Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer
File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer (raw, json)
Hash identifier: eb3cQu46QU3vyiOzsZRYysvM6fxeX1P8R4tJNXqFh5Q=
Subject key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DC39
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Feb 2024 00:56:51 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 203.2.224.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121913 (0x1dc39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 1 00:56:51 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:45:47:eb:b6:c1:a1:c4:1a:a8:e3:31:12:bd:
f0:00:42:d3:e5:43:bc:98:82:cf:50:56:b9:19:2b:
0f:ac:54:c4:7d:19:ee:74:ce:41:aa:d0:31:ec:2b:
17:80:ae:c2:b6:8d:5b:b7:69:ff:a1:60:44:7d:34:
c3:75:53:55:80:1e:fd:45:3c:9b:89:27:9e:d9:d7:
e9:b9:4e:fb:d5:b2:d9:c1:63:44:9c:7e:0f:49:28:
24:22:a3:10:e0:80:77:ce:ab:d1:1c:6b:c2:0c:3f:
8f:21:71:6c:d2:5e:2e:d6:97:33:c3:67:14:a1:54:
ca:ae:31:f8:4a:e5:09:c7:7d:4d:38:13:78:4f:f2:
05:7d:a2:c3:62:2a:48:73:db:83:98:79:cd:df:af:
78:8c:68:13:77:99:65:58:25:bc:f0:ec:23:e2:c0:
44:8f:f9:7c:e1:c7:3f:9d:98:0a:d9:c7:9e:54:0b:
bc:59:e2:06:aa:45:05:6b:98:88:e5:14:b2:1b:48:
ec:40:65:b5:e6:87:4a:2e:fd:2b:72:71:ab:c6:08:
f6:47:d9:71:af:ee:2d:5a:dd:ee:27:f6:bd:d7:15:
18:5d:3e:b3:90:1f:42:e6:34:93:1a:69:85:ba:77:
34:11:68:6e:6c:b1:94:5d:cd:62:ea:b6:6b:0e:35:
f3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.2.224.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:ce:07:4d:f1:79:b0:99:d3:fd:0e:0b:6b:55:e4:16:fe:1c:
b8:3a:52:47:92:2a:e0:7f:6f:42:4d:a4:11:71:64:d7:ed:ec:
21:38:a5:eb:7d:ef:61:33:3e:b3:77:bd:4e:46:63:41:3a:cf:
ca:30:b4:25:ae:85:0c:56:fa:2a:55:af:ea:d9:46:20:e7:3f:
d9:a4:04:9f:d6:a2:56:7a:cf:21:a6:e3:dd:0b:45:e2:42:23:
cc:f1:68:c6:2b:b3:68:c9:6d:a2:31:5f:a1:8a:14:db:53:ca:
f6:5e:b1:08:8d:4e:47:d8:a2:31:0b:5a:98:84:ea:e4:7a:b8:
ca:f2:af:85:21:dd:84:9e:f4:b7:23:54:87:ed:e2:e3:e1:e0:
0d:fe:8f:a6:1a:06:e9:93:16:33:2f:94:1e:38:18:46:9e:06:
4d:37:ce:61:a9:dc:27:7e:b2:37:16:5f:c7:50:d0:6b:98:0f:
34:4a:81:db:e3:42:96:1b:ad:c3:50:f9:7a:17:0b:ce:58:1b:
09:41:a1:a3:d8:46:6e:7d:de:6c:37:4b:b5:c6:1d:59:43:8f:
08:57:cb:e6:96:b6:2e:3a:ab:26:00:fb:cd:ca:be:d6:59:9d:
79:4f:46:89:58:9e:9b:0f:a4:8d:9f:a1:9c:36:d2:dd:5e:ad:
d0:9f:eb:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:24:24 2024 by rpki-client on console-fra.rpki-client.org