Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer
File: 7TFghH3ErtktjFnRmEZbHL7y3yI.cer (raw, json)
Hash identifier: bf51zu+t5onO7y+L/LB8IVPtyUpXjBFutktb95PyZJk=
Subject key identifier: ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020B6A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Sep 2024 01:48:27 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 218.100.6.0 -- 218.100.9.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133994 (0x20b6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 3 01:48:27 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91B6C85/serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e4:9c:e9:e1:8f:10:c4:4a:f6:28:80:64:61:
ad:c1:66:e9:c4:f2:65:f1:c6:3a:33:50:6b:2c:b5:
f6:46:63:d1:c6:43:40:a7:73:bc:b8:4d:5f:7c:e1:
07:f2:a2:d6:9f:85:1e:ef:e2:7a:6b:4c:83:80:5e:
7d:ef:6c:68:eb:d4:48:a5:ab:68:b6:c3:f3:74:13:
e4:45:bf:ea:5d:c5:0c:dd:72:7b:ff:f1:fd:fd:df:
57:ba:d7:b9:c9:fa:e6:92:d6:a7:2e:e6:0b:af:c6:
9b:61:c2:35:7a:e7:b0:ce:b6:fa:ae:21:af:ea:03:
2b:57:26:ea:88:a9:d5:8b:6c:41:4c:95:85:8b:de:
92:7a:64:e9:c0:50:f7:c4:a6:c7:e1:3c:e1:b0:01:
90:6a:31:f0:ab:dd:7c:5a:ba:5f:54:a8:3d:b2:54:
c8:fa:61:07:e1:a8:32:19:b7:e4:46:b2:26:40:c9:
9a:c5:15:88:0e:90:fb:b0:46:bb:59:ea:f5:b5:76:
86:3e:0a:e1:a9:a6:ab:1b:7a:f1:f3:30:37:02:a8:
96:37:ce:98:e3:39:f8:2b:47:a8:8a:51:a5:11:72:
50:63:98:6d:75:3b:0b:5a:bd:d5:86:94:e5:fa:af:
d6:f2:c8:91:ae:73:cd:c2:74:12:01:e8:d5:fe:ef:
5c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
218.100.6.0-218.100.9.255
Signature Algorithm: sha256WithRSAEncryption
90:ad:9d:c7:b4:20:c6:df:7c:5c:e4:c2:ef:05:1e:5a:06:25:
db:a5:2a:d6:1b:53:67:c5:3b:15:2d:5c:9b:3f:67:73:a7:fc:
f4:43:58:a5:a0:93:96:81:0a:71:97:ec:dc:04:42:49:c8:2e:
7e:b1:c8:42:0d:c7:52:34:8f:b5:0e:c7:02:59:89:ce:3b:9d:
b8:63:81:3b:7b:5e:32:24:35:94:7a:fe:d7:19:dd:8f:60:bd:
20:2f:c0:c7:36:73:d0:0a:34:13:7e:db:f9:a2:39:5f:04:e9:
af:f7:4c:e9:79:1c:9c:76:0a:59:82:43:44:5e:ed:93:b0:6b:
62:5a:7c:43:cc:5c:07:52:62:f3:4f:0c:c8:4f:4c:47:9b:50:
b1:4b:30:37:bb:5e:4a:4f:59:73:e7:6a:7e:0a:89:7b:29:ad:
c0:53:15:e3:38:40:61:0c:7c:b4:1e:5c:37:9f:42:ed:43:2c:
e1:f4:02:60:b2:17:3c:05:34:a8:f7:b5:f4:10:af:21:46:09:
3b:e7:2f:35:38:40:85:59:c9:c3:43:a3:6c:6d:ac:f9:7e:7d:
1d:d6:7b:33:b3:5e:f6:fe:02:84:28:aa:c2:24:a9:b6:ef:99:
da:80:3d:0e:ad:ae:a5:3b:5b:c7:fc:46:bb:59:13:ff:3c:cc:
31:43:fd:d7
-----BEGIN CERTIFICATE-----
MIIGBjCCBO6gAwIBAgIDAgtqMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDkwMzAxNDgyN1oXDTI1MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjZDODUxMTAvBgNVBAUTKEVEMzE2MDg0N0RDNEFFRDkyRDhDNTlE
MTk4NDY1QjFDQkVGMkRGMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCW5Jzp4Y8QxEr2KIBkYa3BZunE8mXxxjozUGsstfZGY9HGQ0Cnc7y4TV984Qfy
otafhR7v4nprTIOAXn3vbGjr1Eilq2i2w/N0E+RFv+pdxQzdcnv/8f3931e617nJ
+uaS1qcu5guvxpthwjV657DOtvquIa/qAytXJuqIqdWLbEFMlYWL3pJ6ZOnAUPfE
psfhPOGwAZBqMfCr3Xxaul9UqD2yVMj6YQfhqDIZt+RGsiZAyZrFFYgOkPuwRrtZ
6vW1doY+CuGppqsbevHzMDcCqJY3zpjjOfgrR6iKUaURclBjmG11OwtavdWGlOX6
r9byyJGuc83CdBIB6NX+71xJAgMBAAGjggL7MIIC9zAdBgNVHQ4EFgQU7TFghH3E
rtktjFnRmEZbHL7y3yIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUI2Qzg1LzI4NzA3Q0JFMjg4NjExRUY4RjFGQjE4NUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCNkM4NS8yODcwN0NCRTI4ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgz
RXJ0a3RqRm5SbUVaYkhMN3kzeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8EGDAW
MBQEAgABMA4wDAMEAdpkBgMEAdpkCDANBgkqhkiG9w0BAQsFAAOCAQEAkK2dx7Qg
xt98XOTC7wUeWgYl26Uq1htTZ8U7FS1cmz9nc6f89ENYpaCTloEKcZfs3ARCScgu
frHIQg3HUjSPtQ7HAlmJzjuduGOBO3teMiQ1lHr+1xndj2C9IC/AxzZz0Ao0E37b
+aI5XwTpr/dM6XkcnHYKWYJDRF7tk7BrYlp8Q8xcB1Ji808MyE9MR5tQsUswN7te
Sk9Zc+dqfgqJeymtwFMV4zhAYQx8tB5cN59C7UMs4fQCYLIXPAU0qPe19BCvIUYJ
O+cvNThAhVnJw0OjbG2s+X59HdZ7M7Ne9v4ChCiqwiSptu+Z2oA9Dq2upTtbx/xG
u1kT/zzMMUP91w==
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:11 2024 by rpki-client on console-fra.rpki-client.org