Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEy0Bnedz3q-afF952ykOS2ebsM.cer
File: dEy0Bnedz3q-afF952ykOS2ebsM.cer (raw, json)
Hash identifier: NQF3Ta/DPAlYcXmgvWxTpkCMEb6eYjXgC3OFqfGKVic=
Subject key identifier: 74:4C:B4:06:77:9D:CF:7A:BE:69:F1:7D:E7:6C:A4:39:2D:9E:6E:C3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C264
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911535B/566792961D9A11E28AC17D8708B02CD2/dEy0Bnedz3q-afF952ykOS2ebsM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911535B/566792961D9A11E28AC17D8708B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Oct 2023 12:29:45 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 103.209.28.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115300 (0x1c264)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 6 12:29:45 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A911535B/serialNumber=744CB406779DCF7ABE69F17DE76CA4392D9E6EC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e1:cb:ae:37:49:22:65:15:8a:32:47:44:c5:
ca:30:02:20:00:94:d9:ab:04:13:f7:06:c2:82:cb:
20:20:ee:89:1e:74:16:e1:22:7e:97:d5:69:c8:1f:
c8:bc:bf:8e:d3:8b:87:82:f8:6e:b0:4f:2a:d0:c8:
07:3f:ca:c3:09:af:88:0e:06:d2:2f:4c:5e:c4:a9:
98:d5:5a:1c:83:bd:f8:2b:bb:16:40:3e:87:26:c6:
c4:3b:90:ec:2f:35:fb:12:f2:24:ef:e2:5b:83:d3:
ff:98:c2:70:fc:36:12:0e:6e:da:f0:7a:54:34:17:
b4:6f:9f:4e:53:04:39:a3:fe:42:01:1f:d4:a4:54:
42:a4:4d:bb:f3:7a:95:5f:e4:a1:f2:ba:be:d7:a9:
e8:a7:8b:12:c4:08:b5:83:44:22:f7:35:45:34:3c:
22:87:48:ca:f9:56:ee:57:7f:80:66:b7:75:e1:56:
70:6c:d2:8c:91:0f:d0:cb:30:98:bf:f6:e0:4a:81:
87:ce:f8:72:3c:92:a0:22:f6:e3:84:56:72:2e:a1:
5a:9b:4b:66:a8:fc:62:2d:58:12:81:3e:a1:1b:b7:
ed:2c:68:a2:23:d2:c9:63:00:ba:34:d5:c0:6f:2d:
bc:22:bc:c5:86:a1:7b:22:55:85:49:e6:19:f2:4c:
00:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:4C:B4:06:77:9D:CF:7A:BE:69:F1:7D:E7:6C:A4:39:2D:9E:6E:C3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911535B/566792961D9A11E28AC17D8708B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911535B/566792961D9A11E28AC17D8708B02CD2/dEy0Bnedz3q-afF952ykOS2ebsM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.209.28.0/22
Signature Algorithm: sha256WithRSAEncryption
be:5b:bb:9a:18:7d:c1:f3:24:8e:3a:6f:34:cf:b5:c2:41:bb:
f5:7f:66:3e:0b:0c:fa:45:dd:b6:90:ca:ef:b6:0e:05:ec:ff:
d1:8f:3d:7f:96:bc:4a:ff:7f:57:bd:72:f6:7c:31:0c:6e:0f:
f0:4e:ac:0f:02:17:2f:57:5a:50:f6:a4:0a:1a:30:7c:0b:c3:
ac:65:a0:a9:f2:24:b1:a5:0c:9c:d7:33:e7:6e:e1:1f:de:b0:
74:a2:1a:c6:c9:bb:ff:14:f1:ac:0e:43:76:6d:95:29:8c:fb:
84:08:17:03:31:80:76:0f:fd:b8:97:52:f4:2d:8c:0e:d1:83:
ae:4e:f7:0d:2b:4f:77:6c:76:b7:81:5f:55:90:28:d9:2d:c3:
6c:e3:1a:88:7f:5a:bb:3c:aa:33:cc:d3:30:ab:c5:77:49:a2:
24:15:cc:f4:cb:28:8e:9a:71:cc:b6:ee:02:c1:b8:6c:f2:fc:
b4:43:fb:19:7c:08:a7:93:00:bf:f8:6f:d2:39:30:24:a1:ae:
10:d9:00:3c:bf:91:98:fe:19:07:7b:31:40:ef:b6:52:a9:4c:
24:0f:84:49:ed:1d:44:fd:15:75:9d:b2:7d:a1:9c:74:41:9c:
3e:7b:53:ea:46:61:e1:bd:77:d8:e0:ae:24:34:b4:1b:1d:3b:
50:0d:c5:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 07:43:09 2024 by rpki-client on console-fra.rpki-client.org