Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0q268NfVLLlNShOXizIFO833eg8.cer
File: 0q268NfVLLlNShOXizIFO833eg8.cer (raw, json)
Hash identifier: i06MGjS6BHkSodwajIIxXFwtR/H6GYD5l2rVvxyOp7g=
Subject key identifier: D2:AD:BA:F0:D7:D5:2C:B9:4D:4A:13:97:8B:32:05:3B:CD:F7:7A:0F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C51E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/0q268NfVLLlNShOXizIFO833eg8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Oct 2023 03:07:54 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 202.36.41.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115998 (0x1c51e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 20 03:07:54 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91BE514/serialNumber=D2ADBAF0D7D52CB94D4A13978B32053BCDF77A0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0d:24:f7:90:29:aa:21:d6:b9:32:24:fa:0e:
52:8d:f6:e1:e9:09:83:2f:1a:b3:5d:d1:ef:b8:7e:
77:5f:17:0e:21:ab:8d:d2:fc:36:33:2d:29:6b:7c:
e8:a0:51:b7:5c:dd:c4:a2:4c:33:46:b7:58:4e:fe:
fc:48:0e:e9:6c:c6:4d:25:7c:1d:a0:ba:33:02:33:
9b:80:cf:80:7e:51:c4:32:aa:16:44:23:a6:87:2e:
a2:8e:7e:a6:58:72:1d:d3:9e:d2:88:b6:dd:41:6a:
bd:ef:06:fc:cc:96:01:93:21:91:c9:1e:88:77:a6:
67:4d:a7:87:14:42:59:48:81:53:aa:b2:64:a8:73:
83:ea:55:dc:7d:85:07:22:08:08:88:a5:28:55:d9:
75:6b:51:9e:fa:66:d3:4e:25:a3:65:e7:ef:b8:8b:
a5:d2:07:42:2c:14:1a:18:5b:97:2c:00:64:f0:1d:
e9:2c:2d:f2:ae:7f:b9:ed:8c:d2:be:58:d2:f7:9b:
aa:a1:fb:8d:55:25:e1:e6:26:f9:14:35:27:2c:dc:
12:ae:31:71:d8:39:d1:de:1a:2a:b6:2d:44:9c:d5:
a3:28:91:16:c6:3e:da:f5:93:c7:db:e7:00:6e:c6:
27:30:cd:e3:b4:ff:0c:40:2c:67:e5:ba:c5:52:38:
49:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:AD:BA:F0:D7:D5:2C:B9:4D:4A:13:97:8B:32:05:3B:CD:F7:7A:0F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/0q268NfVLLlNShOXizIFO833eg8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.36.41.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:18:ae:3f:9e:ca:05:bb:b6:54:e6:0a:3a:a1:b6:4f:c2:6f:
d6:17:54:0c:1d:a1:eb:06:4a:48:f3:75:2a:ce:d7:13:62:b3:
fb:61:3d:e8:e4:b5:a9:57:12:9e:ba:61:a3:6c:1a:08:d6:38:
f5:18:03:79:db:ec:72:fc:57:8d:15:70:6a:80:64:60:99:d9:
29:b4:6e:30:b9:30:a7:b2:c0:00:e8:c2:f7:21:b4:5f:0c:0a:
04:be:4f:1d:79:9a:b2:78:f2:87:c8:eb:a2:e6:8d:08:48:f5:
48:30:74:22:69:72:6a:8a:fb:66:4d:8d:c5:e7:7e:b4:7d:98:
57:64:61:27:07:a0:76:73:75:95:19:ed:34:3b:8e:7a:f8:ed:
47:b2:08:db:63:17:c8:9e:e6:1a:6a:58:82:d6:6b:19:8c:b9:
35:2e:68:f6:f7:73:e2:0d:34:ef:04:90:37:d6:09:af:0f:86:
7b:51:ff:d1:f4:03:ec:3b:e3:48:32:b1:07:50:29:a6:4b:3f:
27:b8:90:d8:77:7e:fd:9e:d4:1b:45:a8:c6:75:55:1a:6a:1b:
d1:20:ab:60:ba:25:ff:08:f2:55:51:15:9b:8f:41:48:f2:57:
d3:dc:b2:2d:14:29:6b:ab:39:14:02:aa:39:d6:4a:3b:7a:0e:
01:80:dd:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 06:13:45 2024 by rpki-client on console-fra.rpki-client.org