Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-6fDrfB_gLNWwRO4Ulb1ekBp6uY.cer
File: -6fDrfB_gLNWwRO4Ulb1ekBp6uY.cer (raw, json)
Hash identifier: e7NWJqO0vAyB1ZW8KFHFSWJ4Y7KI6VAmVL2n1Uc4RaA=
Subject key identifier: FB:A7:C3:AD:F0:7F:80:B3:56:C1:13:B8:52:56:F5:7A:40:69:EA:E6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D8BF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918FD87/29AA9956DE0811EAA106B62BC4F9AE02/-6fDrfB_gLNWwRO4Ulb1ekBp6uY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918FD87/29AA9956DE0811EAA106B62BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 16 Jan 2024 18:08:40 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 43.224.16.0/22
IP: 103.43.44.0/22
IP: 2407:180::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121023 (0x1d8bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 16 18:08:40 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A918FD87/serialNumber=FBA7C3ADF07F80B356C113B85256F57A4069EAE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:99:07:37:f8:3b:9d:02:ce:75:be:29:17:37:
c0:8b:a8:39:24:57:9b:30:53:c0:86:5c:a7:3e:48:
04:71:97:6d:40:d2:6a:bb:30:c9:c4:15:c5:d3:eb:
8b:dd:76:79:6f:bc:67:ae:96:12:e5:b3:9b:5c:c3:
4f:03:c6:b8:52:28:f7:14:c9:99:03:6b:36:f3:cc:
58:9f:d5:01:6d:66:4e:a2:e8:e1:de:be:cd:ef:f1:
90:f6:96:21:5c:32:db:88:e5:9f:9b:a4:05:01:00:
91:eb:54:32:3e:5a:ed:9b:d2:a3:7b:70:5a:e2:cc:
55:27:e0:58:d4:57:55:92:66:38:d5:2c:b3:31:75:
96:e2:90:b6:30:ec:cc:85:ad:b8:4b:c6:82:41:71:
fc:3b:27:d6:96:dc:e5:76:02:87:40:f8:bb:49:ed:
8a:05:7d:cf:d2:66:11:1a:02:ec:d2:c0:c8:87:1b:
7f:ef:91:0f:d0:5e:2a:93:46:54:ba:4b:91:8a:bf:
a7:ee:ac:6e:dc:29:df:b2:af:42:d1:61:50:29:8f:
f0:43:f8:52:92:6f:e0:cf:42:65:70:51:73:6c:20:
ed:dc:71:0b:ef:0a:e7:fe:a3:b1:73:5e:4f:a7:a5:
63:be:0f:d9:16:cc:aa:1e:d2:9a:f9:88:22:06:1f:
ff:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A7:C3:AD:F0:7F:80:B3:56:C1:13:B8:52:56:F5:7A:40:69:EA:E6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918FD87/29AA9956DE0811EAA106B62BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918FD87/29AA9956DE0811EAA106B62BC4F9AE02/-6fDrfB_gLNWwRO4Ulb1ekBp6uY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.16.0/22
103.43.44.0/22
IPv6:
2407:180::/32
Signature Algorithm: sha256WithRSAEncryption
2b:92:6b:2d:86:80:da:0b:81:2b:53:d8:3f:ef:b5:66:ab:49:
22:b1:fd:14:a7:25:ea:43:c3:fe:26:70:3d:b2:6b:2a:5c:74:
99:8f:e6:2d:e3:ec:c0:e2:1b:1c:36:db:48:96:d1:b3:bd:11:
3a:79:13:c9:60:8b:3d:8f:64:fc:2d:e3:96:f9:be:51:f1:7a:
ff:62:28:f7:2c:09:42:ad:0e:40:52:de:c6:53:90:25:fb:07:
4d:29:f5:74:10:a1:65:28:6e:49:18:ce:68:65:f0:e6:77:2a:
5d:f0:8f:f9:80:7f:08:48:71:6a:86:85:72:79:6b:41:0c:fd:
cc:74:99:51:37:a2:15:c6:e3:25:73:bf:7a:12:c1:26:58:03:
08:7d:b3:77:e3:bd:4d:7a:04:ca:92:1f:75:a7:14:93:e0:c3:
eb:8d:f6:94:82:63:b9:e3:7b:9b:59:2f:0d:40:0b:8c:f9:ad:
df:71:9d:05:e6:ac:16:b9:ef:c5:2b:52:14:62:07:34:c7:38:
bf:7b:6d:ab:e8:c2:38:58:e3:ca:f5:39:5f:d0:2e:4b:08:85:
4e:93:e8:0c:b7:bf:34:f0:f2:cc:96:b4:45:de:d2:00:d2:d5:
5a:3f:83:b5:f1:c1:25:97:2e:69:2b:2f:38:e8:df:f8:60:b7:
aa:07:ac:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:36 2024 by rpki-client on console-fra.rpki-client.org