Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer
File: 4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer (raw, json)
Hash identifier: FQHDW1aV2fW14iOtZdomD6DQ/YTQ8fk9pkXbiiePU7Y=
Subject key identifier: E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A28B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 May 2023 17:22:23 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 43.228.128.0/22
IP: 103.229.120.0/22
IP: 2001:df0:1b80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107147 (0x1a28b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 10 17:22:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91D1306/serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2f:6f:0e:6d:60:19:d2:c3:4e:8d:03:c4:7a:
7c:bc:99:0f:e1:9c:25:d3:8e:d7:c0:fe:3a:43:2e:
21:22:f6:53:d8:54:43:a9:9a:eb:51:00:45:7a:51:
0c:7e:2c:68:9f:a0:69:fa:11:64:58:94:4a:be:66:
94:43:4c:cc:1d:5d:8e:ef:bd:8c:08:7b:d5:7d:88:
9f:bf:85:b7:a3:cf:43:ca:fc:cc:73:b6:40:54:78:
df:46:49:6a:c0:99:d2:47:44:02:39:38:3f:b9:6f:
60:08:6e:30:b5:2c:97:cf:45:4f:d1:65:4a:44:c8:
ff:7c:ae:28:c3:ee:25:ab:d1:17:7d:c9:dd:41:e5:
a6:f0:49:51:54:97:4b:a3:99:78:87:ba:de:9b:dc:
bb:df:4e:6e:6a:e2:67:4f:2f:59:b7:ba:9a:db:bd:
f6:06:5c:cf:77:14:44:cf:a0:dd:5c:a1:18:bb:d5:
d2:4c:79:79:04:19:b5:d8:89:c5:3b:e0:95:90:8b:
a7:79:3f:c7:c6:80:5f:88:2f:5e:02:35:1e:19:73:
a6:7a:77:a0:ad:26:bd:2a:13:d2:4b:c8:eb:aa:c1:
fd:53:f7:39:a1:c4:1f:f4:0d:8e:5a:4a:81:bc:6f:
c0:2f:32:ef:0d:1e:03:a1:4e:70:de:93:a2:1f:99:
37:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.228.128.0/22
103.229.120.0/22
IPv6:
2001:df0:1b80::/48
Signature Algorithm: sha256WithRSAEncryption
a7:25:da:9e:e2:86:42:02:ad:02:52:22:a6:79:34:9e:72:de:
41:ad:cd:e0:51:d0:96:de:9c:da:dc:e3:e4:0c:91:83:27:54:
a2:cb:ec:51:61:1a:b2:a9:8d:7a:bd:51:8a:5a:ac:c1:11:71:
1c:f6:90:10:3c:09:a4:2f:3a:77:9d:b9:e2:39:be:49:3e:b7:
6d:4e:57:8b:23:c9:6f:97:9d:5e:b3:39:a2:36:e6:e4:4f:cd:
57:ad:9c:74:f5:30:c0:56:35:4e:00:cc:fc:62:c7:58:52:9e:
3c:45:86:a6:c0:3f:32:30:4d:86:09:10:a6:11:a7:04:e1:7a:
26:c0:d9:fc:08:8b:e7:1a:60:75:36:01:21:b3:be:df:38:15:
0f:0c:b7:ee:55:86:29:d9:3e:82:ae:d3:1b:75:a3:a1:87:0b:
41:1e:44:9f:b6:80:c8:8b:18:ff:8a:50:99:cd:d5:1d:f7:51:
c6:f8:c5:4b:18:4d:5e:09:0b:01:6e:92:3b:a5:c4:4c:a0:06:
40:ba:e8:09:52:54:04:58:00:7c:23:06:a9:de:15:eb:50:70:
42:b8:c1:b8:23:ba:92:8e:a5:d0:e3:f2:e3:a8:63:69:c5:fb:
0b:de:e7:e0:c9:5b:c8:1f:c2:c5:e1:08:fc:5e:e1:78:86:f7:
67:9e:97:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:23:51 2024 by rpki-client on console-fra.rpki-client.org