Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yodzM7cSNF8F0txnBlcuHLYhF3g.cer
File: yodzM7cSNF8F0txnBlcuHLYhF3g.cer (raw, json)
Hash identifier: IZp6did4O7fQRdhHpBgztc0rQJRNr+NMq71Jx0mwNpE=
Subject key identifier: CA:87:73:33:B7:12:34:5F:05:D2:DC:67:06:57:2E:1C:B6:21:17:78
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E35D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915059B/74FB42A8227311EA8A0F3822C4F9AE02/yodzM7cSNF8F0txnBlcuHLYhF3g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915059B/74FB42A8227311EA8A0F3822C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 07 Mar 2024 14:41:31 +0000
Certificate not after: Wed 29 May 2024 00:00:00 +0000
Subordinate resources: AS: 64052
AS: 134084
IP: 2404:3080::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 02:06:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123741 (0x1e35d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 7 14:41:31 2024 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=A915059B/serialNumber=CA877333B712345F05D2DC6706572E1CB6211778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cd:a3:38:fb:bd:c8:f5:1c:d9:e3:17:15:42:
32:2e:c4:6e:ea:7e:c7:9b:fa:ff:75:7f:bc:0f:96:
6a:cb:23:65:c7:55:fb:e2:cf:8c:8a:ee:e8:d7:ac:
f7:8c:22:42:55:f3:73:fb:ce:63:31:04:c4:85:6d:
92:25:2f:98:0c:a1:a3:c8:4f:7e:7b:06:34:ed:99:
c6:d2:8e:a9:9d:3a:f9:44:09:b4:c9:d4:c0:10:11:
70:62:fc:13:e3:e4:41:7a:a9:e1:11:ee:e6:16:01:
46:30:23:a1:ae:85:fd:78:8b:4e:8b:a0:64:31:be:
15:7b:da:50:82:3f:a3:a2:ef:6b:ea:6a:0d:06:af:
79:86:1b:ed:83:d6:63:d8:90:22:6a:d7:6c:c1:80:
93:d6:7e:f1:cc:50:df:f1:43:d1:24:50:20:25:e6:
e5:2f:4b:b5:5f:e7:b2:da:89:ef:fe:49:7d:29:5a:
e8:f3:ec:08:6d:a7:ba:30:75:f4:fb:da:b7:16:17:
d0:de:32:23:99:70:e6:c5:fd:9e:3a:80:07:e2:8d:
f4:31:4f:7c:3e:76:38:1e:eb:bd:0a:99:b2:8a:85:
6e:2a:80:57:66:92:4c:cc:6a:7e:8c:91:b8:1d:6d:
d0:17:d8:c0:29:60:45:a4:20:99:a5:66:51:87:76:
e8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:87:73:33:B7:12:34:5F:05:D2:DC:67:06:57:2E:1C:B6:21:17:78
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915059B/74FB42A8227311EA8A0F3822C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915059B/74FB42A8227311EA8A0F3822C4F9AE02/yodzM7cSNF8F0txnBlcuHLYhF3g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
64052
134084
sbgp-ipAddrBlock: critical
IPv6:
2404:3080::/32
Signature Algorithm: sha256WithRSAEncryption
13:ed:f8:88:7a:a3:48:a6:86:2e:01:44:16:a2:04:27:45:a0:
6f:12:75:60:c1:d9:bc:0f:31:89:d4:29:ad:01:f1:6b:7d:38:
d8:83:32:d0:7c:20:7e:94:d0:38:96:c3:8e:47:86:da:3d:a8:
ad:55:cb:4b:73:81:2a:1c:f9:fc:85:15:10:15:d4:c6:c4:47:
67:d4:a9:36:c2:80:42:7d:97:47:9d:ff:ee:e9:4f:0f:91:a1:
fb:c2:34:90:e1:29:e7:df:6b:72:16:dd:a3:11:46:62:44:e7:
37:c4:ca:b2:10:03:b4:05:29:6e:a6:b0:1c:00:26:fb:06:1a:
8a:c3:fb:34:e2:d7:f0:9f:09:61:16:7e:1d:7e:65:d7:14:22:
1e:06:97:19:ef:3d:8e:a8:1d:bc:a8:bb:77:ad:4d:6e:19:39:
0d:87:50:9f:16:1a:bb:a4:d1:49:0d:64:44:81:64:9c:72:60:
1c:20:16:44:eb:87:b7:96:d4:e4:f6:30:0d:81:62:5e:4f:29:
95:15:95:6d:93:ed:1f:d2:2b:79:c1:04:06:26:05:fe:6d:61:
0e:a7:76:82:c4:e4:aa:d5:16:b4:ec:88:17:22:86:51:0b:46:
25:7f:82:cc:f7:65:db:b1:f8:72:26:c0:6b:50:30:22:d9:11:
2b:bb:d5:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 02:43:11 2024 by rpki-client on console-fra.rpki-client.org