Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3nZvhDc9wJG_GlGNFiuyiQly44.cer
File: y3nZvhDc9wJG_GlGNFiuyiQly44.cer (raw, json)
Hash identifier: SgFy9oUKmbzx2b0aN7XD1oH+Mk8itN4ftMCGkvoujSY=
Subject key identifier: CB:79:D9:BE:10:DC:F7:02:46:FC:69:46:34:58:AE:CA:24:25:CB:8E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020C14
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912756D/8DCA32CE6B5411EFB8A8A61AC4F9AE02/y3nZvhDc9wJG_GlGNFiuyiQly44.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912756D/8DCA32CE6B5411EFB8A8A61AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Sep 2024 07:00:43 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153201
IP: 2401:bae0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 31 Oct 2024 10:39:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134164 (0x20c14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 5 07:00:43 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A912756D/serialNumber=CB79D9BE10DCF70246FC69463458AECA2425CB8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b0:58:33:06:9b:a2:7f:47:bb:98:e4:12:30:
b1:18:32:2f:e1:66:d4:03:43:fa:0a:f0:0a:95:75:
ab:2f:99:f5:a1:39:dc:64:20:62:a9:dd:21:b9:cc:
91:19:a5:37:14:12:7f:c1:b9:79:fa:5b:89:cd:82:
39:4c:ef:5f:be:9a:c6:34:bb:4f:dd:ff:61:da:a3:
c8:60:cc:62:89:42:5b:3f:0b:39:bf:dc:bd:78:79:
29:51:c7:5e:ed:9c:90:62:94:b3:56:87:4e:4d:9f:
c9:81:5b:f4:95:f3:81:f3:c1:56:01:ec:c6:71:9d:
59:ac:ff:f9:d1:89:1f:4d:19:fa:7d:14:a2:de:48:
7d:47:4c:90:19:84:af:97:16:40:2d:0b:1f:52:4a:
f5:8c:7b:d3:87:8f:f1:e7:d7:43:10:9f:d6:b1:bf:
fd:7e:43:b8:d8:b1:4e:fb:03:92:20:a4:9f:d0:fb:
00:8f:24:db:da:22:40:fd:7a:7f:32:7a:01:76:9c:
4f:d8:b1:90:d0:7d:9f:d1:5c:3b:c9:7a:b5:2f:5b:
14:79:8b:4a:cf:c2:17:6a:5b:0d:82:a0:a3:dd:3b:
5f:10:96:94:3e:9e:a1:b5:84:91:21:97:37:0e:5e:
b7:c4:63:b5:1b:4c:89:a1:2d:b3:03:53:42:07:08:
8f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:79:D9:BE:10:DC:F7:02:46:FC:69:46:34:58:AE:CA:24:25:CB:8E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912756D/8DCA32CE6B5411EFB8A8A61AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912756D/8DCA32CE6B5411EFB8A8A61AC4F9AE02/y3nZvhDc9wJG_GlGNFiuyiQly44.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153201
sbgp-ipAddrBlock: critical
IPv6:
2401:bae0::/32
Signature Algorithm: sha256WithRSAEncryption
9b:c6:40:c5:ce:0a:c9:f8:9e:62:5d:92:7a:13:97:a0:df:f9:
31:00:88:ac:76:32:2a:67:e0:86:4c:eb:b7:92:29:df:9b:6d:
f0:25:45:c9:de:af:bc:07:c4:41:47:06:74:45:eb:2f:7d:4a:
4f:c1:ff:42:75:ca:a4:bf:3c:60:60:2a:04:85:dd:8d:44:30:
db:d2:00:9e:e3:c3:43:3b:e5:cd:3a:cc:50:df:0c:66:70:83:
4b:61:dc:b3:ec:96:f7:b9:5d:df:7c:ce:6a:c9:87:ac:93:91:
74:88:35:e8:a9:a5:43:42:cd:be:7d:11:4b:c3:c5:3b:5c:ac:
c3:bc:56:47:2a:a6:38:e7:c6:92:47:55:ab:d9:79:3b:a7:1d:
0a:20:f5:f6:4c:83:d8:2d:69:96:20:1b:c3:7a:df:d4:92:87:
46:cd:69:03:3d:b0:c3:4e:a3:a6:ac:6d:21:d1:3f:10:eb:fd:
3e:01:59:55:11:ef:ac:4a:93:71:34:17:2d:a6:d3:a6:b6:a7:
c9:61:bc:72:d9:76:8f:0b:ab:0e:74:56:b9:ab:17:bd:55:94:
61:41:a8:be:8b:d0:5b:65:00:85:78:8a:2b:58:44:ca:45:d0:
23:5e:56:b6:f1:36:89:63:e0:d8:08:15:46:98:cf:df:dd:3e:
07:69:44:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 11:39:59 2024 by rpki-client on console-ams.rpki-client.org