Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSOs4W_v3mI54mjE4Ea2yMX2GWU.cer
File: JSOs4W_v3mI54mjE4Ea2yMX2GWU.cer (raw, json)
Hash identifier: 5SNSQ714rXvah/Pg/0UuhULCu3dBfRJIFL5BoekCfW4=
Subject key identifier: 25:23:AC:E1:6F:EF:DE:62:39:E2:68:C4:E0:46:B6:C8:C5:F6:19:65
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B56F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/JSOs4W_v3mI54mjE4Ea2yMX2GWU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 07 Aug 2023 13:21:33 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 103.140.138.0/23
IP: 2001:df0:c380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111983 (0x1b56f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 7 13:21:33 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A912A9B1/serialNumber=2523ACE16FEFDE6239E268C4E046B6C8C5F61965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:01:f4:5d:8b:3f:b0:92:c7:ac:59:53:1f:7b:
b2:2c:8d:61:16:e8:07:e2:04:7e:27:79:11:9e:9c:
6d:60:3a:85:30:af:19:cd:8b:4f:c9:64:8d:42:ba:
20:e4:1f:ff:df:cb:02:20:33:42:b7:ad:6a:83:99:
ba:08:b3:6c:91:c2:ed:58:be:bb:1b:19:a6:a0:fa:
cf:2a:be:ec:b0:3b:cd:1f:d6:7f:b4:d7:5a:87:ab:
5a:22:19:c7:64:80:47:e9:c4:e0:b4:d5:64:cd:a6:
e6:97:50:d6:09:13:92:a3:b0:bc:b7:76:b1:0c:99:
c8:ef:ce:f4:0a:6c:23:7d:04:f4:fd:8b:d5:84:74:
1c:63:f9:4e:dd:eb:24:49:87:29:03:15:b4:95:63:
65:4f:b8:4b:76:e7:5d:47:c5:1b:c5:71:8d:88:2b:
ca:d1:b6:07:e6:34:0e:60:4f:83:6b:e1:47:b4:85:
97:cb:e7:0a:0b:62:8a:47:31:7f:9a:e9:9c:44:91:
c1:53:8e:ea:e4:65:90:99:c6:8c:e6:80:02:ca:bd:
12:9b:a8:a8:0a:93:75:07:2e:58:b0:09:6f:4c:cd:
bd:c2:07:f9:36:67:e6:23:af:b1:be:20:38:32:94:
97:7a:3f:d6:3a:3f:9f:3b:e2:85:f7:35:d6:b1:0d:
eb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:23:AC:E1:6F:EF:DE:62:39:E2:68:C4:E0:46:B6:C8:C5:F6:19:65
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/JSOs4W_v3mI54mjE4Ea2yMX2GWU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.140.138.0/23
IPv6:
2001:df0:c380::/48
Signature Algorithm: sha256WithRSAEncryption
9e:a7:2e:51:5b:53:7c:02:62:eb:e4:3c:b3:3e:ee:06:5e:16:
d2:41:ef:bc:48:11:9b:37:cc:18:c9:40:7e:30:05:b4:35:65:
54:56:b0:da:2e:89:ca:ac:ae:e5:8c:de:05:be:94:f6:db:06:
14:13:d9:1d:03:f0:d8:00:7f:63:be:42:09:c3:9a:0c:32:3c:
e6:e7:60:ad:e4:4a:7f:35:9f:b6:f2:76:b4:12:78:c2:ec:94:
b2:73:07:be:5f:e3:cd:1b:34:83:50:d1:7f:76:df:f4:a2:8a:
cf:f3:c7:13:3d:a1:a1:67:21:bd:bb:5d:86:ca:50:68:85:f6:
27:52:d9:c8:da:dd:bc:28:66:0c:a4:a7:ba:5f:22:0b:29:9f:
a3:76:d1:a0:f6:a5:d9:62:45:22:c9:f8:91:cc:c0:83:a3:18:
1a:80:13:82:5e:5d:15:b8:ad:b6:55:7d:70:47:e5:e1:da:62:
2f:39:7b:9b:92:0a:81:e1:aa:73:61:19:ae:9f:a1:89:35:de:
fd:b0:77:39:a2:b0:08:3e:8e:b4:70:d6:c5:9d:0c:9c:15:22:
1c:ab:57:34:05:ae:f2:f3:57:05:4e:28:96:f1:86:26:71:cb:
af:f3:3a:cf:5c:91:50:ab:b7:b0:e4:e3:e9:f2:ca:a3:16:0e:
d4:e2:4e:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:29:54 2024 by rpki-client on console-fra.rpki-client.org