Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SjiNrRPfacLQ6eoWuYsMIzWP2wM.cer
File: SjiNrRPfacLQ6eoWuYsMIzWP2wM.cer (raw, json)
Hash identifier: pqlDogYZIx8vAoB5QFhJ5UiYqmbxdfaHGmc6gMlClJo=
Subject key identifier: 4A:38:8D:AD:13:DF:69:C2:D0:E9:EA:16:B9:8B:0C:23:35:8F:DB:03
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EEBF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/SjiNrRPfacLQ6eoWuYsMIzWP2wM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Apr 2024 17:34:00 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 103.213.108.0/22
IP: 192.140.144.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126655 (0x1eebf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 30 17:34:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91BE8F6/serialNumber=4A388DAD13DF69C2D0E9EA16B98B0C23358FDB03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9f:dd:99:60:c0:78:10:d4:f8:5a:2b:5b:e3:
f1:6a:76:b4:32:42:64:2a:05:96:3a:76:68:5e:6f:
e3:73:22:46:c5:9e:45:a5:c9:7f:ad:31:f0:e1:f1:
19:18:af:1a:be:c2:79:2f:0b:8e:15:d8:bc:f5:14:
77:b7:07:0a:67:cf:07:80:99:f0:66:25:f8:81:f3:
32:19:7e:19:73:3e:35:75:63:21:85:9d:c0:5e:b1:
b2:22:26:ee:bd:62:e6:1d:f8:03:7d:46:26:d2:6e:
f0:c8:c9:8d:bb:f4:9d:7a:5d:24:76:91:be:4d:0f:
34:70:e5:93:e0:89:92:e0:46:cc:60:16:d2:92:ad:
e0:8b:4c:5c:8a:eb:7f:2f:7a:d5:6b:ec:30:a1:cb:
e8:d2:f3:3a:c8:0b:c1:e5:7b:f8:a0:11:92:76:03:
be:bd:02:2d:e4:b8:06:52:2b:b6:9f:1f:7d:43:49:
4a:f3:3f:b6:b3:7c:5c:f5:45:a5:6b:c8:14:03:48:
f7:60:84:97:e4:c8:4f:44:25:b2:15:23:3b:0f:d2:
e8:bf:bb:78:8b:36:e1:35:b8:4e:64:ce:9e:fd:87:
70:53:6b:42:66:0e:a7:91:4b:fd:64:26:a8:5a:3c:
af:af:b5:fa:90:89:3b:b8:81:0d:ac:f9:44:ae:73:
5d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:38:8D:AD:13:DF:69:C2:D0:E9:EA:16:B9:8B:0C:23:35:8F:DB:03
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/SjiNrRPfacLQ6eoWuYsMIzWP2wM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.213.108.0/22
192.140.144.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:bd:b7:9c:11:b5:87:4f:ee:19:22:68:d5:09:1f:fc:ff:07:
ee:b4:7e:71:41:58:0e:1a:22:26:0f:9b:6c:32:b1:32:8c:88:
b6:81:81:38:39:76:dc:e7:35:ef:dd:d6:d7:2b:10:3c:4c:26:
2b:7e:08:a2:b3:c0:50:3d:15:11:58:03:1e:8f:8a:36:b4:29:
c7:20:35:98:b4:13:a3:0c:17:7e:b7:1d:8f:75:57:26:6a:64:
34:f3:32:be:83:a6:55:85:8b:55:86:4e:36:40:95:40:8a:2a:
f5:32:09:2e:d2:ef:89:f1:a8:c7:26:b7:4c:58:11:d5:f6:f8:
da:88:7c:4e:d4:6d:e0:17:78:18:65:99:e6:95:69:82:14:0e:
b5:b2:25:ff:72:ea:e9:fe:f5:56:b7:5d:8b:36:e8:96:0f:ce:
ed:c0:8e:f7:90:d1:50:7c:aa:fb:75:21:a7:a5:30:ab:94:85:
2d:9e:a4:9a:d2:87:24:9a:56:55:f2:b5:08:34:a6:a8:a5:6f:
4a:aa:0c:51:25:01:a2:d2:b9:e3:25:19:22:b2:7c:87:75:05:
8f:0b:fe:19:ff:a4:a4:2f:0a:ef:d0:71:10:26:6a:23:3d:dd:
b1:96:2e:40:68:ce:4f:5a:02:8a:a2:22:05:0a:88:7f:ec:63:
16:52:2a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 14:24:17 2024 by rpki-client on console-fra.rpki-client.org