Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/61OQADTGGfxgCpvVjdjKQWAkdcg.cer
File: 61OQADTGGfxgCpvVjdjKQWAkdcg.cer (raw, json)
Hash identifier: 6gMuu/g0966yPqcvzHxMQp5KJa6SVclwaeJUyQ/gRBA=
Subject key identifier: EB:53:90:00:34:C6:19:FC:60:0A:9B:D5:8D:D8:CA:41:60:24:75:C8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E786
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913ED02/12B16D5054E611E79ADC2518C4F9AE02/61OQADTGGfxgCpvVjdjKQWAkdcg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913ED02/12B16D5054E611E79ADC2518C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 31 Mar 2024 15:16:19 +0000
Certificate not after: Thu 01 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 103.197.160.0/22
IP: 220.158.216.0/22
IP: 2403:1480::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 06 May 2024 11:11:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124806 (0x1e786)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 31 15:16:19 2024 GMT
Not After : Aug 1 00:00:00 2024 GMT
Subject: CN=A913ED02/serialNumber=EB53900034C619FC600A9BD58DD8CA41602475C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f3:10:05:38:2a:49:7d:67:91:39:a3:58:a5:
f9:38:41:c4:1c:51:70:73:d5:d8:4d:54:83:eb:48:
54:e2:10:98:6f:22:f7:6d:f7:6c:d5:ec:68:27:2a:
37:fe:f1:36:6a:41:e4:9e:97:76:8e:35:9a:fb:ff:
07:89:c5:ae:b3:4c:96:fb:7a:f1:15:02:7c:9c:f5:
b8:64:89:48:de:b5:08:87:43:61:20:e1:b9:42:42:
82:c9:06:be:58:e0:7c:84:f2:4a:85:d1:be:54:07:
1d:b9:e4:14:a6:66:a5:0f:d6:d4:8c:89:94:6a:f5:
8a:1f:fc:92:b6:2f:af:cc:be:9b:9d:d6:be:11:46:
70:17:56:e3:71:a8:ca:aa:b9:c7:f0:41:48:b3:e2:
52:8c:f9:2d:b1:7a:82:e5:4d:70:10:a9:00:d2:23:
bf:fe:83:bc:f9:96:d3:23:0f:78:c0:a4:1c:42:60:
3b:da:44:d6:46:ea:f5:f4:d7:8a:50:14:bb:52:17:
db:50:31:3e:9b:59:1f:84:4c:fa:f1:8c:5f:b3:de:
d6:f0:7e:73:8d:34:61:57:1b:f8:24:d1:0c:cb:96:
28:27:7f:cc:88:ec:16:b6:a7:03:c8:22:a1:06:63:
68:51:d9:54:3b:77:94:6a:49:52:c1:dd:ca:f1:85:
4a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:53:90:00:34:C6:19:FC:60:0A:9B:D5:8D:D8:CA:41:60:24:75:C8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913ED02/12B16D5054E611E79ADC2518C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913ED02/12B16D5054E611E79ADC2518C4F9AE02/61OQADTGGfxgCpvVjdjKQWAkdcg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.197.160.0/22
220.158.216.0/22
IPv6:
2403:1480::/32
Signature Algorithm: sha256WithRSAEncryption
a9:54:99:ab:b5:94:e7:3d:19:95:d8:6b:61:6b:1e:61:e3:11:
a1:d8:a3:8b:98:54:45:64:12:40:af:57:01:02:9f:b6:77:21:
06:40:72:2d:b8:1b:fe:4f:d6:3f:23:28:54:c3:62:97:d5:39:
60:62:0b:cf:26:7e:c6:49:9a:68:38:26:ad:df:43:c8:4a:fe:
a6:96:b6:4a:d0:9b:38:67:07:f2:e0:bf:a8:6f:9f:4c:32:42:
c6:80:90:a6:24:5b:49:00:a8:9c:59:38:4d:da:bf:9f:e1:58:
d8:0c:9d:c0:44:5d:5d:be:39:ba:49:4c:50:bd:bd:f5:6c:5f:
6c:f7:a0:12:ca:af:fe:f0:d5:1b:51:68:4c:fa:79:1c:7e:d1:
89:29:03:f7:13:1f:b7:0e:48:a4:0f:33:79:48:f0:9b:eb:cf:
18:f5:df:9a:89:49:a2:14:4c:4b:e1:ba:4d:97:c3:44:88:6c:
37:b6:4e:1d:f1:24:49:70:49:71:f2:76:8e:e7:c8:0f:00:15:
26:6b:8c:81:9f:24:7c:78:72:66:0b:ae:d9:06:28:cc:b4:e6:
05:41:89:f7:a4:14:cd:23:be:73:27:08:05:b7:63:36:c6:39:
74:aa:38:6e:f1:34:44:03:40:b7:74:7d:e2:34:d6:83:6b:dd:
83:ae:af:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 12:51:53 2024 by rpki-client on console-ams.rpki-client.org