Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0q268NfVLLlNShOXizIFO833eg8.cer
File: 0q268NfVLLlNShOXizIFO833eg8.cer (raw, json)
Hash identifier: M2p+lIbWhjgo4oiDlKXbizyWu9zuQCX8OggWZYyqvLU=
Subject key identifier: D2:AD:BA:F0:D7:D5:2C:B9:4D:4A:13:97:8B:32:05:3B:CD:F7:7A:0F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020C0E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/0q268NfVLLlNShOXizIFO833eg8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Sep 2024 05:50:50 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 202.36.41.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134158 (0x20c0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Sep 5 05:50:50 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91BE514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0d:24:f7:90:29:aa:21:d6:b9:32:24:fa:0e:
52:8d:f6:e1:e9:09:83:2f:1a:b3:5d:d1:ef:b8:7e:
77:5f:17:0e:21:ab:8d:d2:fc:36:33:2d:29:6b:7c:
e8:a0:51:b7:5c:dd:c4:a2:4c:33:46:b7:58:4e:fe:
fc:48:0e:e9:6c:c6:4d:25:7c:1d:a0:ba:33:02:33:
9b:80:cf:80:7e:51:c4:32:aa:16:44:23:a6:87:2e:
a2:8e:7e:a6:58:72:1d:d3:9e:d2:88:b6:dd:41:6a:
bd:ef:06:fc:cc:96:01:93:21:91:c9:1e:88:77:a6:
67:4d:a7:87:14:42:59:48:81:53:aa:b2:64:a8:73:
83:ea:55:dc:7d:85:07:22:08:08:88:a5:28:55:d9:
75:6b:51:9e:fa:66:d3:4e:25:a3:65:e7:ef:b8:8b:
a5:d2:07:42:2c:14:1a:18:5b:97:2c:00:64:f0:1d:
e9:2c:2d:f2:ae:7f:b9:ed:8c:d2:be:58:d2:f7:9b:
aa:a1:fb:8d:55:25:e1:e6:26:f9:14:35:27:2c:dc:
12:ae:31:71:d8:39:d1:de:1a:2a:b6:2d:44:9c:d5:
a3:28:91:16:c6:3e:da:f5:93:c7:db:e7:00:6e:c6:
27:30:cd:e3:b4:ff:0c:40:2c:67:e5:ba:c5:52:38:
49:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:AD:BA:F0:D7:D5:2C:B9:4D:4A:13:97:8B:32:05:3B:CD:F7:7A:0F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/0q268NfVLLlNShOXizIFO833eg8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.36.41.0/24
Signature Algorithm: sha256WithRSAEncryption
39:58:6d:1e:3c:d5:d4:63:42:4b:b8:67:86:a6:e6:8e:4b:a3:
ce:59:c2:1c:86:6f:c1:fe:ce:5b:b6:ea:d4:5a:da:77:bf:73:
39:4a:a7:8e:92:61:72:45:95:a3:9d:45:84:71:bb:2b:90:48:
c4:8a:ad:de:93:45:0c:3f:cf:37:57:63:b8:9b:8d:e8:3f:ab:
0a:a5:a9:82:6e:fd:13:71:0a:4b:50:0a:e6:72:18:a5:ac:17:
bb:1e:a3:73:78:b1:fe:3b:6f:0e:48:00:c9:5f:03:2a:8a:3e:
21:ef:05:39:d1:20:a4:e0:1e:b2:9b:3d:3c:a2:ce:72:e2:54:
19:1e:22:ad:72:de:a2:e5:fa:34:91:e3:46:e2:fd:8a:5d:29:
a5:05:4f:fb:88:d2:cf:5b:f2:26:65:dc:71:ff:e6:0e:47:4d:
f7:bc:92:d2:90:1b:28:e0:67:01:65:39:ee:7d:9d:53:0b:0d:
b1:2e:b1:2e:fd:bf:0b:65:63:c3:d3:5c:ab:66:8f:85:f4:83:
c8:9d:96:9d:27:cb:b5:ec:8b:1b:2b:69:f2:98:4b:11:c7:e3:
2e:5a:f8:cc:e7:7a:9d:0e:2d:74:7b:f0:1b:1d:77:51:40:46:
da:4e:39:91:91:93:f8:b9:f7:23:21:86:d8:c6:88:6a:24:fc:
ed:cf:d3:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:42 2025 by rpki-client