Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8SWg5rjr3BNqtTB9SRRxDpAGO8M.cer
File: 8SWg5rjr3BNqtTB9SRRxDpAGO8M.cer (raw, json)
Hash identifier: TFMyaA1eCl8uHKD4xknTprxVBLrxCOSa264J2asF7Hc=
Subject key identifier: F1:25:A0:E6:B8:EB:DC:13:6A:B5:30:7D:49:14:71:0E:90:06:3B:C3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F7A9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914992A/81A30070866311EDA0246B25C4F9AE02/8SWg5rjr3BNqtTB9SRRxDpAGO8M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914992A/81A30070866311EDA0246B25C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 06 Jun 2024 15:42:30 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 203.34.177.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128937 (0x1f7a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 6 15:42:30 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A914992A/serialNumber=F125A0E6B8EBDC136AB5307D4914710E90063BC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9d:9d:c7:14:31:b1:59:2b:1f:83:44:1a:cd:
1a:ef:44:28:01:0e:70:83:fa:33:ec:7a:74:45:68:
05:44:fe:f9:6c:8d:51:29:0e:96:07:06:7c:b8:12:
7a:e0:96:23:5d:d0:97:5a:6b:9d:09:db:6b:d6:5e:
ba:82:2e:19:01:70:a8:3d:e4:1a:c9:f0:13:b0:da:
c1:37:96:06:46:6b:f2:11:51:e3:27:84:0b:3d:e0:
81:7b:2f:59:d4:f7:bc:17:96:fd:bb:d8:59:e7:43:
00:75:ea:13:04:19:46:22:5b:da:9b:d1:f3:dc:5b:
fb:9d:28:a5:85:8a:e8:0c:e9:7b:04:9b:8c:ed:ed:
03:54:0d:b4:01:02:6a:84:71:85:3e:ee:7a:66:ae:
aa:e6:0b:a4:bc:17:ad:fc:f0:21:84:17:e5:e4:7c:
aa:f2:e5:0a:cb:c4:3e:b4:17:3b:24:b7:18:aa:07:
75:53:aa:1a:10:1e:37:9b:d3:02:ce:63:f2:09:ea:
93:c9:59:6c:b0:89:c6:50:f6:b0:6f:1a:62:61:6e:
9c:47:01:00:a2:27:d3:50:f9:b3:3f:ef:65:4e:7e:
c1:32:36:49:3f:3b:25:ea:49:64:c2:0f:1f:4e:b5:
75:1c:80:ec:ad:2a:4f:be:83:5e:98:c9:d8:bf:c0:
de:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:25:A0:E6:B8:EB:DC:13:6A:B5:30:7D:49:14:71:0E:90:06:3B:C3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914992A/81A30070866311EDA0246B25C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914992A/81A30070866311EDA0246B25C4F9AE02/8SWg5rjr3BNqtTB9SRRxDpAGO8M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.34.177.0/24
Signature Algorithm: sha256WithRSAEncryption
67:5e:3a:34:8a:73:28:90:c4:ba:fb:8d:41:fc:5d:ca:7a:1a:
08:87:a0:9e:98:40:b5:4f:ed:a7:72:37:77:1f:42:21:22:35:
9d:70:bb:25:5d:02:a7:a8:3a:4d:2e:6b:e0:87:06:ed:c0:70:
2d:41:53:14:1c:94:89:3b:84:9d:23:8b:5d:9a:d4:9d:c5:3b:
24:82:b7:08:5c:a4:68:f7:dc:d3:d1:44:f3:bb:17:10:f1:b8:
74:de:52:9e:49:cf:98:72:ee:bf:96:de:3b:f5:27:6c:c8:90:
5d:7c:7e:3d:c2:bc:b5:9b:c9:5e:62:11:9f:cc:1e:5c:f9:c8:
90:ca:1b:c3:12:eb:bd:54:36:0b:09:8a:82:4a:15:2b:52:5a:
a8:39:66:94:ff:d4:db:82:c4:9f:aa:be:27:07:b2:d2:18:c8:
ba:f7:51:dc:16:76:2f:e4:b2:c3:02:a1:60:67:58:e5:85:47:
05:81:a7:9b:78:8c:8d:d6:45:ed:87:14:a7:24:91:f5:d5:ef:
a9:ad:a9:8d:34:e7:ea:9a:e6:25:d7:46:99:4f:22:2d:d6:b4:
42:10:e4:10:5a:60:54:f8:ad:f5:85:fa:2d:dd:70:22:7f:fc:
45:19:c5:eb:39:2c:b6:d6:9c:21:90:95:b9:f7:61:eb:47:01:
03:71:2d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:21:30 2024 by rpki-client on console-fra.rpki-client.org