Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer
File: OIes3fccvvSnUh2EUe7LrrJRnv0.cer (raw, json)
Hash identifier: IEe/CsJd3MJP5siVuP3ptYPlxI+yrNe2q6CvWCohhZ4=
Subject key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C11F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 01 Oct 2023 17:04:01 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 7599
IP: 202.27.8.0/24
IP: 2001:df0:1f::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114975 (0x1c11f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 1 17:04:01 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:80:83:06:54:b4:d9:db:87:0c:6c:f7:17:91:
98:5b:6b:1b:4e:38:e9:bf:4e:7c:7c:f0:44:92:0e:
72:11:9d:9a:48:b8:0e:93:fb:a9:4b:ec:47:ac:6f:
24:1f:8e:d6:62:cf:06:89:84:20:42:50:3c:35:04:
c0:f3:22:b9:22:b3:dc:85:18:fe:e5:a9:4d:e1:35:
84:c9:80:6c:b4:54:42:74:54:20:8d:ac:25:c9:27:
92:71:6b:ac:d5:8f:a0:0a:18:10:00:1b:94:26:ce:
4b:a7:eb:ff:1b:bc:bc:34:22:f3:ac:fd:82:a4:7f:
b8:5d:e8:b1:d3:a2:41:c8:6e:5e:45:0d:06:e8:56:
58:63:22:ed:cd:65:54:76:90:47:cd:7a:3a:d6:65:
7a:81:3c:ee:38:63:09:93:f8:96:d6:86:b5:95:5c:
42:24:1b:37:ec:a7:ac:2c:ba:dc:38:b7:96:f3:19:
7b:85:9f:43:a6:a1:9a:b9:b7:0b:89:af:d6:6f:3d:
36:3f:0e:b9:40:7f:81:b8:01:e8:18:a7:a7:a5:36:
40:93:68:32:b9:be:41:e2:de:81:1b:34:a1:4e:61:
22:27:b1:53:5a:de:0d:51:93:d7:6d:73:5c:e6:45:
ee:54:0a:8b:b8:4d:9a:b9:b9:7c:bf:cf:44:2c:b8:
48:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7599
sbgp-ipAddrBlock: critical
IPv4:
202.27.8.0/24
IPv6:
2001:df0:1f::/48
Signature Algorithm: sha256WithRSAEncryption
14:3e:79:85:8d:6f:79:ca:4a:13:a3:43:59:ce:1b:d8:e1:65:
e0:6a:cc:2f:6f:9b:f3:89:2a:78:bd:e3:af:09:96:87:74:bc:
91:ce:04:ca:3e:77:7e:b9:42:c9:a9:4f:7d:8c:6a:23:0a:3f:
47:15:99:53:d1:6e:00:dc:4e:d7:f1:87:36:fd:38:ea:8c:bb:
66:2d:50:c9:3e:bd:46:f9:09:a7:40:68:a9:d0:be:a4:c9:b3:
39:83:53:58:a6:8d:64:cd:2e:c7:03:91:12:ca:63:b3:e7:81:
67:8f:7e:8f:40:72:1d:aa:fe:af:78:8b:e3:3a:f6:39:3d:73:
e3:b7:56:df:e4:a8:63:e7:75:3e:bb:a1:97:e2:a9:77:03:e8:
0c:1f:eb:a7:b4:c5:c2:5e:f9:40:25:29:76:a6:49:92:b3:0c:
7b:dd:9a:33:f8:9e:e0:17:70:bb:e1:0b:20:57:7d:3c:ad:d3:
16:44:6d:ff:7b:a6:71:df:96:ed:9a:87:0d:a1:07:03:72:98:
40:42:7e:96:0e:b8:41:79:d6:7b:dd:43:cf:b8:e7:29:bf:35:
b0:b4:58:e6:74:1d:89:1f:fa:c4:b8:96:b1:58:be:e7:56:1f:
b0:96:6d:57:d7:7a:65:45:49:93:6c:a4:d3:9c:64:c8:fc:76:
5d:de:da:63
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu May 9 07:42:50 2024 by rpki-client on console-ams.rpki-client.org