Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFGQATcElYfBJg7e1Re30ooYjrM.cer
File: eFGQATcElYfBJg7e1Re30ooYjrM.cer (raw, json)
Hash identifier: hByVVEzt6W6/xqTBXzxw3RVF+4QGR1VfELdt3TFWyh4=
Subject key identifier: 78:51:90:01:37:04:95:87:C1:26:0E:DE:D5:17:B7:D2:8A:18:8E:B3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E718
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9130D7B/7F142E88CA1711EBAFBEB757C4F9AE02/eFGQATcElYfBJg7e1Re30ooYjrM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9130D7B/7F142E88CA1711EBAFBEB757C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Mar 2024 13:35:15 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 203.190.121.0 -- 203.190.122.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124696 (0x1e718)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 28 13:35:15 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A9130D7B/serialNumber=7851900137049587C1260EDED517B7D28A188EB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6d:4d:c4:f5:3d:88:63:48:58:69:db:4b:85:
e3:73:48:1d:7b:dc:11:0c:96:9e:83:39:d3:2a:46:
d6:eb:95:7e:4c:af:41:43:45:72:88:b8:01:be:a9:
94:3a:ae:05:c2:ec:0d:a7:2b:07:25:bc:ee:3c:46:
5a:35:5d:d8:a4:cd:fe:5c:65:67:bd:01:c3:0e:c4:
88:1c:cc:cc:53:45:8b:cd:39:2a:e9:45:c4:2a:2a:
4e:68:6d:db:43:af:0e:88:70:55:06:bd:3c:af:70:
0c:f4:db:28:f6:13:b6:15:b3:a0:ed:79:73:ee:cd:
4d:62:11:43:2b:85:c6:8b:60:fa:5f:7d:74:78:12:
cf:45:c3:3f:73:81:4a:e7:27:98:c4:98:b8:66:89:
1e:8f:78:d9:81:6c:fb:28:70:19:f1:65:75:6e:00:
11:0b:b0:36:15:6d:75:2a:d3:e4:82:6f:6b:2b:9e:
3f:f2:87:48:8c:c8:61:8b:6a:af:74:c6:1a:a6:3b:
54:3e:fd:18:52:d1:c3:d2:71:ff:d5:c5:cc:45:be:
4a:e5:29:48:08:34:e9:48:99:d4:d5:91:10:a1:83:
ff:f5:50:70:f1:c7:2a:67:83:ae:d3:dc:3e:b1:df:
af:10:8d:83:58:4c:5e:00:81:1d:21:3d:c6:1d:ca:
98:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:51:90:01:37:04:95:87:C1:26:0E:DE:D5:17:B7:D2:8A:18:8E:B3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9130D7B/7F142E88CA1711EBAFBEB757C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9130D7B/7F142E88CA1711EBAFBEB757C4F9AE02/eFGQATcElYfBJg7e1Re30ooYjrM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.190.121.0-203.190.122.255
Signature Algorithm: sha256WithRSAEncryption
3b:55:3d:43:fd:92:08:18:bd:e4:ec:cf:85:88:b5:3d:c7:bf:
b5:a4:35:ff:e3:d9:e8:a2:36:cc:e6:36:33:3a:7d:27:13:1b:
c9:1b:a0:53:88:b7:04:d7:3c:ba:6f:2e:40:3c:c2:5b:3d:29:
7f:24:cf:65:34:e0:f9:af:fd:d7:ed:f8:c7:10:32:72:cc:55:
95:a3:5e:57:3a:e9:c2:be:19:46:f8:3c:fe:ea:2a:03:57:95:
63:d1:63:cf:5a:27:76:93:b2:d4:b6:75:6e:d2:2c:fb:ce:ed:
87:ce:4d:87:32:98:5f:83:3d:1f:7c:60:fb:c9:2f:54:b5:16:
25:f6:4a:74:5b:f3:46:9b:0b:0d:0a:2d:c7:b8:55:da:1f:a5:
62:43:3d:39:7b:1d:0c:64:8b:4a:99:20:21:21:7d:21:c3:13:
bc:83:12:96:19:64:97:11:ba:32:fb:ed:64:15:6a:61:41:38:
59:03:eb:3a:86:68:ea:23:ca:e2:96:b0:97:d9:9b:8b:c5:28:
23:66:10:d1:0a:79:e6:f0:2e:5d:6a:60:f2:93:4e:65:7e:b3:
79:02:5a:60:8b:cb:77:ec:7c:3f:ac:f6:c5:fb:e2:c6:71:85:
62:d6:72:92:53:61:ca:51:26:93:7b:c2:d1:a8:7a:e7:3d:4c:
f4:31:81:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:30:13 2024 by rpki-client on console-fra.rpki-client.org