Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer
File: qriBuCFHwwNrgPxnWTTcLkbOD38.cer (raw, json)
Hash identifier: AYc/dCqWrnG9fplvVBW4RuU8v0L8TDBBnbYUObPx+5E=
Subject key identifier: AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D271
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 16 Dec 2023 21:54:45 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 103.158.190.0/23
IP: 2001:df5:5f80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119409 (0x1d271)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 16 21:54:45 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91F4EDE/serialNumber=AAB881B82147C3036B80FC675934DC2E46CE0F7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c4:dc:af:88:c4:81:09:af:c0:ea:f8:e0:6f:
65:d1:d4:9a:ab:9d:93:2d:ac:e9:24:42:01:ff:cf:
36:28:88:48:22:c9:7d:c9:50:7b:a9:61:87:01:82:
8d:7c:91:c9:37:c7:ed:06:3a:60:c1:e3:cd:c0:dc:
7e:6f:00:2f:c4:97:90:4a:4b:7b:72:c3:03:4e:68:
e7:65:16:3e:a4:dc:ee:a2:9d:7c:0b:8f:9e:17:f0:
ff:3c:02:c5:37:1b:23:8f:50:fc:c4:c7:63:ef:fa:
00:71:ef:d4:99:19:e7:ab:52:dd:30:86:f3:11:aa:
57:a6:ed:d4:b2:a2:4e:d3:20:09:f9:4e:06:cc:46:
2c:47:0b:4d:5c:b4:27:54:0e:28:ee:66:72:76:90:
9d:bb:af:46:ed:a2:e6:e0:d1:9b:31:a0:8e:7b:d8:
ca:1b:eb:2a:aa:02:cc:f1:53:42:bd:22:67:cd:c8:
6c:51:ae:30:3f:6a:b7:c2:39:94:9b:9b:86:10:0a:
46:75:be:5f:1f:aa:5a:4c:00:41:c2:cf:4d:54:f5:
d7:92:c0:16:31:0d:2e:7f:c9:b5:b5:49:d1:16:4e:
e3:50:d9:9a:28:d6:ef:e6:4c:aa:58:01:38:11:2a:
31:d9:41:f6:19:c0:6e:34:82:5b:fa:ab:18:bf:0a:
ba:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.190.0/23
IPv6:
2001:df5:5f80::/48
Signature Algorithm: sha256WithRSAEncryption
16:e0:79:6b:a5:d9:5f:a3:0f:ac:f2:df:15:04:94:a6:8d:4b:
1c:fd:82:5f:be:e3:96:3c:93:fb:2e:26:9e:38:21:93:7d:20:
09:0a:44:b7:6c:f9:40:d3:93:09:52:d1:db:3b:71:60:28:1c:
3f:d6:e7:db:38:12:a6:79:61:b6:4d:01:d9:c1:d6:4e:de:74:
2d:85:4e:82:79:ae:0f:89:18:b4:01:5c:5d:f9:1a:96:ff:ef:
55:9d:a0:c5:df:aa:5b:b1:0a:5e:c7:f5:3a:8b:a3:6b:82:41:
bd:7e:22:46:43:54:27:ab:17:36:2d:7c:ea:60:1a:cf:76:5f:
29:5a:87:45:63:12:7b:3a:4c:e9:aa:e6:9e:44:ed:89:25:6e:
47:56:fb:60:b6:b8:f9:ec:88:82:8b:86:a0:9b:79:8e:04:13:
da:69:f3:36:36:1f:51:07:ae:11:39:81:8c:79:98:65:74:c3:
cc:49:ab:3d:49:36:c4:61:11:6b:33:6e:af:6c:f1:b9:e3:2d:
c8:9d:8b:c7:5b:52:00:9b:3f:c0:3d:07:ce:70:ee:1c:98:3c:
c6:9a:e4:cd:be:85:e3:51:bf:19:9a:2e:8e:fe:4c:87:b3:ea:
1a:6c:07:96:9f:58:2e:33:c7:74:df:6f:d7:75:fd:3c:64:32:
d9:ae:cc:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:24:39 2024 by rpki-client on console-fra.rpki-client.org