Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V_uJOVOJZAtoaaXiQHS0LkIeK9c.cer
File: V_uJOVOJZAtoaaXiQHS0LkIeK9c.cer (raw, json)
Hash identifier: Syj0CbrPITDgeN34Ml7ZISmZRaESM+lTPEXsWY0URCg=
Subject key identifier: 57:FB:89:39:53:89:64:0B:68:69:A5:E2:40:74:B4:2E:42:1E:2B:D7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EDE8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9132DF5/82072E7A7C4311E98286512CC4F9AE02/V_uJOVOJZAtoaaXiQHS0LkIeK9c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9132DF5/82072E7A7C4311E98286512CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Apr 2024 13:27:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 136474
IP: 42.156.32.0/22
IP: 103.89.180.0/22
IP: 2400:f240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126440 (0x1ede8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 29 13:27:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A9132DF5/serialNumber=57FB89395389640B6869A5E24074B42E421E2BD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:58:d4:4f:b4:1e:74:4d:0d:8b:22:6a:9d:9e:
a8:b5:b3:89:98:3a:40:68:5b:3e:a2:94:b4:97:87:
b8:ea:27:bb:e3:d9:25:9a:31:1f:c8:00:bf:46:0a:
4e:f0:09:04:a0:3a:f4:3b:3a:bb:90:c1:ec:da:d5:
d2:7e:78:9b:86:ad:6b:21:81:4b:a2:bb:ff:32:e0:
40:92:28:53:da:20:e9:93:af:75:85:ae:bb:18:2f:
e8:6a:d4:2b:cb:22:73:f5:7a:2f:63:35:ae:6a:7c:
d1:12:5d:80:f0:61:ca:b6:2b:71:11:9f:47:be:bd:
44:93:22:de:73:50:0a:31:82:08:ff:5c:44:15:19:
89:32:e2:97:83:c7:1d:0b:09:a9:bd:7e:16:e6:f7:
c3:4e:98:cf:e5:4f:3a:71:3b:c3:73:8a:8b:54:87:
f1:73:8b:5f:09:03:5f:3a:07:40:71:31:c9:ac:2b:
f5:2d:ee:2c:6a:20:04:e2:95:2b:82:9b:b0:74:ca:
23:15:7d:4f:3a:29:e3:63:67:1b:12:d0:c2:d3:c9:
4e:73:d6:a8:95:13:3c:f1:bb:a5:9b:1f:28:c9:94:
ae:00:7b:8c:fc:7c:96:4f:69:75:82:97:7b:f6:12:
9e:1b:ce:80:3e:fe:78:53:6a:92:fc:3b:b3:c5:79:
65:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:FB:89:39:53:89:64:0B:68:69:A5:E2:40:74:B4:2E:42:1E:2B:D7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9132DF5/82072E7A7C4311E98286512CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9132DF5/82072E7A7C4311E98286512CC4F9AE02/V_uJOVOJZAtoaaXiQHS0LkIeK9c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136474
sbgp-ipAddrBlock: critical
IPv4:
42.156.32.0/22
103.89.180.0/22
IPv6:
2400:f240::/32
Signature Algorithm: sha256WithRSAEncryption
05:4d:5d:e6:6b:c5:a7:ea:11:3f:43:dd:d2:54:64:6e:e3:b3:
18:93:ff:70:7f:e5:4e:21:bc:24:d4:0a:b4:c5:97:ad:35:7a:
96:81:b5:15:e2:9c:c0:76:11:f7:49:e2:9f:29:d2:b7:dd:17:
16:12:41:0f:2b:b5:95:35:66:9d:4e:fc:d0:24:28:8c:5b:48:
85:a4:2b:8a:d5:15:0a:dc:3f:b8:44:cb:f3:46:3c:c7:54:37:
0f:ca:de:7e:d5:b0:6f:1f:d8:4b:4b:78:fa:9f:a6:4e:69:66:
18:e1:83:3d:93:3d:9d:97:83:33:a9:36:08:b8:e8:74:e1:0f:
5c:b6:7b:5e:59:1c:8b:ab:ad:0e:02:54:86:78:14:1e:2f:ba:
a1:df:93:2e:a4:b5:d3:76:7a:d6:45:ef:ce:72:f2:97:95:56:
f0:27:e4:fe:8a:8c:ff:ce:5e:29:cf:76:9a:bc:a7:f4:b5:cd:
5d:fa:b7:94:f9:2b:1d:5c:96:aa:41:78:11:b6:b9:eb:f2:c9:
b3:6a:96:b2:8b:81:64:6c:29:78:11:7e:72:6b:de:f1:9e:97:
d5:85:f1:97:54:2f:03:32:2b:58:55:c3:09:e8:15:98:b1:f8:
1c:25:81:ba:55:48:a9:8a:49:eb:ab:71:02:74:5a:f0:36:b6:
99:cb:b6:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 21:04:38 2024 by rpki-client on console-fra.rpki-client.org