Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer
File: 1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer (raw, json)
Hash identifier: 23VVfbDguHXWewm/PlJfyNPqYltRwQ9jDczwZv4mh8I=
Subject key identifier: D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C57A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.mft
caRepository: rsync://0.sb/repo/sb/38/
Notify URL: https://0.sb/rrdp/notification.xml
Certificate not before: Sun 22 Oct 2023 19:09:35 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 103.121.208.0/22
IP: 2403:71c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 23:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116090 (0x1c57a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 22 19:09:35 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a7:34:48:b8:a6:8d:50:5c:50:2d:f9:ce:0f:
4d:de:f0:c8:c0:98:93:e0:d3:f9:db:80:0a:04:41:
cb:c6:91:e5:78:2b:07:d7:bb:d9:34:a1:fb:9a:e9:
02:2b:d6:87:09:bb:ce:73:d7:3b:38:7f:5d:78:e0:
0c:df:eb:54:1a:2c:99:74:5b:ed:b3:08:c5:d4:5a:
88:8f:38:66:2d:f6:fc:00:cb:08:da:87:9b:ac:9a:
55:49:af:d9:3d:68:58:74:fd:c4:c3:33:d2:89:06:
48:7b:39:7a:b8:eb:c7:22:05:0f:a1:1d:10:64:ad:
ab:f5:1d:bb:c4:82:30:51:6c:35:bc:05:0e:2a:f3:
6a:cf:6c:83:ba:9f:b2:6b:c0:b6:f6:15:f0:9d:15:
0b:9e:c8:12:92:95:fb:d5:91:fc:b7:08:0d:dc:aa:
69:8d:53:5d:bc:50:9d:ab:74:5b:13:de:00:0c:6e:
c9:b7:eb:bf:7c:37:d4:97:38:37:58:ae:bb:f1:d4:
88:6c:10:d1:dd:7a:7a:7d:33:69:50:7c:c3:2f:20:
1b:f7:7b:f9:ad:e2:49:30:c7:19:2f:f4:da:d4:36:
f1:ac:8a:83:2d:ed:1b:20:b7:9d:04:53:ea:66:36:
af:a6:6f:0f:d5:57:e5:15:68:c4:f2:ef:24:40:dc:
cf:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://0.sb/repo/sb/38/
RPKI Manifest - URI:rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.mft
RPKI Notify - URI:https://0.sb/rrdp/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.121.208.0/22
IPv6:
2403:71c0::/32
Signature Algorithm: sha256WithRSAEncryption
59:51:c8:7f:77:ab:da:43:82:a9:45:e3:b4:94:21:7e:ba:72:
38:9b:b2:ca:8b:66:23:b5:5f:1a:7d:24:a6:6a:bf:48:e1:79:
e9:5f:8f:eb:04:42:ca:19:c7:f6:65:19:eb:6d:d6:ff:d9:77:
29:fa:74:e3:50:ce:38:fe:3f:4b:dd:81:7e:97:f7:d3:73:37:
d6:c4:a6:46:86:2b:f3:36:e6:e7:b3:16:e3:58:2c:0a:22:d7:
c8:c4:c5:fc:53:b6:16:58:c2:a8:c0:0b:76:bb:c4:6b:4b:eb:
ba:3e:ab:cb:f1:cc:36:a3:72:5e:83:b5:ce:89:4c:ea:e4:6c:
ad:4a:a3:68:ce:2f:81:d7:50:98:30:6a:7d:d9:95:0c:df:c7:
c8:59:1b:fa:04:43:c3:fb:a3:f4:0f:17:46:43:26:04:60:a7:
dd:69:20:28:75:e1:9e:b2:73:8d:c3:85:e0:25:3a:f5:69:ae:
d0:69:d8:2e:cd:5f:74:5c:62:4b:91:74:fd:bb:6c:8a:8c:31:
b6:08:88:b4:b9:f0:57:20:87:dc:99:df:49:47:f2:3c:63:c5:
94:e2:d0:e1:35:61:b3:76:b0:d5:ce:a5:bd:82:56:2f:0a:e4:
6e:9a:b9:66:11:02:58:d7:4f:e1:73:cb:a7:8f:ee:27:c0:5f:
11:9a:c6:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:09:50 2024 by rpki-client on console-ams.rpki-client.org