Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer
File: 1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer (raw, json)
Hash identifier: u00CIjydM1e44LpHEz388h5thZCFiSedHr9Nmo6Uqhw=
Subject key identifier: D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0212E6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.mft
caRepository: rsync://0.sb/repo/sb/38/
Notify URL: https://0.sb/rrdp/notification.xml
Certificate not before: Tue 08 Oct 2024 23:20:06 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 103.121.208.0/22
IP: 2403:71c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 15:22:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135910 (0x212e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 8 23:20:06 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a7:34:48:b8:a6:8d:50:5c:50:2d:f9:ce:0f:
4d:de:f0:c8:c0:98:93:e0:d3:f9:db:80:0a:04:41:
cb:c6:91:e5:78:2b:07:d7:bb:d9:34:a1:fb:9a:e9:
02:2b:d6:87:09:bb:ce:73:d7:3b:38:7f:5d:78:e0:
0c:df:eb:54:1a:2c:99:74:5b:ed:b3:08:c5:d4:5a:
88:8f:38:66:2d:f6:fc:00:cb:08:da:87:9b:ac:9a:
55:49:af:d9:3d:68:58:74:fd:c4:c3:33:d2:89:06:
48:7b:39:7a:b8:eb:c7:22:05:0f:a1:1d:10:64:ad:
ab:f5:1d:bb:c4:82:30:51:6c:35:bc:05:0e:2a:f3:
6a:cf:6c:83:ba:9f:b2:6b:c0:b6:f6:15:f0:9d:15:
0b:9e:c8:12:92:95:fb:d5:91:fc:b7:08:0d:dc:aa:
69:8d:53:5d:bc:50:9d:ab:74:5b:13:de:00:0c:6e:
c9:b7:eb:bf:7c:37:d4:97:38:37:58:ae:bb:f1:d4:
88:6c:10:d1:dd:7a:7a:7d:33:69:50:7c:c3:2f:20:
1b:f7:7b:f9:ad:e2:49:30:c7:19:2f:f4:da:d4:36:
f1:ac:8a:83:2d:ed:1b:20:b7:9d:04:53:ea:66:36:
af:a6:6f:0f:d5:57:e5:15:68:c4:f2:ef:24:40:dc:
cf:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://0.sb/repo/sb/38/
RPKI Manifest - URI:rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.mft
RPKI Notify - URI:https://0.sb/rrdp/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.121.208.0/22
IPv6:
2403:71c0::/32
Signature Algorithm: sha256WithRSAEncryption
56:50:f0:1e:84:21:f9:19:a9:5e:68:9f:98:0a:45:3f:9d:4c:
26:c3:aa:88:48:2f:d8:24:bb:b6:85:d6:83:cf:ce:6e:f4:c0:
e0:81:33:fa:aa:e9:f9:42:47:aa:91:8b:da:e7:d1:41:f8:2d:
53:6e:65:1a:f3:f8:25:71:f9:59:b3:76:52:3d:55:e7:c1:e3:
01:b5:c4:f0:5d:c0:a1:9a:38:7b:08:92:12:fc:c0:4d:65:ba:
bd:d3:a7:c1:a1:7d:13:af:b6:2c:6b:66:15:89:46:dc:86:11:
5c:70:37:e5:36:d4:ff:fb:79:04:e5:40:cc:93:a6:a8:97:24:
a6:40:7b:c5:93:d4:ee:87:de:78:ff:2c:19:66:d5:3a:24:77:
6d:22:b1:85:c4:7f:71:7f:1f:96:60:15:41:57:9e:dc:09:af:
87:45:53:91:36:e8:5a:39:5e:e4:d6:e5:fb:17:66:63:3a:e2:
38:6b:ba:d2:b1:91:b1:53:08:b1:d7:92:ac:ab:af:61:8c:10:
8e:a0:e6:57:13:6a:b6:7a:e9:52:62:a4:06:f0:5a:34:0b:1b:
3b:f3:4a:6c:b0:39:76:70:fc:b5:93:e4:85:a2:c1:bb:d1:ac:
f2:b9:f8:b0:dc:70:0f:5b:ac:0c:e4:ac:c8:29:f2:4e:28:bb:
e2:57:5e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:50:11 2024 by rpki-client on console-ams.rpki-client.org