Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer
File: 2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer (raw, json)
Hash identifier: CICrjJ8Hhjca4haOJYtfEac2qssVhRJWTatM6rmUap4=
Subject key identifier: D9:6B:F5:6A:B6:3F:AE:F0:16:9C:0D:29:D6:4A:54:78:1C:06:B2:E4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AFFC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Jul 2023 13:52:59 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 203.3.137.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 03:16:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110588 (0x1affc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 13 13:52:59 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91487B2/serialNumber=D96BF56AB63FAEF0169C0D29D64A54781C06B2E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e8:c7:55:03:c9:2c:b2:26:eb:8e:fd:65:55:
88:d0:fb:e9:28:ba:02:6b:2b:b4:11:48:89:f7:80:
86:ba:6d:11:16:76:d5:3b:77:e6:08:28:34:ca:b7:
a7:97:3e:86:01:e1:7a:19:93:5a:3d:ed:3b:a8:7b:
46:32:44:60:cf:ed:1b:7f:f3:86:52:54:c4:68:61:
4f:94:65:48:e4:95:9a:69:9c:ae:36:97:d8:7c:5e:
8d:27:a3:04:91:a5:d7:e8:ed:44:16:ae:0b:0f:06:
3a:0c:fb:e5:64:59:c6:37:b3:b2:7f:ad:03:4a:33:
f2:73:fb:0f:84:09:c8:2b:d9:bc:1c:e0:8e:c9:f2:
d0:4c:36:f0:0f:67:4c:94:99:08:fb:38:a1:98:ae:
1a:46:30:4c:c3:ea:5b:e4:13:93:a3:a2:16:ee:e0:
92:55:e5:34:f3:3b:2b:fc:aa:d6:5d:8a:70:51:03:
d5:c3:9b:a8:80:45:44:b4:dd:4e:26:68:30:88:d0:
dd:f7:4a:c3:00:c0:fe:3d:f1:71:38:c4:df:af:5c:
7d:b6:d9:a5:5b:97:0a:70:36:5d:dc:55:46:6b:32:
82:36:6d:57:f6:df:84:1f:71:e5:c1:4e:9c:a6:31:
c1:2e:0d:40:16:bb:d6:66:ef:31:d7:1a:59:fa:62:
cd:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6B:F5:6A:B6:3F:AE:F0:16:9C:0D:29:D6:4A:54:78:1C:06:B2:E4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.3.137.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:66:73:5e:2b:56:d8:97:12:8e:7a:b9:f3:b8:15:f5:fc:51:
33:0e:7c:7e:12:5d:b2:63:a5:ba:1c:12:ce:89:27:ed:b1:6e:
d8:92:d3:0b:a1:fd:f3:b4:05:82:af:2f:a5:eb:22:b1:1b:cb:
a7:5d:41:8f:f1:df:93:15:50:ab:0d:c7:c8:0f:1e:a9:73:18:
55:ab:c4:70:39:28:f7:2f:2d:d4:10:4a:e4:6a:55:23:8c:73:
a7:78:11:4e:49:91:ec:b3:8a:df:5a:76:95:24:a7:ae:f6:60:
21:5f:00:08:fb:fa:83:c3:02:6d:6c:3a:af:82:1b:f5:7b:81:
db:0e:3a:53:bd:f0:e9:64:8b:96:ba:0a:70:ac:43:06:7c:d9:
97:31:58:0c:be:c0:75:4f:6d:c0:ad:b1:05:70:58:a4:11:42:
cf:48:46:5e:88:3a:eb:11:ce:fa:75:16:8b:48:5e:76:4d:df:
2c:e0:f9:ef:5f:47:8c:56:ce:ee:7b:21:7f:b3:df:9c:ef:41:
2c:06:66:09:8f:e1:f4:07:8e:85:bb:52:c7:1a:e7:43:7b:b5:
0f:f2:77:c1:0d:75:3b:c0:5f:86:b7:11:1e:77:6a:e1:92:ce:
18:c0:c0:fd:46:0d:d6:0c:8d:d6:8f:fa:d6:4b:05:5f:54:98:
3b:53:e7:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 03:53:13 2024 by rpki-client on console-fra.rpki-client.org