Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4lNNJseMlwF5CZZDjBFBCCVHdqo.cer
File: 4lNNJseMlwF5CZZDjBFBCCVHdqo.cer (raw, json)
Hash identifier: rew1EiVOKX6Cn15Ds8XZkQ0R9rBB9s+K4Fg/OI/q1N8=
Subject key identifier: E2:53:4D:26:C7:8C:97:01:79:09:96:43:8C:11:41:08:25:47:76:AA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B2BD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/4lNNJseMlwF5CZZDjBFBCCVHdqo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 28 Jul 2023 13:15:55 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 133534
IP: 45.117.24.0/22
IP: 103.234.108.0/22
IP: 2001:df6:8800::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 11:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111293 (0x1b2bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 28 13:15:55 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9127E99/serialNumber=E2534D26C78C9701790996438C114108254776AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d5:1c:73:93:ec:38:41:97:02:a3:7c:6f:63:
da:11:33:2e:39:76:08:1d:cb:29:e2:fb:6d:35:ac:
32:06:06:81:b2:bb:8d:d4:92:58:65:4a:c2:9e:8a:
bc:f7:34:93:d2:57:c2:e9:9f:f0:d4:d6:48:18:41:
8a:11:4c:63:9d:16:40:90:9c:70:58:80:f5:2a:47:
91:6a:4f:12:fe:ac:80:10:72:25:f1:f0:f6:a6:3c:
a2:46:e4:d0:ef:91:97:5d:48:04:c0:aa:3b:73:0a:
24:35:f7:bc:e0:eb:5b:44:de:88:6b:af:25:d6:2b:
60:79:38:2b:82:d0:37:6f:ac:f6:5c:bc:df:77:fd:
6c:75:31:b4:9c:03:45:3c:2f:9b:47:fb:f9:3b:86:
d6:8b:c2:71:b9:4d:9c:52:8c:3b:74:c9:0a:ce:01:
f0:6a:5c:2e:65:ad:4a:4e:13:73:af:b8:97:76:5f:
57:a2:57:2e:e4:00:5c:ae:f9:a8:82:3a:0e:68:73:
8d:35:23:b3:23:8a:30:ae:40:3b:23:cb:f3:9b:13:
03:e7:d6:d8:b5:3a:c5:ba:2a:dc:c4:4e:77:db:4f:
fc:32:1b:b2:3f:71:b1:eb:c1:ea:96:65:cb:e7:26:
71:16:b2:dc:79:ae:f5:42:46:64:5a:8d:7a:d8:5b:
84:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:53:4D:26:C7:8C:97:01:79:09:96:43:8C:11:41:08:25:47:76:AA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/4lNNJseMlwF5CZZDjBFBCCVHdqo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133534
sbgp-ipAddrBlock: critical
IPv4:
45.117.24.0/22
103.234.108.0/22
IPv6:
2001:df6:8800::/48
Signature Algorithm: sha256WithRSAEncryption
5e:67:6c:2c:65:6f:46:b2:63:36:5a:77:19:09:bd:e2:ec:df:
c0:f9:d4:0d:71:bd:01:5e:63:93:cc:df:90:41:a0:0b:19:d5:
74:8b:b4:ea:41:63:2a:cf:e9:6c:28:e0:17:05:8b:14:79:95:
95:a9:43:9e:6a:99:c8:88:0e:fd:56:62:40:1d:8c:48:fd:11:
2f:8e:12:a4:e4:9b:5a:64:e7:22:d5:5e:8b:9e:a2:8c:dc:fe:
a3:1d:b8:00:01:27:1f:e3:fd:52:25:e0:18:6c:40:fa:f2:4f:
90:37:a4:6b:32:ee:59:6a:fb:87:46:bc:90:93:e6:33:e9:2a:
b3:e4:b0:63:b5:af:f5:30:c9:9f:d8:d6:cc:ef:01:7d:ec:86:
3f:9f:90:e2:88:0c:1d:c9:58:11:4d:84:de:50:8e:71:f8:9f:
f0:9d:5f:a7:9d:7e:7c:29:5b:90:df:07:60:00:a8:9d:28:dd:
2a:43:99:9f:8c:70:6d:10:69:4b:03:4e:cc:a6:2e:80:15:ed:
6f:1b:b7:13:cb:7e:ec:f9:c6:14:bc:ec:df:d9:5b:ef:1d:61:
db:0d:4a:e9:fd:2a:89:04:5c:18:b1:31:f7:24:98:62:b8:65:
74:e9:50:96:b1:f5:54:38:f8:60:1c:c1:16:53:d9:53:31:a8:
d0:7d:d8:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 13:20:39 2024 by rpki-client on console-fra.rpki-client.org