Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3obmXuoeCzDk_Y2SRYft9XI9UH0.cer
File: 3obmXuoeCzDk_Y2SRYft9XI9UH0.cer (raw, json)
Hash identifier: bridBWZJQhJuDLr+YUIbgnRBsIilqLtSX7vR59rrDcs=
Subject key identifier: DE:86:E6:5E:EA:1E:0B:30:E4:FD:8D:92:45:87:ED:F5:72:3D:50:7D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0218FD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E00A5/A6483A3C7ABB11EF9379AE52C4F9AE02/3obmXuoeCzDk_Y2SRYft9XI9UH0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E00A5/A6483A3C7ABB11EF9379AE52C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Nov 2024 17:30:27 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 203.62.205.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137469 (0x218fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 4 17:30:27 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91E00A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bd:fa:54:89:5d:7e:f8:2f:9d:88:3f:41:eb:
00:52:22:fd:12:fb:dc:59:8a:ea:92:f5:85:e2:38:
b0:de:16:90:83:27:77:61:4c:43:b0:00:ed:29:36:
54:00:a9:07:88:b8:b8:d8:a4:fa:d0:d1:7b:54:86:
c2:c6:02:63:db:ae:dc:b4:3c:af:c1:03:65:dc:4d:
05:a1:0f:07:83:57:ac:08:15:7b:86:c8:f6:22:0f:
4b:98:3e:a3:36:29:5e:bb:fb:78:d3:f7:9c:8b:5d:
8a:7e:12:cb:1b:4b:a7:6b:48:b8:80:cb:73:d7:39:
9f:05:11:b7:9b:3e:47:93:38:0c:7b:d5:90:ad:0c:
31:76:55:41:91:59:ea:d1:f3:c9:a8:39:17:9a:dc:
f2:65:81:ab:02:5b:27:2c:a1:4c:8e:d3:38:de:b1:
a0:06:1d:df:0a:54:e2:a4:ef:34:33:b7:b7:f2:c6:
0a:0b:fa:08:61:41:90:24:d6:3b:25:17:93:a9:bb:
34:5f:71:e1:7d:97:e8:41:36:84:4b:db:22:cf:e4:
5b:05:a2:40:32:72:40:19:6c:49:04:91:8c:53:bd:
a1:da:ef:31:80:a6:d9:6d:76:a6:a6:80:60:49:ad:
d9:12:7f:ab:47:86:ee:2a:e9:6b:8c:e5:7f:20:9f:
d3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:86:E6:5E:EA:1E:0B:30:E4:FD:8D:92:45:87:ED:F5:72:3D:50:7D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E00A5/A6483A3C7ABB11EF9379AE52C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E00A5/A6483A3C7ABB11EF9379AE52C4F9AE02/3obmXuoeCzDk_Y2SRYft9XI9UH0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.62.205.0/24
Signature Algorithm: sha256WithRSAEncryption
84:00:f0:10:42:69:bc:e3:86:60:11:d3:56:2e:29:34:0b:8a:
61:c0:ae:cd:0a:8d:63:14:83:f2:9b:a7:12:53:3c:d0:30:cf:
31:0e:bc:21:24:ef:b9:b6:48:0b:ec:66:4c:1b:0d:b9:fa:3d:
e0:68:13:2d:24:8f:9a:36:54:fc:7e:1f:a0:66:d5:44:99:8e:
b7:44:8d:63:9c:79:d0:1b:e9:0d:fa:53:af:0e:e8:02:c7:f5:
bf:be:c5:e7:b6:21:3b:74:5f:13:64:50:ec:f4:a6:b1:f6:e4:
bb:cf:66:d5:b4:90:42:57:1a:4d:18:cf:5c:20:c2:33:08:bd:
35:2b:f0:54:34:ea:08:dd:1b:61:e9:fd:d3:48:ac:37:37:d6:
f4:1a:bf:a5:d0:d5:e3:c6:02:c0:bb:14:2a:69:93:ef:63:16:
5a:9c:91:63:60:77:40:fc:dc:24:93:df:dc:4a:42:1e:48:9b:
16:bc:cf:11:82:8a:f6:0f:2b:96:03:07:69:d9:3b:7b:6b:d5:
c0:c4:35:fc:7f:c0:60:8f:d1:a3:a3:d6:82:09:4d:83:31:65:
06:52:dc:ac:97:2a:8b:7a:5d:bb:8f:29:07:02:aa:36:5f:c4:
31:7c:88:c0:7d:bc:d8:14:a9:7c:23:5d:2e:cf:9a:c0:5c:2c:
66:c4:99:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:32 2025 by rpki-client