
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qeS-WiGPD_7nr0WcaBsFFobIWQ.cer
File: 6qeS-WiGPD_7nr0WcaBsFFobIWQ.cer (raw, json)
Hash identifier: McdqUb4X1IEfAk8olZKlB3sqq2SWeOTTLJUlKhFU2EU=
Subject key identifier: EA:A7:92:F9:68:86:3C:3F:FB:9E:BD:16:71:A0:6C:14:5A:1B:21:64
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A800
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AB3E4/F69881DE69BA11EAA65DF764C4F9AE02/6qeS-WiGPD_7nr0WcaBsFFobIWQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AB3E4/F69881DE69BA11EAA65DF764C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Jun 2023 21:01:22 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 103.93.216.0/22
IP: 2401:30c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 26 Jul 2023 21:03:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108544 (0x1a800)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 2 21:01:22 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91AB3E4/serialNumber=EAA792F968863C3FFB9EBD1671A06C145A1B2164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:33:37:d7:04:78:88:68:9b:45:05:98:3d:64:
6d:b4:cd:c7:4d:8a:1c:b2:fe:07:5e:ad:ab:03:86:
cb:65:ef:b4:ad:0f:85:d9:18:13:f3:0a:78:43:fb:
bf:61:dc:91:31:b1:8d:69:a3:85:da:29:af:f7:56:
12:1d:b5:64:b0:24:f8:75:6d:51:01:ac:e1:f4:b5:
25:57:d4:eb:37:f7:04:5c:55:0c:a3:c0:c4:a6:6d:
3f:3d:2b:37:45:40:35:5d:b3:85:ed:66:36:8a:2c:
be:77:d2:4f:f4:c2:1b:26:5c:e5:aa:84:79:3c:6c:
07:25:c8:cc:3d:cc:b2:66:6d:af:0e:a6:a3:f9:d9:
2f:a6:ff:17:7b:1b:03:0b:e3:8e:f5:3b:8a:63:05:
9a:a6:70:b5:0d:dc:ee:77:13:5c:96:bd:64:8f:96:
dc:1d:6a:6a:14:8d:fa:4c:79:f6:ba:03:bc:94:5a:
b6:5e:65:52:6a:cf:be:3e:a8:55:6b:14:f4:ff:f8:
cf:c1:6b:69:91:ab:e5:fb:65:b8:3f:af:07:cb:8d:
9a:62:e3:e6:e5:46:48:51:e3:37:9c:7d:82:ab:c7:
85:f1:22:2e:d1:4e:10:40:a6:49:f3:22:d9:04:3f:
95:8b:0a:53:13:77:3b:33:a8:d8:60:ab:a6:42:ec:
42:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:A7:92:F9:68:86:3C:3F:FB:9E:BD:16:71:A0:6C:14:5A:1B:21:64
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AB3E4/F69881DE69BA11EAA65DF764C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AB3E4/F69881DE69BA11EAA65DF764C4F9AE02/6qeS-WiGPD_7nr0WcaBsFFobIWQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.93.216.0/22
IPv6:
2401:30c0::/32
Signature Algorithm: sha256WithRSAEncryption
12:ea:df:f4:0b:b4:f5:20:d1:bf:63:2c:7f:ff:99:a4:5b:60:
b3:c8:74:a3:3b:cc:73:92:2a:b2:fb:34:59:e0:49:33:43:5f:
eb:51:23:73:e5:3a:3d:4a:c4:cd:ff:3b:b5:c1:0f:3e:91:ca:
f6:cc:6f:3b:fb:f8:e1:00:71:a2:4f:93:b6:81:7f:03:3b:43:
f2:2c:30:81:08:91:f1:9e:d1:68:e6:76:74:2f:91:89:6c:8f:
dc:b8:7e:18:02:34:a6:01:f7:76:d0:8a:ab:6e:de:5a:f6:08:
f4:6e:84:d1:03:e7:01:e9:2f:e3:9c:a4:c3:69:d3:f0:0a:1f:
52:69:a3:b4:39:89:40:cf:18:68:e0:07:82:de:23:d7:e0:e9:
34:2a:81:52:a0:1b:1b:0a:d0:d5:6a:dd:cc:0b:b2:ba:2a:82:
46:ec:69:51:7c:85:4b:0d:2f:c7:46:07:36:47:61:a0:35:79:
62:d4:af:50:e1:dc:6d:be:2b:b6:96:a9:56:15:5e:1e:05:c1:
73:91:bc:25:b2:ed:04:2e:94:d9:e0:7e:1d:79:60:5a:26:07:
7b:a5:f1:d9:65:74:29:fa:0d:43:d1:64:1e:3b:c1:87:81:96:
7d:fc:49:62:fb:a6:a3:fe:28:fc:d0:f2:e1:7d:c1:2e:1a:91:
2b:1e:ed:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 22:36:39 2023 by rpki-client on console-ams.rpki-client.org