Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer
File: 8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer (raw, json)
Hash identifier: Bsf18CjW0AMm7VulYpHueQx/ButyaoaO13DVax9AHs4=
Subject key identifier: F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C8B6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 Nov 2023 00:49:06 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 43.248.8.0/22
IP: 103.39.76.0/22
IP: 2406:d4c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116918 (0x1c8b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 3 00:49:06 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91E094D/serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ee:3e:a2:b4:71:28:89:af:ac:46:dc:b5:fd:
8e:b9:f8:da:3e:7c:4a:d4:11:6b:c8:ed:96:e8:35:
f1:f2:cb:72:44:fb:1b:59:6b:ff:24:d9:f8:33:4a:
9f:66:20:e1:48:a7:d6:83:08:7a:34:a1:ee:ff:c7:
01:9b:30:25:e0:a7:68:1e:29:2c:8d:5c:1a:34:d0:
de:fb:95:a0:9d:98:a4:25:2e:42:ee:a6:8a:1e:42:
d0:c4:4b:87:8f:9f:77:e2:fa:77:8c:4d:74:8f:c5:
85:93:ae:94:bc:16:8b:d3:e8:40:5f:77:9d:ce:11:
d5:cf:3b:a4:f5:45:18:79:1e:22:6e:13:0c:21:b7:
8d:6b:06:03:03:ce:c4:86:95:39:ec:57:fb:4f:d2:
84:bc:90:78:b8:48:d4:9f:91:c0:a4:72:55:e5:aa:
d7:cb:b3:de:3e:95:c3:34:b2:4b:8e:44:b0:b5:00:
cc:e4:59:47:65:2c:ee:bc:ca:c3:a7:34:42:75:8c:
d4:e4:9d:08:eb:85:6d:de:8c:ea:68:47:68:1a:23:
46:7b:58:86:8e:64:92:e7:3c:0c:ed:4c:35:34:66:
24:d9:93:d7:34:6d:eb:c6:0d:ba:5b:cb:2b:00:7a:
d0:69:b5:e1:54:05:77:ab:45:8d:f8:ae:01:c1:eb:
80:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.248.8.0/22
103.39.76.0/22
IPv6:
2406:d4c0::/32
Signature Algorithm: sha256WithRSAEncryption
c8:4c:1f:7e:3c:dd:c7:c7:a8:4d:eb:68:39:c6:87:a1:a1:8a:
ca:f8:98:46:b5:1c:83:fc:7f:8e:63:fd:4e:f2:c5:0d:70:97:
dc:4f:db:2e:bd:ca:17:ea:99:4b:2e:a0:aa:ae:57:7a:ec:fb:
89:d0:e6:53:44:8c:37:3b:80:da:b8:ff:be:e3:03:76:af:54:
5c:62:85:87:39:fc:32:c2:0d:a0:ee:f2:d6:fe:c6:71:15:26:
52:2f:2f:1e:20:83:a4:02:bc:45:65:c2:62:80:ee:ec:09:82:
b3:52:ff:49:25:b7:bc:9e:f6:81:6e:5a:c2:49:67:0a:81:02:
7a:f9:83:1e:3d:61:d5:62:a4:79:06:56:02:04:5e:38:38:07:
75:43:a6:1c:33:a4:82:dd:d8:0c:57:f0:8e:0e:ca:41:f7:a4:
cc:6f:75:33:be:23:a6:7b:fe:9d:66:b5:a5:5c:42:15:e0:9b:
53:46:98:6d:a9:98:14:e9:39:66:3b:fd:1a:df:4f:b3:a1:46:
bf:4b:c4:1b:80:a0:37:aa:44:4e:ca:83:31:79:7d:d5:ce:1d:
23:6e:51:38:92:d8:00:4c:6e:74:91:57:11:74:4d:50:10:60:
ed:58:69:93:1b:ae:3b:88:1f:93:ac:2a:96:65:2e:f7:a2:65:
65:2b:60:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:29:43 2024 by rpki-client on console-fra.rpki-client.org