Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0JnuqfXNtv5MbvmOjYzzNkudYmE.cer
File: 0JnuqfXNtv5MbvmOjYzzNkudYmE.cer (raw, json)
Hash identifier: s8l94eNEST7akZwgfa0dWlAHSfNxyOEakkDaUpbCyPM=
Subject key identifier: D0:99:EE:A9:F5:CD:B6:FE:4C:6E:F9:8E:8D:8C:F3:36:4B:9D:62:61
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020074
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/0JnuqfXNtv5MbvmOjYzzNkudYmE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 16 Jul 2024 01:14:24 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 152719
IP: 202.49.114.0/24
IP: 2401:9860::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131188 (0x20074)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 16 01:14:24 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91B0D88/serialNumber=D099EEA9F5CDB6FE4C6EF98E8D8CF3364B9D6261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6d:7e:02:d6:6f:b6:06:5f:20:2b:49:b7:0b:
d7:33:e3:1d:29:7b:7f:b9:c5:2e:2e:c6:12:eb:33:
fc:98:27:3e:f9:e6:bb:45:75:05:58:df:aa:87:36:
70:12:e9:b9:f4:13:bc:21:85:1c:25:ee:42:bb:70:
3b:31:19:d0:d9:6d:fd:f2:51:43:92:dd:5a:e0:ca:
27:91:f7:d7:24:1a:a6:7a:93:9c:c4:9a:7c:29:9c:
37:83:8a:04:38:be:94:a9:ae:bc:b9:9b:11:3d:db:
1b:26:f6:16:cb:a8:09:54:fa:69:d6:51:5f:a5:9d:
a8:1b:0d:f2:48:ce:bb:35:42:74:16:8f:28:45:ee:
61:c6:83:64:a8:3a:ff:40:6f:94:bb:a3:c2:be:21:
10:dd:c1:ff:c5:f2:df:98:74:aa:3b:54:11:c0:c2:
fd:20:31:78:05:b8:2b:b1:c8:a0:68:73:00:68:42:
93:30:08:19:2e:4b:8c:63:b4:5f:2d:90:c2:02:8c:
d1:a8:b7:84:7a:9b:05:f0:76:fe:91:cb:be:ec:30:
c4:9d:3b:b5:2b:67:1f:50:13:0f:04:ea:9e:c4:3d:
44:f9:8b:25:6e:bb:ab:af:a0:ff:60:d8:fd:43:6b:
a9:1f:6a:d9:29:46:16:f5:23:ed:86:4a:98:0c:39:
4c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:99:EE:A9:F5:CD:B6:FE:4C:6E:F9:8E:8D:8C:F3:36:4B:9D:62:61
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/0JnuqfXNtv5MbvmOjYzzNkudYmE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152719
sbgp-ipAddrBlock: critical
IPv4:
202.49.114.0/24
IPv6:
2401:9860::/32
Signature Algorithm: sha256WithRSAEncryption
31:33:e9:99:46:98:21:7c:fe:45:53:de:2f:19:03:8e:b5:8b:
46:b7:4a:cc:c5:50:2a:5e:ae:a1:88:b7:67:61:5c:6b:39:78:
aa:0a:64:74:67:ee:2c:e8:5b:f8:64:8e:83:3a:6f:93:17:ea:
73:2f:b0:09:21:f7:dc:d2:24:39:7e:5a:3d:c7:d1:44:66:08:
12:63:e0:96:98:9c:9d:2d:5e:35:bc:48:39:70:90:a3:a4:06:
6d:9e:6f:70:86:30:57:a1:65:7d:78:d1:46:d2:77:46:f9:13:
fa:81:6b:76:70:b5:a9:32:83:4d:25:c9:2b:da:16:31:70:73:
5b:0c:77:f8:c9:9d:d1:f8:b6:b3:54:e5:c0:26:d8:45:bd:c3:
62:ce:f2:d0:72:81:e0:a6:82:6b:80:82:81:09:73:2e:51:95:
a8:7e:68:bd:74:41:ff:7b:9c:55:c2:e3:9e:14:5b:cd:d8:55:
ef:e7:0b:74:aa:eb:25:61:98:30:05:ad:0c:3a:de:06:ad:b0:
b1:37:12:82:18:a9:6e:03:3b:71:aa:a0:19:65:ab:50:2b:30:
69:c8:84:80:ea:cc:b6:b6:75:3d:b9:b3:ba:e5:0b:43:45:4e:
5e:92:e1:89:0e:cc:8a:e4:b2:ae:23:53:bd:38:68:29:e3:ad:
93:55:de:10
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAgB0MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcxNjAxMTQyNFoXDTI1MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjBEODgxMTAvBgNVBAUTKEQwOTlFRUE5RjVDREI2RkU0QzZFRjk4
RThEOENGMzM2NEI5RDYyNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDtbX4C1m+2Bl8gK0m3C9cz4x0pe3+5xS4uxhLrM/yYJz755rtFdQVY36qHNnAS
6bn0E7whhRwl7kK7cDsxGdDZbf3yUUOS3VrgyieR99ckGqZ6k5zEmnwpnDeDigQ4
vpSprry5mxE92xsm9hbLqAlU+mnWUV+lnagbDfJIzrs1QnQWjyhF7mHGg2SoOv9A
b5S7o8K+IRDdwf/F8t+YdKo7VBHAwv0gMXgFuCuxyKBocwBoQpMwCBkuS4xjtF8t
kMICjNGot4R6mwXwdv6Ry77sMMSdO7UrZx9QEw8E6p7EPUT5iyVuu6uvoP9g2P1D
a6kfatkpRhb1I+2GSpgMOUzBAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQU0JnuqfXN
tv5MbvmOjYzzNkudYmEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUIwRDg4L0I5ODZEOTFBNDMxMDExRUY4ODQxMTc4MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCMEQ4OC9COTg2RDkxQTQzMTAxMUVGODg0MTE3ODJDNEY5QUUwMi8wSm51cWZY
TnR2NU1idm1Pall6ek5rdWRZbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlSPMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAyjFyMA0EAgAC
MAcDBQAkAZhgMA0GCSqGSIb3DQEBCwUAA4IBAQAxM+mZRpghfP5FU94vGQOOtYtG
t0rMxVAqXq6hiLdnYVxrOXiqCmR0Z+4s6Fv4ZI6DOm+TF+pzL7AJIffc0iQ5flo9
x9FEZggSY+CWmJydLV41vEg5cJCjpAZtnm9whjBXoWV9eNFG0ndG+RP6gWt2cLWp
MoNNJckr2hYxcHNbDHf4yZ3R+LazVOXAJthFvcNizvLQcoHgpoJrgIKBCXMuUZWo
fmi9dEH/e5xVwuOeFFvN2FXv5wt0quslYZgwBa0MOt4GrbCxNxKCGKluAztxqqAZ
ZatQKzBpyISA6sy2tnU9ubO65QtDRU5ekuGJDsyK5LKuI1O9OGgp462TVd4Q
-----END CERTIFICATE-----
Generated at Sat Sep 7 22:41:16 2024 by rpki-client on console-ams.rpki-client.org