Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8qiUEKVLBHj2ArcxIAUVHClcc3k.cer
File: 8qiUEKVLBHj2ArcxIAUVHClcc3k.cer (raw, json)
Hash identifier: ChwtPTvrwN+hXLDNmFXZjaZIf0M+zIyFrYh+Atign4w=
Subject key identifier: F2:A8:94:10:A5:4B:04:78:F6:02:B7:31:20:05:15:1C:29:5C:73:79
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DA7F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 Jan 2024 16:38:48 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 134973
IP: 27.54.148.0/22
IP: 103.204.84.0/22
IP: 2406:4840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 08:35:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121471 (0x1da7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 25 16:38:48 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9175300/serialNumber=F2A89410A54B0478F602B7312005151C295C7379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3a:97:74:a4:ba:90:30:c9:56:6c:52:a5:4d:
e4:31:9c:75:68:17:50:92:75:64:fb:32:54:e8:6f:
c4:38:7d:97:6a:6f:35:e2:61:09:40:3b:c0:e7:b3:
e9:ce:b9:09:73:30:c0:c7:45:be:68:47:d5:9e:ae:
27:a5:ed:26:c5:3a:55:0e:4f:77:96:e4:20:6f:90:
ef:9a:c9:21:49:2f:8b:c1:c8:d8:b9:08:57:b3:9f:
56:02:8c:59:38:f2:0d:7d:ac:e7:34:47:9d:58:6e:
09:e7:94:39:32:f3:fc:01:a8:97:09:9b:83:0e:f0:
13:b2:1c:84:cd:2f:39:8e:02:98:40:6d:7e:e8:c1:
d0:31:26:65:13:56:bf:8e:84:12:9f:b9:ef:dc:c5:
62:4e:7c:2a:ac:12:63:b2:94:f9:11:73:33:0a:01:
3a:3a:72:4a:c3:f1:01:e7:0c:fb:2a:0c:43:2a:7e:
aa:a8:9f:b1:1a:1f:dc:ac:be:55:59:ef:7d:47:dc:
3e:76:a9:bf:7e:97:70:80:5e:f5:68:4d:e5:ab:f4:
b7:fb:2b:10:77:3f:f3:ab:35:24:57:98:6a:96:b5:
4d:c7:f0:62:df:56:9d:d8:df:c2:58:d7:43:a7:a9:
07:28:e6:6e:c0:af:1b:dd:94:49:6e:3e:f1:d5:5c:
31:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A8:94:10:A5:4B:04:78:F6:02:B7:31:20:05:15:1C:29:5C:73:79
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134973
sbgp-ipAddrBlock: critical
IPv4:
27.54.148.0/22
103.204.84.0/22
IPv6:
2406:4840::/32
Signature Algorithm: sha256WithRSAEncryption
1f:a6:f0:02:e9:62:74:a5:30:c2:71:22:93:79:22:cf:20:e3:
76:7d:a0:d4:89:8a:28:3b:40:31:a0:cc:0b:d5:c1:cc:e0:de:
23:4a:eb:3d:9a:1d:8e:39:77:a3:10:a1:8f:ea:09:bd:69:31:
13:39:14:97:f2:38:8b:12:9d:ce:2f:c8:22:a8:63:79:85:8e:
3c:15:a1:18:36:4a:f5:e5:58:58:8c:6d:0e:1c:5b:73:a0:55:
91:4b:63:55:91:f7:92:8f:f9:9f:90:95:d5:e7:3b:05:7d:dd:
66:02:fc:3f:20:c4:b4:7e:26:91:e0:49:a1:3e:6c:76:d6:58:
d2:00:23:ce:44:73:a2:7e:25:c8:93:bc:50:68:0d:cc:e0:8f:
82:67:68:ba:fe:94:4e:e3:b5:51:67:5a:5c:8b:2b:95:c8:63:
ff:b4:fa:1d:88:e6:17:ac:fa:c7:3e:31:61:1e:0b:ea:78:01:
bd:ec:24:ef:7f:9f:31:0f:c4:f5:b7:01:aa:7f:ad:65:07:e5:
a9:dc:47:19:3c:df:4b:8a:85:59:e0:ed:a9:97:c8:dc:b4:53:
fd:33:35:8f:78:df:9e:19:18:c8:d9:bc:c6:ff:19:fe:ce:d3:
4e:ff:b9:59:35:d5:53:97:0a:97:9a:c7:49:0d:4c:a8:06:5c:
e5:d8:4b:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 10:05:57 2024 by rpki-client on console-fra.rpki-client.org