Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/weInZRraO_vBh3GuyLYAJnI7YK0.cer
File: weInZRraO_vBh3GuyLYAJnI7YK0.cer (raw, json)
Hash identifier: tc9oRcc5Ro7sja/tTJdvakl7AVrRfc7kJqbtDWAPYYg=
Subject key identifier: C1:E2:27:65:1A:DA:3B:FB:C1:87:71:AE:C8:B6:00:26:72:3B:60:AD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CFE0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/weInZRraO_vBh3GuyLYAJnI7YK0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 05 Dec 2023 12:24:29 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 103.43.38.0/23
IP: 202.84.20.0/23
IP: 2402:a80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 23:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118752 (0x1cfe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 5 12:24:29 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9112707/serialNumber=C1E227651ADA3BFBC18771AEC8B60026723B60AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e5:25:62:d4:cf:4d:fc:20:a1:23:f7:61:b1:
4e:46:77:2d:36:91:74:31:2c:0f:61:e8:5f:64:8c:
b4:21:74:54:73:63:74:51:00:10:e1:45:96:b3:e8:
0d:65:d9:1b:93:56:5e:a0:a9:96:f1:bf:3e:c5:99:
c1:48:68:23:00:20:d7:21:94:08:a0:03:a6:84:d7:
d4:c9:07:08:80:8a:74:52:40:a4:64:59:a3:ef:67:
1f:dd:d9:c5:9b:1d:16:1a:39:18:19:bb:0a:ab:b1:
c0:72:78:2d:2b:01:67:05:1e:4f:55:ce:d7:51:35:
52:47:6d:30:43:83:1c:0f:06:c8:0c:71:2f:e8:9d:
22:38:4a:38:26:17:58:96:cc:f8:ed:c7:44:5a:0b:
57:e0:8c:cb:f6:4e:a7:36:32:41:d5:e0:97:f9:28:
22:7b:63:10:39:3a:49:ca:7a:79:1a:c9:58:a8:83:
ad:93:36:c0:13:bf:77:07:54:b4:cc:b7:d2:4a:66:
91:f8:ca:46:33:33:91:f7:26:af:89:21:de:4e:ff:
b1:9e:9d:91:cc:98:09:10:f8:bd:3b:bf:3f:69:1b:
f4:1c:5c:4f:3d:b0:de:32:30:96:8e:84:dc:ac:44:
7e:a5:1d:20:a6:11:95:31:1f:10:03:d8:d3:57:96:
a2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:E2:27:65:1A:DA:3B:FB:C1:87:71:AE:C8:B6:00:26:72:3B:60:AD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/weInZRraO_vBh3GuyLYAJnI7YK0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.43.38.0/23
202.84.20.0/23
IPv6:
2402:a80::/32
Signature Algorithm: sha256WithRSAEncryption
a4:77:9e:44:98:0d:7d:39:21:28:24:46:33:a8:b9:4b:68:24:
30:39:40:5d:45:59:8d:74:66:b3:c2:9c:8a:a6:37:de:f9:d2:
12:0a:48:09:69:d7:0f:99:80:d7:f1:ee:bf:61:69:45:86:45:
97:5e:ff:d4:50:1d:bb:d3:97:49:8e:33:1c:37:74:d3:10:d2:
4d:78:87:56:0b:61:d6:ec:2c:38:c8:5b:d4:5a:ef:5e:7a:35:
c4:03:7d:9f:91:4d:d3:88:7b:4f:90:b1:e7:8d:25:4b:28:53:
df:70:fe:f1:9a:04:8d:82:6d:39:f4:a0:c8:dd:31:23:bf:48:
cc:e2:44:f6:48:24:87:fc:4b:f5:fa:73:31:c0:3c:08:25:72:
7c:59:1d:53:95:73:b5:66:00:be:8a:eb:3e:10:02:90:b6:29:
fd:da:00:15:23:d9:dd:4b:f2:ee:18:25:57:ef:83:40:97:14:
7a:e8:e8:1a:d6:47:d2:22:88:c6:ac:ba:6a:2b:cc:be:4b:eb:
dd:91:e6:dc:cb:de:1c:34:3d:93:0d:69:e3:1f:ac:09:2c:56:
0f:fd:69:bb:e3:f0:b0:07:7a:78:0e:29:ba:0f:cc:53:20:37:
92:b8:22:20:81:33:c6:ec:62:1e:aa:c3:8a:ce:54:ca:4a:1c:
f1:bb:a0:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:10:42 2024 by rpki-client on console-ams.rpki-client.org