Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer
File: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer (raw, json)
Hash identifier: xlyFFI4NClOkDZoU5LHqkscJnSgUoDI7t0Cf0LMaj/E=
Subject key identifier: DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022179
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Dec 2024 05:22:14 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 45.117.192.0/22
IP: 103.57.228.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Jan 2025 09:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139641 (0x22179)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 9 05:22:14 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A915FA96/serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:82:2a:34:01:5e:c1:e3:18:4c:5b:72:ca:bf:
4b:88:8c:13:1c:6d:76:8d:22:1c:8a:41:0f:54:cd:
19:ec:f6:47:c1:75:d8:18:1d:b2:5d:da:cf:d7:f9:
78:c7:93:c8:16:14:91:8a:dc:25:7e:64:5c:e3:6c:
96:6d:bd:11:1d:33:60:d0:4e:d6:b2:92:fc:ed:eb:
e5:5d:a0:49:e5:7e:1b:b1:98:0d:97:35:70:b8:d6:
f4:89:b0:47:38:38:ea:90:a5:13:0b:ed:a5:19:3e:
6f:44:cb:c6:bd:a4:b7:24:50:7d:f9:78:a9:30:69:
6d:1e:b8:5d:ad:da:ea:77:7c:03:bd:ee:36:a6:98:
76:cf:65:45:d8:f8:11:b8:92:01:41:6f:75:2b:c0:
45:86:5b:44:4a:50:55:73:a2:41:1e:c0:7e:d6:95:
66:1a:c3:ea:80:9f:59:10:98:c0:2e:96:15:c2:74:
ea:3d:14:ac:d4:4b:66:19:c5:62:93:f7:3a:00:25:
bf:9a:39:69:ff:18:9d:e7:8d:32:a8:9d:09:28:ca:
b0:2b:07:5e:a8:c5:65:28:0e:a5:af:91:7c:f3:21:
05:48:20:fa:ea:eb:88:51:59:c5:de:db:56:98:73:
3a:1a:4c:46:0c:24:cb:6d:27:36:08:60:45:f8:2c:
f5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.117.192.0/22
103.57.228.0/22
Signature Algorithm: sha256WithRSAEncryption
ce:6e:64:90:0e:1f:5b:8a:72:63:e8:a8:17:05:26:65:df:55:
d4:9c:b4:b5:8a:d0:9b:0a:95:87:63:c3:ea:cd:d3:46:93:31:
18:63:22:33:28:96:ad:9d:35:13:4b:73:a5:9b:2a:bd:98:e5:
f5:e2:07:af:11:bc:e1:9d:4d:f8:6d:d5:ce:4c:6b:80:e9:1d:
9e:df:2f:1f:89:54:45:7d:f7:52:55:a5:f4:48:c5:df:3b:0c:
46:71:1c:ea:8e:48:a6:67:8b:59:fe:83:a1:80:c5:c7:84:db:
51:7f:a8:24:2d:f3:6d:19:75:76:5d:5a:2f:04:ca:97:d9:56:
04:d9:5a:05:fe:7e:bf:8c:37:7d:e5:c8:0a:62:75:f5:eb:95:
e5:f4:37:4a:12:63:0f:a5:33:1c:b4:4b:34:bf:16:06:40:01:
96:29:04:f5:62:b0:af:58:c0:5e:42:5f:09:0a:af:1f:0b:4e:
a5:e5:9f:09:5b:14:89:2c:26:4e:a0:51:8e:39:9a:43:91:71:
2a:89:5c:6f:2e:10:35:95:fd:f0:30:b7:3a:97:cf:06:7e:99:
04:49:fa:e0:3c:2a:33:c5:2d:cc:5a:12:9b:90:69:0b:c6:6f:
2b:01:8a:86:49:8b:d8:10:84:7b:fb:a6:a6:d6:49:ac:bb:0c:
b8:1b:af:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 10:22:42 2024 by rpki-client on console-fra.rpki-client.org