Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer
File: 8rcLSXMivuZoIO0_ziiqeW2wkVM.cer (raw, json)
Hash identifier: NmkOsFOTKtAvcAwGlUtODFPQPMly53qvHRFY8MOBwD0=
Subject key identifier: F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E91E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Apr 2024 00:11:17 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 137533
IP: 45.251.240.0/22
IP: 103.85.24.0/22
IP: 2403:d40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125214 (0x1e91e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 3 00:11:17 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91B43D7/serialNumber=F2B70B497322BEE66820ED3FCE28AA796DB09153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ef:43:e2:4c:19:24:f7:b0:85:e4:14:e2:94:
b3:ec:31:ff:0d:81:d6:6e:67:c2:33:08:86:6d:b5:
36:a7:40:59:d6:66:00:2d:50:91:ce:67:50:e5:d6:
f4:5b:87:bc:2d:bd:98:00:cc:67:f2:af:79:97:b9:
9c:fd:82:9a:b6:19:2c:a4:21:0c:b8:e8:c8:de:be:
03:33:44:b9:cd:d2:1e:84:ef:14:18:c6:ce:4d:4d:
39:94:83:96:41:13:cb:09:80:f7:c2:33:8d:af:c1:
3c:89:42:56:29:31:12:97:ce:77:32:71:2a:4d:bd:
c3:eb:20:e5:66:97:7c:7e:f2:26:ea:a8:48:a8:e5:
64:59:6e:16:26:61:3e:17:88:ca:21:1c:e8:b2:b6:
da:9b:42:8e:4d:24:9a:60:98:ca:c9:52:0e:c5:5b:
c1:48:b7:1d:b6:5f:18:4f:b1:75:85:99:41:b8:a2:
1d:b0:c8:a0:91:e6:dc:be:66:a3:76:15:a8:38:43:
d3:61:b9:3e:41:f8:5f:d3:79:c7:fb:0e:fd:d7:23:
7c:ea:ca:81:20:a7:79:e5:1d:9b:66:17:3d:91:e6:
d5:3d:0f:7e:58:c1:76:0b:ae:58:2b:ff:f0:54:30:
79:3f:20:1f:be:f2:a6:ce:cc:bb:21:3b:96:7c:7b:
10:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137533
sbgp-ipAddrBlock: critical
IPv4:
45.251.240.0/22
103.85.24.0/22
IPv6:
2403:d40::/32
Signature Algorithm: sha256WithRSAEncryption
2e:e5:86:e7:1b:97:d9:5a:42:56:2c:79:bf:fa:e9:a4:3c:4b:
22:19:92:8b:e9:f0:f4:5e:c6:c6:1c:c1:7a:53:7f:90:ea:1e:
8e:26:80:da:94:eb:39:3e:ca:eb:48:d4:f9:55:b4:b5:8f:a4:
0e:86:1d:55:15:ac:79:e9:ff:11:39:dd:9b:ee:ef:1d:62:e4:
1a:0a:0f:f5:4a:65:eb:61:8c:42:05:af:48:d6:79:08:9b:23:
12:50:1b:45:aa:56:00:61:d9:ec:63:16:1a:41:e7:9a:5a:d1:
18:46:8b:1d:b8:34:b0:0a:1c:d6:5e:91:90:ca:79:00:52:7a:
d8:e2:93:86:b0:64:72:09:6c:60:86:de:9d:2f:bf:91:85:11:
6f:0c:49:70:a9:15:7d:cb:c2:55:b9:d4:3c:49:4a:0e:25:13:
8c:5d:58:8b:07:4b:d0:bd:c3:ad:11:60:27:fc:9c:c4:df:65:
20:60:92:19:ce:ff:05:c2:4c:d7:d0:70:eb:17:73:b4:26:65:
72:86:f1:80:c3:3c:90:a7:fd:e5:8e:9a:3d:82:b4:86:08:53:
03:89:d6:c4:d6:d3:f2:e7:ef:6d:83:7e:68:c0:5b:31:64:b0:
8d:9f:f8:ac:d8:ca:7d:bb:57:59:7c:f3:85:93:4e:93:36:bd:
72:92:3f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 07:42:41 2024 by rpki-client on console-fra.rpki-client.org