Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-P-HgJbLhByDdgq1VerbvXBSUwo.cer
File: -P-HgJbLhByDdgq1VerbvXBSUwo.cer (raw, json)
Hash identifier: LSpCjEamym8qCZCgEhc9zXJ2znZSKJaHQBWScBs6jBQ=
Subject key identifier: F8:FF:87:80:96:CB:84:1C:83:76:0A:B5:55:EA:DB:BD:70:52:53:0A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E323
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E28F6/FEF3446C8D7811EB8D8BD60BC4F9AE02/-P-HgJbLhByDdgq1VerbvXBSUwo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E28F6/FEF3446C8D7811EB8D8BD60BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Mar 2024 14:42:18 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 202.20.98.0/24
IP: 202.20.111.0/24
IP: 203.14.166.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 21:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123683 (0x1e323)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 6 14:42:18 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91E28F6/serialNumber=F8FF878096CB841C83760AB555EADBBD7052530A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6b:1e:f2:15:ab:6b:55:dc:f9:cf:ad:c4:35:
e0:4f:96:30:72:b1:57:1f:96:44:80:26:71:1e:df:
6e:2e:ec:82:33:23:0e:60:e0:05:97:33:12:39:bc:
5f:05:f4:de:c1:36:bb:75:a9:ed:be:29:65:9e:52:
bb:9a:52:8e:ff:c1:81:86:7e:e3:ec:e8:16:d3:27:
6e:72:02:5f:0a:cd:f2:e5:7e:5f:11:a5:06:f5:c7:
7a:c7:ee:77:82:d5:0d:8f:b3:47:38:63:e3:1e:1c:
9e:77:18:f1:0d:d3:2d:b5:a4:d8:ca:2c:78:df:8e:
a1:7d:c5:54:57:d2:e2:3f:8f:bf:0d:55:6a:20:f6:
b8:8c:c1:c2:d3:bd:48:7c:a4:29:60:60:06:6c:51:
7d:e9:8c:a3:38:47:0e:a1:9a:4a:bc:b8:b8:e3:a7:
93:5f:49:8d:d0:aa:82:ac:d3:ef:d5:a1:59:d3:32:
08:9e:d3:ba:01:ce:02:17:ea:a0:43:59:a8:c9:ea:
5c:cb:2c:32:16:b6:ee:34:ec:10:33:2f:fd:47:eb:
f2:92:48:a8:61:dd:97:44:25:4e:43:e2:b9:fb:eb:
db:6e:c3:a0:25:74:3e:5a:28:f9:a2:a8:06:1b:01:
20:cf:be:5e:c4:30:3a:8a:c5:5b:a1:f4:27:41:80:
05:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:FF:87:80:96:CB:84:1C:83:76:0A:B5:55:EA:DB:BD:70:52:53:0A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E28F6/FEF3446C8D7811EB8D8BD60BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E28F6/FEF3446C8D7811EB8D8BD60BC4F9AE02/-P-HgJbLhByDdgq1VerbvXBSUwo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.20.98.0/24
202.20.111.0/24
203.14.166.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:d7:0d:7b:a0:cc:f0:83:7e:87:86:16:18:cf:ee:c8:94:78:
5d:77:24:7d:08:ac:40:a2:83:fd:7a:0a:6e:69:4d:f6:84:f7:
0e:92:9c:22:ba:27:56:34:36:43:00:10:2e:e5:34:b5:1d:8d:
65:ea:9d:68:2c:74:60:06:4d:bc:55:fd:57:2f:2b:58:76:3f:
b3:90:87:9d:aa:cf:db:0a:58:e3:b6:b9:2b:23:0e:fe:a0:c1:
df:86:b7:33:bd:07:9f:f1:3d:29:dd:db:e2:0f:ea:f4:82:79:
4d:bd:8a:f0:a0:a6:a9:c9:0f:07:52:1b:b4:29:dd:ea:0c:22:
82:60:d5:36:c3:5c:c4:d9:8c:98:bb:95:9a:ca:c3:1f:91:b5:
d5:f5:7a:0a:61:83:62:f0:8a:b0:60:45:04:0c:21:c6:60:bb:
f6:ab:67:93:2e:52:59:b3:29:f5:1f:a4:82:82:f3:51:91:72:
88:17:af:78:bd:f3:2d:81:17:b9:31:91:5c:9a:ce:2b:a9:5b:
93:d9:90:0d:0c:05:5b:1d:1d:4a:fa:52:53:24:fc:76:35:c4:
36:81:74:c5:88:9e:aa:7d:cb:8d:5d:f0:68:3c:c5:5f:d2:a7:
81:7e:82:7e:12:a9:ff:0e:da:bb:70:6e:53:f9:60:2e:89:b3:
d8:23:ed:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 22:18:09 2024 by rpki-client on console-ams.rpki-client.org