Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer
File: 5B7XVgdLN63ceU-UC9H1Pj9na5M.cer (raw, json)
Hash identifier: PSrgyT1vvdnxunmv2+5mf5t8iEMXKXyqty8caJXw7Vs=
Subject key identifier: E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E5E4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Mar 2024 05:02:46 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 203.57.81.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124388 (0x1e5e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 22 05:02:46 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A913B5C7/serialNumber=E41ED756074B37ADDC794F940BD1F53E3F676B93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:49:29:f7:00:6c:70:21:f7:42:1a:5e:db:60:
6f:d8:82:31:83:41:c6:89:7d:47:fc:f8:25:e7:05:
f4:09:e7:59:06:c5:1e:f3:65:62:f2:68:00:8b:de:
cc:98:ab:8e:0b:d7:43:3e:fc:1e:ae:16:38:f1:3e:
dc:c3:cd:23:63:4a:3e:45:86:69:0f:67:62:61:33:
49:97:c5:55:2d:66:bc:7a:17:2b:ad:ac:ac:95:c3:
9f:05:2c:60:7c:57:d1:98:eb:bd:89:69:5d:9a:fe:
ed:f8:f2:be:dc:a2:c5:6c:df:82:96:4f:bb:e7:83:
8c:f9:3f:a7:4d:7c:39:d8:b9:a9:de:34:70:13:78:
e6:3c:1b:9b:15:5f:92:3a:f2:70:1d:28:2e:bd:1d:
6d:8c:52:db:25:02:04:c9:d7:a1:37:a0:3f:aa:39:
f6:0e:b1:15:84:51:7b:cd:0f:84:3f:98:58:e3:d5:
7c:fa:a0:bd:7a:46:2d:4a:4c:a4:f9:16:79:9d:eb:
78:3d:19:01:a3:65:a0:32:79:34:39:79:01:85:41:
e6:bc:4a:0d:10:41:0f:29:df:aa:26:de:24:d4:ec:
61:ec:71:c5:4d:5b:2d:b4:b0:6f:37:72:bc:56:db:
24:33:0f:cf:82:bc:20:63:08:37:f5:b6:89:b9:19:
c2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.57.81.0/24
Signature Algorithm: sha256WithRSAEncryption
66:34:18:00:42:47:44:ad:3f:40:a6:58:6d:30:a3:de:5c:2d:
65:d2:fd:38:36:f6:b0:11:79:11:bc:b4:32:c4:ad:75:9c:51:
93:3a:39:67:7d:0b:d3:a9:e7:0b:fb:5c:4c:c2:82:96:0b:d1:
51:1a:63:35:2d:e7:b0:7a:0f:6e:93:1c:0e:55:45:68:53:f5:
f2:81:80:b3:88:39:1c:ef:38:1a:00:5c:93:84:45:97:6b:a5:
fb:c6:c8:3f:02:f6:6f:4a:8a:95:c5:e3:af:f6:5e:b2:00:84:
b0:de:84:28:76:8b:9f:e6:0d:66:fb:ad:89:42:05:7d:46:f1:
f1:ce:72:d6:d5:55:ba:2f:4f:02:47:4d:5c:20:c7:da:b2:62:
e5:e5:e8:1e:96:07:3a:93:e5:d9:06:cf:73:f8:dd:0e:5d:07:
90:0a:88:b3:74:b8:94:d8:66:c4:67:29:e1:f2:69:47:6d:12:
b2:18:52:8b:a7:0b:ae:0c:2f:94:83:76:db:c7:66:3e:e5:68:
1f:40:b4:24:df:f4:66:9b:4c:ab:d9:6c:2e:ff:49:1e:14:20:
52:51:99:73:ee:c0:60:48:1b:98:e0:61:06:35:af:d6:eb:45:
a9:13:b7:bf:33:80:3a:1c:2a:86:41:4b:83:f3:75:28:42:0c:
09:a9:a3:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 06:13:49 2024 by rpki-client on console-fra.rpki-client.org