Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9T5WQHaYwfqnXSV2VRO1B2Usl6s.cer
File: 9T5WQHaYwfqnXSV2VRO1B2Usl6s.cer (raw, json)
Hash identifier: ub4oOp1S8PflQkS7t4MK/Oi9KNLQGfCcb+NN9GNyAOw=
Subject key identifier: F5:3E:56:40:76:98:C1:FA:A7:5D:25:76:55:13:B5:07:65:2C:97:AB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C4E4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A1B9F/569229026E1511EE8D6ED458C4F9AE02/9T5WQHaYwfqnXSV2VRO1B2Usl6s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A1B9F/569229026E1511EE8D6ED458C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 19 Oct 2023 00:20:49 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 203.21.9.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 20:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115940 (0x1c4e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 19 00:20:49 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91A1B9F/serialNumber=F53E56407698C1FAA75D25765513B507652C97AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ac:f1:07:1c:25:bf:5f:ce:93:7b:eb:ef:8d:
fa:c5:ae:02:11:3e:59:73:ec:e6:77:15:5e:29:ec:
ba:26:9a:44:e3:55:78:1b:69:5e:0b:35:8e:62:4b:
05:8b:7c:50:26:b0:5a:f9:8b:f8:97:40:4a:f6:d7:
bd:31:ab:b8:60:ee:04:b5:72:5b:ea:8d:35:bd:ba:
41:84:c2:9c:a1:38:10:58:70:83:30:ff:7c:cf:35:
87:bf:70:9a:35:40:a9:d5:69:59:c7:21:01:27:b0:
2d:ec:c1:39:cb:ad:95:16:f9:7c:0a:44:2b:a1:99:
2e:f1:d5:db:3c:70:ec:27:e2:18:64:3a:e2:3b:0a:
90:89:09:c7:73:54:72:bd:ca:30:fb:e3:43:2c:a6:
c4:36:eb:96:10:3a:b2:a7:ca:a0:1c:20:0f:a6:1c:
fe:26:47:d6:f0:44:70:d5:68:65:7a:f6:51:87:5a:
1f:3b:20:02:c4:72:ad:07:b4:d1:a7:80:12:75:0e:
e1:54:a5:47:f3:38:71:2d:0e:ab:37:e2:01:16:0f:
8c:94:d6:04:08:ba:8a:b7:0b:6e:f2:65:a0:ee:08:
fc:63:cb:f4:34:81:af:85:99:10:2a:bd:bc:d5:3d:
2a:22:2b:b7:91:98:a9:3e:14:46:54:2a:73:fc:ca:
b9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:3E:56:40:76:98:C1:FA:A7:5D:25:76:55:13:B5:07:65:2C:97:AB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A1B9F/569229026E1511EE8D6ED458C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A1B9F/569229026E1511EE8D6ED458C4F9AE02/9T5WQHaYwfqnXSV2VRO1B2Usl6s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.21.9.0/24
Signature Algorithm: sha256WithRSAEncryption
17:0c:54:01:2e:af:77:f7:21:d8:63:db:cd:02:03:ee:32:7a:
e5:0a:be:7e:6c:b2:57:0f:da:33:8c:b3:71:1e:58:47:7a:81:
b9:b1:5f:e2:8d:49:41:d1:a2:81:81:1d:fa:bb:ea:a4:63:56:
1e:d7:82:0c:04:fb:70:f9:ba:f9:dd:45:1e:8e:0b:73:e7:1f:
7c:c4:32:08:d5:ae:ce:fa:cb:63:80:b0:f3:1b:be:aa:63:68:
c5:80:a4:48:e7:7a:e7:4c:9f:99:35:df:52:2d:1b:12:8d:24:
f7:8c:b7:35:f5:3d:81:1d:28:e9:4b:11:da:4e:cc:15:e3:25:
17:cd:62:9a:96:9f:22:a2:b9:1e:f2:61:2c:68:6f:db:d1:ed:
91:c3:37:d6:8e:c2:7f:40:e1:41:8e:d6:14:1f:2b:da:32:11:
fc:43:d4:db:9b:26:3e:5d:4a:3f:22:30:f8:4e:24:0d:22:23:
60:6c:4d:b4:c3:32:e6:5d:50:78:42:f7:65:3d:67:39:22:e1:
d9:88:43:a6:77:52:bf:64:98:77:80:6b:d1:82:67:92:a9:e3:
e0:1c:67:b6:0f:82:69:31:7c:2b:20:2b:97:1a:16:4c:fd:2b:
bd:3c:87:cc:1e:9d:a3:87:90:63:ce:10:26:a7:b4:9d:cc:f2:
1c:64:33:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 22:07:53 2024 by rpki-client on console-fra.rpki-client.org