Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8SWg5rjr3BNqtTB9SRRxDpAGO8M.cer
File: 8SWg5rjr3BNqtTB9SRRxDpAGO8M.cer (raw, json)
Hash identifier: ck+WwuPSQPfvPalx/6xKECSIbTWtSUABIUNddm7sgdc=
Subject key identifier: F1:25:A0:E6:B8:EB:DC:13:6A:B5:30:7D:49:14:71:0E:90:06:3B:C3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ACCB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914992A/81A30070866311EDA0246B25C4F9AE02/8SWg5rjr3BNqtTB9SRRxDpAGO8M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914992A/81A30070866311EDA0246B25C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 29 Jun 2023 13:40:36 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 203.34.177.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109771 (0x1accb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 29 13:40:36 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A914992A/serialNumber=F125A0E6B8EBDC136AB5307D4914710E90063BC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9d:9d:c7:14:31:b1:59:2b:1f:83:44:1a:cd:
1a:ef:44:28:01:0e:70:83:fa:33:ec:7a:74:45:68:
05:44:fe:f9:6c:8d:51:29:0e:96:07:06:7c:b8:12:
7a:e0:96:23:5d:d0:97:5a:6b:9d:09:db:6b:d6:5e:
ba:82:2e:19:01:70:a8:3d:e4:1a:c9:f0:13:b0:da:
c1:37:96:06:46:6b:f2:11:51:e3:27:84:0b:3d:e0:
81:7b:2f:59:d4:f7:bc:17:96:fd:bb:d8:59:e7:43:
00:75:ea:13:04:19:46:22:5b:da:9b:d1:f3:dc:5b:
fb:9d:28:a5:85:8a:e8:0c:e9:7b:04:9b:8c:ed:ed:
03:54:0d:b4:01:02:6a:84:71:85:3e:ee:7a:66:ae:
aa:e6:0b:a4:bc:17:ad:fc:f0:21:84:17:e5:e4:7c:
aa:f2:e5:0a:cb:c4:3e:b4:17:3b:24:b7:18:aa:07:
75:53:aa:1a:10:1e:37:9b:d3:02:ce:63:f2:09:ea:
93:c9:59:6c:b0:89:c6:50:f6:b0:6f:1a:62:61:6e:
9c:47:01:00:a2:27:d3:50:f9:b3:3f:ef:65:4e:7e:
c1:32:36:49:3f:3b:25:ea:49:64:c2:0f:1f:4e:b5:
75:1c:80:ec:ad:2a:4f:be:83:5e:98:c9:d8:bf:c0:
de:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:25:A0:E6:B8:EB:DC:13:6A:B5:30:7D:49:14:71:0E:90:06:3B:C3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914992A/81A30070866311EDA0246B25C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914992A/81A30070866311EDA0246B25C4F9AE02/8SWg5rjr3BNqtTB9SRRxDpAGO8M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.34.177.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:77:85:e8:dd:dc:ec:1d:7e:bf:e8:3d:84:75:59:59:f7:95:
61:32:f9:de:d3:6d:51:43:de:c6:db:02:a2:b8:6a:67:ad:20:
55:a9:a4:3d:6f:d4:fd:19:05:e1:d2:b2:a6:ae:36:79:2d:64:
e8:f6:85:c7:e7:08:97:f6:53:a6:25:ae:a2:27:19:94:fe:ca:
15:a9:b2:be:38:ca:f6:74:9a:a5:3d:16:06:c1:ad:69:eb:c3:
b2:3b:f3:b9:cb:05:64:75:f6:50:6c:66:d7:af:1d:03:89:62:
50:ed:53:09:c1:c2:82:7c:63:8f:57:d8:99:54:e1:28:85:b6:
b2:d9:5e:d1:63:8a:30:e9:e4:6e:78:24:d3:be:21:e6:77:5d:
69:ae:2b:9a:07:24:51:aa:83:1a:57:03:44:e4:85:2d:b8:cb:
6a:a5:6e:d1:66:c1:a6:bb:ec:9a:4c:15:e5:6f:29:f0:5e:ce:
bd:73:5d:ce:b9:c0:ac:a2:36:07:51:88:65:46:d8:1a:f5:30:
2a:c0:e3:46:26:47:05:73:8d:b8:67:77:12:c7:34:a5:ee:cf:
1a:9e:0b:df:7c:64:d8:a6:05:1a:53:51:cc:6b:04:0c:02:e3:
79:86:4b:1b:82:5a:f8:54:79:af:63:11:5d:09:b4:1b:cf:78:
04:5e:69:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:13 2024 by rpki-client on console-fra.rpki-client.org