Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/c8Mme8SMmzk0ep8yp9O0D59yiVg.cer
File: c8Mme8SMmzk0ep8yp9O0D59yiVg.cer (raw, json)
Hash identifier: /LMXy8WjDiBkfyQhYQFpodWR0HXCC0UPJ4/7Hb22H1Y=
Subject key identifier: 73:C3:26:7B:C4:8C:9B:39:34:7A:9F:32:A7:D3:B4:0F:9F:72:89:58
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 427F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/c8Mme8SMmzk0ep8yp9O0D59yiVg.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Tue 29 Aug 2023 02:05:33 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 57.176.0.0/15
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 May 2024 02:50:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17023 (0x427f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Aug 29 02:05:33 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9162E3D0000/serialNumber=73C3267BC48C9B39347A9F32A7D3B40F9F728958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a6:ee:8c:64:e8:c6:79:4a:d3:28:73:34:55:
99:e3:eb:ab:93:6b:6b:32:6b:06:57:64:c7:6e:4c:
ee:f8:8f:21:46:ab:c4:03:77:96:4c:49:c3:19:63:
be:30:97:36:17:24:77:0d:29:60:5b:a5:f0:83:b3:
ed:ca:a7:e1:c8:75:27:d9:3f:19:07:54:07:b7:5b:
db:89:e7:64:37:21:bb:93:9a:18:da:ee:22:a9:15:
c6:20:2c:f0:6b:eb:9a:0b:7c:d6:d6:74:0d:a6:b0:
08:95:a5:3f:80:c4:82:0f:80:a3:b2:8a:b7:c9:50:
f4:ff:f5:fb:69:a3:75:e7:65:41:5a:60:8c:ef:24:
a5:4c:e3:0f:3f:2d:9a:bc:93:09:a5:07:57:1f:55:
9e:32:4e:1b:e8:6f:3c:d7:17:a5:87:39:2a:77:e4:
d1:c4:bd:fb:bc:ca:ec:0e:9e:9a:cb:fb:87:98:1d:
7f:9e:87:f9:f3:a9:93:ea:66:d6:75:84:8b:ea:d4:
2f:7d:6c:d8:04:a4:de:61:45:76:71:d6:41:e0:df:
70:2c:92:26:8b:8b:a5:b9:f3:04:45:63:07:3b:b1:
c3:08:b7:1f:05:2d:e6:91:c8:a4:62:34:36:bd:52:
70:f3:f6:2b:b0:1f:5d:f9:a4:cb:5b:95:8b:20:3f:
08:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C3:26:7B:C4:8C:9B:39:34:7A:9F:32:A7:D3:B4:0F:9F:72:89:58
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/c8Mme8SMmzk0ep8yp9O0D59yiVg.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
57.176.0.0/15
Signature Algorithm: sha256WithRSAEncryption
1b:9b:81:7a:69:86:8d:c1:27:77:e9:75:59:ae:76:40:92:02:
da:63:88:68:e1:a1:14:77:b8:5a:dd:81:b4:45:7a:49:a4:dd:
32:70:85:be:ac:9c:3d:c3:c6:7f:01:a0:51:17:c7:7d:dd:47:
a6:a0:97:e4:33:34:d6:92:03:b1:e2:f2:10:6d:c3:37:44:53:
46:a1:51:23:68:83:b9:8d:0d:a6:57:f1:1a:d4:6b:0f:30:83:
53:6b:20:d9:89:18:aa:12:35:71:fd:e0:bf:ff:e1:38:cf:4c:
c4:f0:d6:3d:5f:49:3c:b8:67:95:fb:5b:4d:46:61:60:e4:32:
b1:eb:7e:d0:e3:28:57:e4:46:7e:b9:01:2f:8d:56:c5:a0:c2:
f2:20:8f:84:ce:b3:b2:07:c4:28:37:0d:57:bc:19:e8:6d:fa:
5a:8f:33:07:78:f6:27:6d:d1:cb:67:9c:e0:b9:32:34:f3:cf:
23:56:a3:cb:37:5a:33:3d:65:5b:ba:e9:a8:24:55:0d:42:d2:
95:ba:9a:94:44:f4:4d:1f:2a:09:73:79:cd:fb:72:71:fa:f8:
c8:d6:f7:d1:06:a9:fc:66:39:a0:c0:98:ca:9f:58:55:04:62:
42:39:68:c9:83:eb:f3:dc:4d:8b:e8:5e:02:ee:94:ae:0d:f5:
21:b8:5e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 03:48:39 2024 by rpki-client on console-fra.rpki-client.org