Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer
File: -ibzSoM5sd823JwRkSBXw6WD9nM.cer (raw, json)
Hash identifier: LDsBNsqKVRGJ3D08Ieb/f5RqeRMYrN8gngze2mcOAVU=
Subject key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F397
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 24 May 2024 14:57:39 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 103.186.82.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127895 (0x1f397)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 24 14:57:39 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6b:a7:ac:f3:b8:d2:7f:9f:cc:be:4b:43:85:
7d:87:bd:07:d5:a2:fb:1e:8d:e2:08:15:41:fb:e4:
b6:dd:7c:6d:91:cd:ab:63:e2:d5:21:ff:fb:e7:8f:
68:d6:51:75:53:b2:13:46:1c:cc:70:58:ba:fc:87:
7e:ab:70:c0:cc:c0:19:00:2f:8a:70:d6:eb:39:0c:
f8:38:cc:98:9e:c8:97:56:42:4f:69:1e:e9:f9:59:
5a:74:ab:36:6a:17:03:82:d2:21:49:15:c1:3e:5c:
92:7c:7b:c7:2e:fc:02:ae:05:bb:c4:8b:6b:f8:8a:
80:53:6a:fa:1a:54:86:58:43:6a:9b:eb:e9:0e:d6:
66:b5:89:f1:26:73:62:d1:4a:01:fd:f6:7c:a7:7b:
0a:ca:2c:f5:0a:fb:e0:a5:5f:3e:9a:f6:2d:e9:09:
7d:e5:f8:1b:d3:fd:8b:41:59:d6:a4:3f:37:70:3b:
4b:94:38:b4:96:ec:e2:a0:34:c2:03:c7:9e:88:a2:
9f:df:4c:04:35:1e:c1:76:96:fa:ce:d1:c2:53:2d:
a7:2b:0a:3f:29:a8:40:2c:04:19:a1:0e:58:79:11:
1f:c6:8c:f2:68:be:c8:b6:ce:36:94:13:ae:48:f5:
db:51:0e:83:bd:1f:e9:29:96:68:c8:c8:73:fc:7d:
4a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.82.0/23
Signature Algorithm: sha256WithRSAEncryption
d1:5c:3b:6d:54:b5:21:67:ca:6e:fc:df:d7:fe:80:0f:6e:5d:
94:8e:d2:c3:98:3f:0c:93:f0:a5:29:59:14:96:39:04:f2:87:
13:f2:14:9e:83:c0:36:91:68:8e:ff:85:a0:4d:d6:a4:ac:bd:
b7:e1:f1:d2:cb:dc:cf:98:39:65:d2:b6:d4:0b:29:cc:b2:b9:
de:39:60:4a:f8:4a:61:b5:aa:9e:61:7c:74:b4:06:13:c0:0d:
91:cc:26:2f:d6:e1:0f:2f:a1:59:9e:f3:cd:67:ff:07:33:54:
7e:2f:2f:4a:ae:df:68:ab:86:04:64:37:eb:91:da:9b:5c:82:
1a:bd:73:3f:a2:63:29:25:ef:a5:90:01:9d:7c:f9:d3:f6:bc:
c1:fd:89:c6:00:07:86:bd:63:59:0c:8a:12:cc:27:34:9f:5c:
a7:01:a8:23:7e:91:fe:f8:8a:92:4f:8f:ea:40:ef:29:fa:25:
19:6f:c4:78:0b:86:13:e9:d9:31:28:a1:f3:e6:59:73:dd:c6:
28:93:0b:63:55:b8:55:8e:86:d8:87:13:a4:19:bb:58:72:0f:
eb:e4:67:6e:18:a3:58:b8:ee:05:d7:40:13:4c:1b:6d:92:f8:
71:4d:9c:db:fa:ad:18:ba:20:f8:96:5f:2c:ea:90:2b:bc:3f:
ca:cd:2b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:04 2024 by rpki-client on console-fra.rpki-client.org