Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lwa_Ehk1TQGMFYWM6XZ5_kPmsxI.cer
File: lwa_Ehk1TQGMFYWM6XZ5_kPmsxI.cer (raw, json)
Hash identifier: thvO8zj2hAN88j4u4R8pslmfkCZHO3VFzORAraBqdvQ=
Subject key identifier: 97:06:BF:12:19:35:4D:01:8C:15:85:8C:E9:76:79:FE:43:E6:B3:12
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020603
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9133BB0/C12E842C566811EF8E6A775DC4F9AE02/lwa_Ehk1TQGMFYWM6XZ5_kPmsxI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9133BB0/C12E842C566811EF8E6A775DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 09 Aug 2024 16:02:24 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 136461
IP: 2401:b6a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132611 (0x20603)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 9 16:02:24 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9133BB0/serialNumber=9706BF1219354D018C15858CE97679FE43E6B312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f2:35:f1:0e:27:75:2a:66:c9:17:d3:8e:af:
aa:ae:8e:d3:fc:a6:87:ef:86:6c:dc:39:7c:a8:af:
f5:07:73:21:f0:9f:e2:5a:d1:31:a0:36:ab:01:d2:
a4:8e:1b:87:9c:96:29:16:04:c2:bc:29:65:cc:f7:
7d:a5:a9:a1:3a:da:fb:73:01:5a:61:b2:50:3e:be:
c3:10:dd:78:65:54:e6:88:a6:aa:60:9d:93:d1:8a:
cf:af:02:da:4d:2b:87:4c:a9:8c:26:4b:56:f2:70:
f0:9b:33:af:fd:c8:5c:ca:dd:24:5d:eb:80:4a:28:
63:1f:b8:ed:b9:ae:c4:b0:de:7b:13:5b:7e:0d:21:
67:f5:49:77:e7:a6:6a:db:31:3a:63:ea:32:ef:36:
a3:fb:87:61:95:17:83:3e:bd:f4:de:ca:b9:d8:7e:
bf:27:4d:67:70:a3:dc:5f:f2:83:26:e3:4d:2f:3c:
35:79:f4:0f:6f:a1:4b:37:f1:26:5f:26:ff:8e:2d:
61:b7:cc:3e:f4:c0:2b:78:35:a5:48:8a:04:46:7f:
34:40:e8:dc:b8:0c:b5:bf:44:fc:74:81:2e:88:22:
10:70:f1:ce:d7:c2:11:07:1e:66:d8:ea:7a:87:b9:
82:71:de:03:24:b6:a4:9e:a6:a5:a3:bf:01:f0:a6:
56:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:06:BF:12:19:35:4D:01:8C:15:85:8C:E9:76:79:FE:43:E6:B3:12
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9133BB0/C12E842C566811EF8E6A775DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9133BB0/C12E842C566811EF8E6A775DC4F9AE02/lwa_Ehk1TQGMFYWM6XZ5_kPmsxI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136461
sbgp-ipAddrBlock: critical
IPv6:
2401:b6a0::/32
Signature Algorithm: sha256WithRSAEncryption
97:b1:88:48:0e:14:4b:de:fd:02:4d:be:75:39:77:bd:56:42:
70:78:36:47:c4:96:66:92:bd:cc:a2:8b:de:6f:53:4f:3b:1d:
43:f9:f7:58:82:40:d0:7a:cf:58:c8:94:2a:41:ee:ac:31:6a:
56:e2:7c:17:bb:7b:5c:50:b6:e9:f3:05:af:5e:cd:b1:a0:4c:
8e:0c:8f:b1:d6:1f:d4:73:ff:3a:ec:b8:72:d6:95:41:a8:a4:
bb:67:d9:c0:b5:cc:a4:1a:5b:6f:d9:af:54:64:07:17:05:20:
08:4c:40:3a:eb:1f:db:77:4d:83:4f:dd:24:8a:7f:ba:11:53:
b2:86:ae:7c:74:1c:cf:ae:48:5e:d1:52:1f:95:11:1d:11:91:
2c:79:3a:fd:b7:29:aa:e6:b4:5b:8c:34:ec:40:63:9b:4e:9b:
37:f1:4a:f7:51:95:c7:5f:e3:6e:7c:5e:bd:8b:25:61:e5:e1:
5a:2b:51:ba:b5:1d:94:6d:29:78:e0:ce:b2:45:a6:a8:2d:5b:
b3:85:90:58:e7:a2:4f:c1:6a:2e:e2:4e:e1:1e:4f:20:86:96:
a0:a4:50:06:d5:ef:c1:77:f1:f1:11:b5:e2:1a:cb:86:76:3c:
fd:4a:71:08:3a:9a:d5:3e:1b:53:c1:d7:29:42:f3:24:5c:2a:
98:3a:81:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:06 2024 by rpki-client on console.sobornost.net