Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer
File: 4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer (raw, json)
Hash identifier: ixApDwpsnux6iP6CXYmDPycaeid4ZqBJvtOGFLnx6Rs=
Subject key identifier: E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F321
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 21 May 2024 22:31:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 43.228.128.0/22
IP: 103.229.120.0/22
IP: 2001:df0:1b80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127777 (0x1f321)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 21 22:31:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91D1306/serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2f:6f:0e:6d:60:19:d2:c3:4e:8d:03:c4:7a:
7c:bc:99:0f:e1:9c:25:d3:8e:d7:c0:fe:3a:43:2e:
21:22:f6:53:d8:54:43:a9:9a:eb:51:00:45:7a:51:
0c:7e:2c:68:9f:a0:69:fa:11:64:58:94:4a:be:66:
94:43:4c:cc:1d:5d:8e:ef:bd:8c:08:7b:d5:7d:88:
9f:bf:85:b7:a3:cf:43:ca:fc:cc:73:b6:40:54:78:
df:46:49:6a:c0:99:d2:47:44:02:39:38:3f:b9:6f:
60:08:6e:30:b5:2c:97:cf:45:4f:d1:65:4a:44:c8:
ff:7c:ae:28:c3:ee:25:ab:d1:17:7d:c9:dd:41:e5:
a6:f0:49:51:54:97:4b:a3:99:78:87:ba:de:9b:dc:
bb:df:4e:6e:6a:e2:67:4f:2f:59:b7:ba:9a:db:bd:
f6:06:5c:cf:77:14:44:cf:a0:dd:5c:a1:18:bb:d5:
d2:4c:79:79:04:19:b5:d8:89:c5:3b:e0:95:90:8b:
a7:79:3f:c7:c6:80:5f:88:2f:5e:02:35:1e:19:73:
a6:7a:77:a0:ad:26:bd:2a:13:d2:4b:c8:eb:aa:c1:
fd:53:f7:39:a1:c4:1f:f4:0d:8e:5a:4a:81:bc:6f:
c0:2f:32:ef:0d:1e:03:a1:4e:70:de:93:a2:1f:99:
37:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.228.128.0/22
103.229.120.0/22
IPv6:
2001:df0:1b80::/48
Signature Algorithm: sha256WithRSAEncryption
12:d4:e8:9c:bc:27:ec:10:12:d9:81:43:3b:b1:e4:7f:60:19:
f6:94:b2:0f:7d:5b:c4:e6:72:5c:57:0e:3e:ee:07:7d:20:b7:
64:9f:fc:b7:fe:df:b6:02:bf:da:05:c8:d4:66:78:d1:f7:b7:
94:53:73:43:5d:0f:93:2e:3c:36:4f:39:31:0e:8b:c9:54:20:
f5:4b:e9:76:a5:b9:b3:e3:7f:9e:c4:fa:d9:e1:2b:fc:0e:27:
5e:b5:dd:11:b3:26:d6:d4:c7:d0:f2:bf:ee:0c:f4:b7:6f:40:
bb:b0:59:eb:56:0b:55:8b:41:6e:23:90:d8:e8:e3:c8:6d:a0:
bb:ac:fc:6d:bc:b3:d7:91:ce:3b:b7:b8:23:21:93:99:1a:f3:
8a:d2:a3:73:47:4a:f8:b9:49:7d:f0:c8:48:a8:d5:43:6c:f3:
d7:37:78:c4:90:fc:93:92:c9:de:3c:9c:5f:b5:be:4d:09:66:
61:79:c4:d0:88:6d:cd:74:52:dd:27:f8:38:ef:58:28:f7:9d:
e9:19:14:fb:ea:c4:ae:4d:35:b7:f4:e7:d4:ae:6a:a8:09:f0:
20:dc:74:2a:ef:e6:1e:d4:c3:98:52:77:20:ed:cb:b0:6e:14:
7a:af:20:ef:66:9f:1b:fb:2a:0d:f8:13:4e:6f:bf:a9:e2:2e:
b2:f8:15:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:21 2024 by rpki-client on console-fra.rpki-client.org