Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer
File: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer (raw, json)
Hash identifier: 0c8x1bzQPyYGdrOkQiEapp1M20OAv5GhAkyqvTjBDcc=
Subject key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CA90
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 13 Nov 2023 16:01:32 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 103.198.92.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 01:18:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117392 (0x1ca90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 13 16:01:32 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3d:70:b8:21:f5:42:c9:58:62:d7:ff:65:96:
73:49:a1:b5:01:ab:35:f0:de:56:3c:53:4c:01:38:
03:72:47:03:70:5b:cf:17:52:d7:94:12:8c:03:7a:
e0:9e:dd:52:a6:99:4a:75:df:f6:1e:7f:39:a5:75:
01:8b:26:12:27:15:d3:9d:5c:96:0f:76:ca:10:9a:
43:42:bf:0d:a6:07:4d:12:08:11:72:af:43:75:7f:
d7:ee:a2:07:15:77:32:d2:70:ca:b6:b7:a6:ba:4a:
5f:45:1a:90:d7:77:f7:b6:7c:b7:1a:16:90:f5:3c:
e1:e9:04:a0:6e:28:63:74:e4:5d:a2:ea:2d:33:71:
bc:1f:7f:15:6c:2c:24:d4:5c:53:d2:eb:7d:a8:26:
e9:9a:c9:0f:bc:50:1f:ee:e0:c7:5a:5c:dd:7d:4c:
62:90:11:09:d0:79:27:07:c2:18:de:d6:57:95:d5:
7c:3c:33:e9:6c:c0:b5:d6:09:e8:8b:5d:a8:7a:0a:
65:56:ef:94:57:2e:4e:34:39:7c:4f:b7:c5:2b:30:
28:ec:1d:d7:8a:9d:a8:b9:c0:79:31:22:73:f4:5e:
52:f7:8d:0b:5d:3f:b4:81:87:3c:f3:fa:0b:0a:97:
d9:34:d1:c2:63:e8:b7:07:b5:52:80:64:33:a7:92:
e7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.198.92.0/24
Signature Algorithm: sha256WithRSAEncryption
89:c4:be:a4:e6:40:68:a9:1f:9c:3e:d0:04:bc:8f:19:23:e2:
c6:e4:bc:e8:7b:05:be:92:af:04:11:76:68:7d:6c:25:83:ab:
aa:50:9d:13:42:89:f2:08:bf:4d:65:08:29:d3:45:22:99:b0:
ef:47:7f:30:63:06:12:3d:cb:b8:4f:66:c9:20:09:c8:a1:95:
d1:1b:40:12:9e:5a:1a:af:29:4a:7c:8b:9a:2b:bb:f1:9c:a7:
7d:a1:47:52:92:20:fa:e1:fc:91:b3:ee:b7:be:fe:cc:e1:a2:
bc:5a:42:1f:d8:6b:1e:e6:69:e3:d2:d5:2e:62:dc:f9:b7:79:
42:44:e1:81:ea:90:36:30:3a:52:98:a0:f4:3d:c5:13:f1:93:
b9:c2:fa:a8:bb:00:ac:20:31:ab:d6:a0:b9:7c:cd:9f:da:9c:
92:44:c0:de:0d:92:c1:0a:d3:39:23:e2:59:4b:2c:51:6b:34:
29:ec:ed:12:2e:48:77:c6:f8:5e:40:f9:93:7f:2c:b4:4d:3e:
66:ab:64:9e:2b:df:f2:ee:36:9b:24:2e:ec:e5:35:93:86:f2:
c6:a3:28:ad:ab:8c:17:44:0f:e9:93:eb:c6:8e:96:91:1c:b2:
e6:38:9e:b6:2a:ff:e1:dd:ec:90:69:4b:d3:5e:6e:c1:a0:82:
e7:c9:c7:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 02:02:33 2024 by rpki-client on console-fra.rpki-client.org