE208B02CD2/veGzlV8WJd92Ja9xy7eUuHw53Gc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4844
sbgp-ipAddrBlock: critical
IPv4:
210.23.0.0/19
IPv6:
2406:f000::/32
Signature Algorithm: sha256WithRSAEncryption
11:8e:11:6b:01:4e:65:5a:96:9f:d3:1b:a1:54:d7:b3:5a:64:
6e:47:cf:eb:15:ad:28:f6:e3:52:ec:8f:8c:c2:ad:94:4d:f9:
ef:26:1c:62:7e:97:79:c5:54:ae:78:e8:30:a4:3f:6d:e9:04:
0d:f7:34:88:56:73:cf:ae:a9:bd:93:4e:82:33:7b:a8:96:57:
fb:88:3e:05:d2:39:d4:94:10:cd:af:19:57:19:86:e0:3f:09:
ea:77:c2:49:e9:cc:9f:21:27:56:ea:45:2f:f5:74:6e:35:00:
9a:d1:db:80:08:18:70:ba:2f:79:b1:17:e0:4f:38:77:f1:c2:
61:32:63:93:a2:7a:a9:c3:fb:85:87:d8:fc:e4:ee:bd:a9:78:
1f:00:f5:49:6c:2b:bf:60:c3:fc:ff:cf:d5:96:45:89:e5:7b:
61:cd:4a:6c:67:47:7f:b1:d9:f2:af:02:82:87:27:28:e7:24:
68:29:68:91:f3:dd:cf:db:44:4d:c1:1c:00:01:10:8a:c9:02:
35:a8:1c:1c:49:89:57:5a:fd:2d:2e:66:87:0f:2e:8d:c7:0b:
84:8e:1c:f2:9d:df:94:81:61:d6:6e:ab:bf:59:cd:f8:46:c4:
86:f8:fd:2c:74:9d:c4:ff:50:15:c0:62:ab:d6:c4:9b:71:1c:
97:48:75:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:02 2025 by rpki-client