Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/c8Mme8SMmzk0ep8yp9O0D59yiVg.cer
File: c8Mme8SMmzk0ep8yp9O0D59yiVg.cer (raw, json)
Hash identifier: yRS04wbhwjEfBZzCgR4QsNg7HuH0SwMw42+ok7FkjC4=
Subject key identifier: 73:C3:26:7B:C4:8C:9B:39:34:7A:9F:32:A7:D3:B4:0F:9F:72:89:58
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 47CF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/c8Mme8SMmzk0ep8yp9O0D59yiVg.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Wed 21 Aug 2024 02:19:43 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 57.176.0.0/15
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18383 (0x47cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Aug 21 02:19:43 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9162E3D0000/serialNumber=73C3267BC48C9B39347A9F32A7D3B40F9F728958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a6:ee:8c:64:e8:c6:79:4a:d3:28:73:34:55:
99:e3:eb:ab:93:6b:6b:32:6b:06:57:64:c7:6e:4c:
ee:f8:8f:21:46:ab:c4:03:77:96:4c:49:c3:19:63:
be:30:97:36:17:24:77:0d:29:60:5b:a5:f0:83:b3:
ed:ca:a7:e1:c8:75:27:d9:3f:19:07:54:07:b7:5b:
db:89:e7:64:37:21:bb:93:9a:18:da:ee:22:a9:15:
c6:20:2c:f0:6b:eb:9a:0b:7c:d6:d6:74:0d:a6:b0:
08:95:a5:3f:80:c4:82:0f:80:a3:b2:8a:b7:c9:50:
f4:ff:f5:fb:69:a3:75:e7:65:41:5a:60:8c:ef:24:
a5:4c:e3:0f:3f:2d:9a:bc:93:09:a5:07:57:1f:55:
9e:32:4e:1b:e8:6f:3c:d7:17:a5:87:39:2a:77:e4:
d1:c4:bd:fb:bc:ca:ec:0e:9e:9a:cb:fb:87:98:1d:
7f:9e:87:f9:f3:a9:93:ea:66:d6:75:84:8b:ea:d4:
2f:7d:6c:d8:04:a4:de:61:45:76:71:d6:41:e0:df:
70:2c:92:26:8b:8b:a5:b9:f3:04:45:63:07:3b:b1:
c3:08:b7:1f:05:2d:e6:91:c8:a4:62:34:36:bd:52:
70:f3:f6:2b:b0:1f:5d:f9:a4:cb:5b:95:8b:20:3f:
08:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C3:26:7B:C4:8C:9B:39:34:7A:9F:32:A7:D3:B4:0F:9F:72:89:58
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/c8Mme8SMmzk0ep8yp9O0D59yiVg.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
57.176.0.0/15
Signature Algorithm: sha256WithRSAEncryption
9f:f9:f0:25:c2:03:c9:61:1e:60:48:2a:27:e6:4c:58:e6:49:
a5:87:3e:5f:b5:32:fe:1a:0a:ef:fa:8c:27:48:22:4d:e3:65:
e5:79:9d:50:22:05:b1:1f:55:44:bf:11:84:06:07:57:96:dc:
03:30:d7:33:85:7f:05:8f:11:dc:fc:59:6b:31:53:d9:c0:fb:
69:2a:75:77:fc:31:da:fb:0a:32:50:83:bd:d0:bd:49:e5:6d:
be:14:32:20:86:6b:c4:b8:0d:d2:01:a5:53:39:bb:ab:da:d9:
98:76:bc:b1:a2:06:19:01:8d:40:ce:42:6b:a2:3b:e4:3e:54:
55:7f:b2:d3:54:c7:cf:a4:9e:a8:89:0c:09:e6:19:a6:c7:63:
0e:a3:f1:97:6c:86:90:26:bb:df:73:ca:b5:d1:38:97:30:1c:
17:e4:05:2d:a8:eb:a0:c7:0a:3a:81:51:bb:49:cf:3e:04:ba:
14:a9:e3:e8:c5:60:e4:8b:ba:9a:7b:58:13:78:f5:06:98:91:
55:d0:85:ad:d5:03:77:ae:a4:3c:5c:a7:5e:39:eb:b7:93:75:
85:2b:c8:35:e3:a8:cf:50:03:45:66:4d:de:e1:0f:25:bf:d0:
82:b0:3d:9c:be:c4:89:24:40:b5:0f:b9:92:49:93:9a:84:24:
b1:d7:b5:1e
-----BEGIN CERTIFICATE-----
MIIFpTCCBI2gAwIBAgICR88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjQwODIxMDIxOTQzWhcNMjUwOTMwMDAwMDAwWjBKMRUwEwYD
VQQDEwxBOTE2MkUzRDAwMDAxMTAvBgNVBAUTKDczQzMyNjdCQzQ4QzlCMzkzNDdB
OUYzMkE3RDNCNDBGOUY3Mjg5NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCdpu6MZOjGeUrTKHM0VZnj66uTa2syawZXZMduTO74jyFGq8QDd5ZMScMZ
Y74wlzYXJHcNKWBbpfCDs+3Kp+HIdSfZPxkHVAe3W9uJ52Q3IbuTmhja7iKpFcYg
LPBr65oLfNbWdA2msAiVpT+AxIIPgKOyirfJUPT/9ftpo3XnZUFaYIzvJKVM4w8/
LZq8kwmlB1cfVZ4yThvobzzXF6WHOSp35NHEvfu8yuwOnprL+4eYHX+eh/nzqZPq
ZtZ1hIvq1C99bNgEpN5hRXZx1kHg33AskiaLi6W58wRFYwc7scMItx8FLeaRyKRi
NDa9UnDz9iuwH135pMtblYsgPwgPAgMBAAGjggKXMIICkzAdBgNVHQ4EFgQUc8Mm
e8SMmzk0ep8yp9O0D59yiVgwHwYDVR0jBBgwFoAUDPzneFf88B852ZpitKpi5hWe
dvgwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBo
oGagZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0
MUQ2NjExRTJBM0YyN0Y3QzcyRkQxRkYyL0RQem5lRmY4OEI4NTJacGl0S3BpNWhX
ZWR2Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUy
MUE0RjRGQjQvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZnLmNlcjBKBgNVHSAB
Af8EQDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFw
bmljLm5ldC9SUEtJL0NQUy5wZGYwgc4GCCsGAQUFBwELBIHBMIG+MDQGCCsGAQUF
BzAFhihyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMFMG
CCsGAQUFBzAKhkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAw
MDAvYzhNbWU4U01temswZXA4eXA5TzBENTl5aVZnLm1mdDAxBggrBgEFBQcwDYYl
aHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcB
BwEB/wQPMA0wCwQCAAEwBQMDATmwMA0GCSqGSIb3DQEBCwUAA4IBAQCf+fAlwgPJ
YR5gSCon5kxY5kmlhz5ftTL+Ggrv+ownSCJN42XleZ1QIgWxH1VEvxGEBgdXltwD
MNczhX8FjxHc/FlrMVPZwPtpKnV3/DHa+woyUIO90L1J5W2+FDIghmvEuA3SAaVT
Obur2tmYdryxogYZAY1AzkJrojvkPlRVf7LTVMfPpJ6oiQwJ5hmmx2MOo/GXbIaQ
Jrvfc8q10TiXMBwX5AUtqOugxwo6gVG7Sc8+BLoUqePoxWDki7qae1gTePUGmJFV
0IWt1QN3rqQ8XKdeOeu3k3WFK8g146jPUANFZk3e4Q8lv9CCsD2cvsSJJEC1D7mS
SZOahCSx17Ue
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:04 2024 by rpki-client on console-fra.rpki-client.org