Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer
File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer (raw, json)
Hash identifier: OwgGfMlLx9VU2Spwjs5GAXSioql/HMJTlzrZnAjI4MQ=
Subject key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DF50
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 Feb 2024 20:34:48 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 103.84.148.0/22
IP: 139.5.116.0/22
IP: 2400:a0c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122704 (0x1df50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 16 20:34:48 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:65:91:31:2e:7d:da:6b:8e:fc:a8:38:25:42:
b7:b6:af:37:87:be:0e:2b:7b:51:42:4f:6a:8c:de:
38:3e:84:2d:f6:c5:9e:c8:54:98:d6:da:63:eb:2b:
33:1b:2a:c4:ad:50:6f:a2:30:b9:09:ed:46:0f:6c:
df:6e:85:bb:35:9f:8e:f4:47:08:3f:82:ba:f8:a3:
3e:a5:39:dd:33:b6:64:53:8f:ed:e8:67:cd:aa:28:
68:6e:29:13:f1:f0:bc:5b:b4:12:4a:a9:3d:a2:db:
e2:d6:90:fb:4d:41:52:13:6e:7d:57:4c:8b:0c:e4:
1b:2b:0b:dc:02:f0:6f:85:3f:bf:30:58:4e:d4:a3:
76:74:df:2e:89:87:ca:cb:63:1b:ce:60:94:2b:c1:
5c:c7:47:52:9a:99:84:9e:af:43:fd:d7:57:fe:de:
e9:06:de:0c:33:84:69:9c:39:e7:85:7b:12:3a:26:
18:4c:d0:b6:69:0e:34:1d:9f:3b:ca:45:42:f7:fc:
c0:df:3a:cd:88:ab:b3:e0:d8:e8:43:ab:92:95:0f:
e1:b8:c9:2f:65:4e:34:83:b9:3b:f5:f0:c2:33:3e:
ec:df:3e:b3:d0:33:d0:24:5c:d1:80:c9:e7:26:5f:
7c:9a:fa:a1:ff:ed:d0:d3:42:70:27:64:5a:1f:df:
01:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.84.148.0/22
139.5.116.0/22
IPv6:
2400:a0c0::/32
Signature Algorithm: sha256WithRSAEncryption
79:1a:fd:9b:06:26:53:27:bc:3b:ed:97:21:07:82:cb:66:c6:
85:d2:2a:dc:03:27:ab:c9:84:e9:51:28:c1:76:d5:db:50:85:
f3:32:52:f4:0e:9b:67:39:3c:c1:68:b8:42:34:7f:bb:15:36:
cf:29:ad:4d:51:1c:51:76:82:b3:0e:86:a1:ad:2f:b6:6a:14:
51:db:74:0f:43:5d:c7:ef:10:e0:81:a2:5d:b3:f2:25:15:62:
df:bb:de:b0:4d:eb:df:cf:b6:38:ff:03:08:5c:0a:09:29:28:
3d:ae:a4:b7:bd:af:a8:41:65:24:35:6c:be:11:07:12:a2:52:
48:c5:d4:65:f6:5d:79:e0:a3:12:1b:30:95:34:80:66:45:32:
70:33:46:38:f6:a9:9d:0b:f9:22:c3:af:7e:f7:b7:e0:ca:38:
f8:be:71:7b:aa:3d:08:1e:8b:a7:5c:56:30:9b:c2:86:6f:8e:
85:36:88:44:fd:cb:cd:09:7a:aa:28:38:d1:8a:bc:cd:19:ee:
10:77:56:9c:07:df:07:67:58:72:2f:de:1b:8b:47:e9:7e:a2:
9b:0c:6f:58:1c:6d:c9:69:0b:8e:3e:ab:2f:e2:68:75:d8:80:
68:cd:88:a5:b8:b2:42:26:64:1a:19:44:6b:55:c0:cf:db:e6:
f2:86:ed:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:11 2024 by rpki-client on console-fra.rpki-client.org