Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvg06LwFd8t93bA-7UaRLns0ccw.cer
File: yvg06LwFd8t93bA-7UaRLns0ccw.cer (raw, json)
Hash identifier: O76RoHA415oqWnHKrOkdeEY+sjLRuHKpaOlW0Okdf10=
Subject key identifier: CA:F8:34:E8:BC:05:77:CB:7D:DD:B0:3E:ED:46:91:2E:7B:34:71:CC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020167
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9158D5B/84B2FBD445B711EFA6DFD032C4F9AE02/yvg06LwFd8t93bA-7UaRLns0ccw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9158D5B/84B2FBD445B711EFA6DFD032C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jul 2024 10:13:23 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 152315
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131431 (0x20167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 19 10:13:23 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9158D5B/serialNumber=CAF834E8BC0577CB7DDDB03EED46912E7B3471CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a9:7d:9f:87:21:23:c4:2d:b7:75:1e:21:30:
9b:52:d1:77:5f:e9:38:8b:97:1e:4f:ea:cb:ce:3c:
ff:91:bc:8f:d3:e6:29:1d:60:9f:7d:75:32:45:f7:
f9:08:4d:32:92:f6:80:98:59:62:2f:0f:1c:56:de:
5b:b9:b9:d8:e1:76:b6:cd:84:55:b9:ec:83:bc:7e:
9f:a3:41:7b:7f:1a:58:f9:b1:92:94:75:e0:2f:52:
ef:7d:ed:49:d0:50:87:dd:cc:a5:c5:e2:65:30:6c:
55:dd:e7:5e:1e:5c:32:e2:41:67:cc:fb:a2:03:5d:
b0:78:37:65:67:b4:60:50:5d:3f:aa:f1:03:da:cd:
af:56:b2:1b:61:20:5b:ba:58:19:f0:e8:39:5b:05:
d4:e5:e1:1e:81:16:8c:ec:f9:c0:b3:ea:02:7e:d9:
5b:05:2a:c7:f9:d5:60:ed:c1:f2:fa:b0:75:e9:e8:
75:cf:7a:df:b6:bd:c6:0e:65:5f:48:1f:dc:12:00:
2b:3e:67:d0:82:47:f4:04:f9:d9:36:1d:65:d9:da:
66:f6:0b:36:fb:46:00:4e:87:c4:b5:0c:db:bb:1b:
e1:2e:a3:28:92:9d:db:f7:11:23:19:c8:5a:3f:58:
d5:28:5f:81:58:af:b0:bd:83:8a:b2:7e:84:3e:d2:
52:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F8:34:E8:BC:05:77:CB:7D:DD:B0:3E:ED:46:91:2E:7B:34:71:CC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9158D5B/84B2FBD445B711EFA6DFD032C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9158D5B/84B2FBD445B711EFA6DFD032C4F9AE02/yvg06LwFd8t93bA-7UaRLns0ccw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152315
Signature Algorithm: sha256WithRSAEncryption
63:96:1d:a3:16:ce:f8:d7:37:07:c4:b9:61:1b:48:87:4c:6c:
b8:42:6f:56:09:cd:42:23:f4:f3:4a:9e:59:38:96:01:ce:79:
11:6b:6b:87:30:57:e2:dc:76:5f:ea:dd:7e:31:fd:d6:13:e6:
88:c0:b0:64:d7:0f:53:f8:cf:7e:22:02:47:95:b2:34:fb:44:
68:be:69:ed:92:25:37:77:0c:87:7b:ce:c7:cf:73:71:ea:09:
f6:da:0f:e9:6a:68:66:d6:6e:57:b3:5f:f8:2b:9a:95:8e:7c:
95:24:c4:66:81:7e:ee:82:7d:7d:f6:dd:c1:10:be:dc:79:ff:
34:07:c4:d4:22:cd:ab:08:44:1e:20:59:36:e0:02:06:c5:f5:
33:03:35:7e:39:1f:d2:a1:f5:c1:51:d0:a8:0d:90:48:73:c4:
92:62:e5:63:4d:98:4f:4e:ab:9a:db:42:c7:e3:e5:d4:35:6c:
b9:8f:d7:12:0f:4b:31:2b:0e:b7:8b:27:c4:b1:1e:b7:06:83:
95:e4:eb:4e:34:6b:6c:91:e4:fa:01:b4:8d:8f:28:b3:d8:6e:
c6:d7:cd:00:ef:93:b0:85:4f:33:a3:11:4c:8e:f4:89:cb:40:
e6:08:28:a6:bc:89:50:ce:55:cb:05:f6:8c:b5:d0:7a:c2:94:
a3:2c:1b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 22:42:20 2024 by rpki-client on console-ams.rpki-client.org