Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer
File: 6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer (raw, json)
Hash identifier: 8wjbIpd8wUgYZBxJmj6aVEy1JiTJI/DZPeeaHWk9F/A=
Subject key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C56F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft
caRepository: rsync://rpki.roa.net/rrdp/xTom/43/
Notify URL: https://rpki.roa.net/rrdp/notification.xml
Certificate not before: Sun 22 Oct 2023 13:32:20 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 103.155.232.0/23
IP: 2001:df4:dd80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 06:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116079 (0x1c56f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 22 13:32:20 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2e:89:28:be:8e:98:4f:27:85:40:8a:a4:78:
1a:36:aa:5a:63:56:62:9b:e3:8f:e9:27:96:d9:cc:
19:f0:cd:56:ce:74:1a:0c:0a:c2:02:55:c3:54:a7:
e8:5b:82:dc:2a:4c:99:5e:21:79:8e:dc:1c:6f:11:
5f:8c:ed:bb:b7:57:19:94:75:38:cc:02:57:54:bb:
ee:dd:6d:fa:ee:4a:5a:6d:ec:e2:ce:f1:92:13:1a:
03:4a:4c:6d:e9:2e:88:7a:bb:45:8e:cf:34:e1:0d:
35:00:31:ee:e5:a1:2a:35:33:d2:70:63:ae:99:69:
71:50:d1:f8:1e:1e:c1:1a:4c:83:fe:e4:6e:69:07:
e1:77:24:ab:fd:d6:d4:57:f2:55:5e:f2:7c:18:39:
ee:3d:68:a9:70:6c:ad:a0:8d:af:c5:31:a9:72:e5:
97:61:1d:95:9c:87:03:f1:92:18:e3:3f:10:f0:11:
ed:82:19:ad:e7:c5:22:66:8f:b1:3d:2c:c4:00:16:
c0:27:b7:0f:d4:43:77:3b:bd:dc:2b:0a:94:4f:3e:
2d:62:63:be:1b:9a:27:fb:57:d6:6e:7d:09:e7:63:
0e:a3:f1:69:2b:2a:f9:69:5b:80:67:27:08:1a:68:
3d:4e:cc:2b:22:06:f4:39:63:89:a7:c6:c3:2e:83:
f7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.roa.net/rrdp/xTom/43/
RPKI Manifest - URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft
RPKI Notify - URI:https://rpki.roa.net/rrdp/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.155.232.0/23
IPv6:
2001:df4:dd80::/48
Signature Algorithm: sha256WithRSAEncryption
18:a4:07:6b:5d:23:df:f4:07:ee:34:2b:03:1d:48:29:2f:9c:
0c:a6:85:97:74:a2:3d:31:b6:7c:c8:52:fa:5c:2c:74:57:41:
36:30:cc:50:c5:f6:d0:5b:a6:94:ac:5c:d4:08:ab:7b:70:76:
5a:05:f6:78:1f:b1:4f:9d:e7:87:26:91:6f:ed:47:2f:85:87:
20:9b:5e:40:a4:43:be:80:be:d7:f6:0b:12:f9:fe:e6:e0:45:
a3:cc:00:b1:6a:c9:22:d9:42:6d:ed:31:d2:da:ff:ae:bf:28:
1b:91:a4:79:a4:9c:99:5b:27:bd:be:33:43:3e:91:bf:1f:b8:
42:e1:31:60:4b:54:f4:3b:90:21:4e:9a:b0:a1:8c:d0:45:68:
e8:c7:56:2e:92:d1:da:94:9c:9d:68:1b:11:a3:4c:66:3b:7f:
65:a4:85:76:65:bf:79:37:63:fb:2b:0c:df:ae:06:50:5a:83:
04:59:44:36:64:cf:35:d0:df:65:90:c9:ea:76:67:46:7a:da:
23:d7:3e:14:80:7b:4e:bc:a3:bf:83:4a:bd:b5:11:68:43:cf:
d6:e8:9a:c8:e9:e3:c9:39:22:5b:ae:3b:48:b8:af:b1:38:24:
d6:31:94:db:72:02:78:4b:cc:25:cd:90:75:fb:09:e6:bc:bf:
d7:51:6f:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 07:43:09 2024 by rpki-client on console-fra.rpki-client.org