Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FkHRP62KIKsKlPYlrtoQa-Kmbhc.cer
File: FkHRP62KIKsKlPYlrtoQa-Kmbhc.cer (raw, json)
Hash identifier: zJwyX2YcLOQLu0sCZ1tmKduTt0QpQlPi00Q6qUNQfTc=
Subject key identifier: 16:41:D1:3F:AD:8A:20:AB:0A:94:F6:25:AE:DA:10:6B:E2:A6:6E:17
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B58F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A4179/43E4AF26B95111EBAA60CD3CC4F9AE02/FkHRP62KIKsKlPYlrtoQa-Kmbhc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A4179/43E4AF26B95111EBAA60CD3CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 07 Aug 2023 19:29:52 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 103.153.4.0/23
IP: 2001:df4:2780::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112015 (0x1b58f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 7 19:29:52 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91A4179/serialNumber=1641D13FAD8A20AB0A94F625AEDA106BE2A66E17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c5:c9:64:f8:6b:0d:f7:d4:74:13:a1:8d:81:
58:da:de:47:3c:75:72:64:a9:1e:48:b8:95:41:73:
dc:5e:07:7c:f6:74:21:b0:11:dc:33:0e:22:c6:5d:
7d:4a:f3:4d:0e:72:a0:b7:e4:b5:a4:80:f6:ba:4c:
c1:cc:82:4b:9a:1e:dc:17:b6:5b:d6:5d:a1:b9:7d:
c6:3c:e1:aa:b4:88:28:3a:ff:f5:b8:fc:c8:15:15:
e7:e9:6b:28:e9:c1:02:5f:8a:41:1f:d2:01:fa:7a:
df:b5:e2:90:ae:e3:be:06:d7:ab:3d:24:23:d8:f4:
53:c5:c8:77:ba:6e:8c:21:61:cc:0b:4d:9b:82:3d:
b7:05:65:65:36:58:18:73:60:ef:4a:5e:d8:76:00:
70:06:06:2e:0c:2a:a1:78:86:02:dc:50:b0:59:21:
52:20:9d:6b:f4:65:b8:06:42:6e:06:c5:dc:a7:5e:
72:09:74:b5:c3:4a:46:fa:c0:e9:9b:7c:74:c8:00:
69:c2:0d:36:92:cf:24:1b:12:cf:31:c7:c2:61:e6:
65:ae:e3:5e:6d:d2:46:74:1f:3d:72:c0:07:85:95:
ac:f3:49:bc:dd:ac:99:f1:ea:c9:94:6c:f2:de:cc:
5e:fb:fe:6f:75:ee:5f:47:dc:e9:61:29:c3:43:ae:
18:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:41:D1:3F:AD:8A:20:AB:0A:94:F6:25:AE:DA:10:6B:E2:A6:6E:17
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A4179/43E4AF26B95111EBAA60CD3CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A4179/43E4AF26B95111EBAA60CD3CC4F9AE02/FkHRP62KIKsKlPYlrtoQa-Kmbhc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.4.0/23
IPv6:
2001:df4:2780::/48
Signature Algorithm: sha256WithRSAEncryption
0d:8d:f8:6c:59:67:46:f5:bc:e8:96:1b:3d:b0:89:20:6d:5e:
21:3e:6b:47:fc:14:80:fd:fd:1b:51:92:d0:4a:10:f5:e8:89:
69:70:f4:ab:91:16:fe:e0:2a:7b:56:35:fe:37:28:0b:23:2d:
1e:f2:f0:9e:2a:5d:41:1e:bc:57:3e:df:28:27:38:39:e1:1b:
fa:57:95:2d:8d:83:ef:ea:60:70:f5:d7:e9:97:c5:fa:6b:68:
5d:5e:51:3c:0b:bc:b1:8d:ed:71:ad:d4:90:d7:1a:8d:f1:7d:
f0:f3:c0:41:d4:84:ee:c1:19:92:bc:9f:bf:fc:d8:8e:2f:09:
0d:4d:7c:6a:28:62:a8:57:2a:95:0e:97:cd:90:8e:78:e0:53:
4e:7e:a9:91:3b:69:82:75:4a:fb:e1:ab:3a:bc:c8:88:d5:09:
60:23:e6:df:8d:62:8d:b7:dd:cc:32:83:52:f9:95:48:5b:3e:
e6:c6:fe:44:d6:c5:35:15:38:23:7c:a4:e8:f7:8b:2b:0a:a1:
18:95:b7:e0:70:7b:91:59:f2:b9:65:fb:e6:a7:21:07:6e:77:
8e:72:07:97:02:46:81:c4:8f:9d:99:e9:dd:7a:69:d0:f7:51:
f5:82:35:ec:36:46:c4:03:20:e0:97:7f:02:61:0d:38:9d:db:
82:3d:c1:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 17:48:04 2024 by rpki-client on console-ams.rpki-client.org