Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer
File: BQIPvxAg_WO-V9oblwSwqoEDREo.cer (raw, json)
Hash identifier: dzYmGb8YhauMQHol0SvDifZjpPK8xabGbD/TLZOiVC8=
Subject key identifier: 05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BCA9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 Sep 2023 14:29:52 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 63526
IP: 45.125.220.0/22
IP: 103.239.252.0/22
IP: 2404:4580::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 15:40:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113833 (0x1bca9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 11 14:29:52 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:02:6f:79:ec:f8:5e:50:23:60:aa:59:9f:ad:
f4:12:62:e8:cb:43:c3:45:8a:99:4b:a8:d4:ee:b4:
79:f5:7b:08:0a:fe:0a:cd:94:ee:fe:a0:c2:28:2e:
d8:dc:eb:77:34:0f:01:2d:b6:98:e6:99:2d:a4:e2:
4e:e9:a6:10:b7:e7:0a:c3:bc:fc:4d:e3:7d:71:41:
4b:74:c7:83:ca:f7:28:a8:ba:c9:de:f8:1d:1a:99:
96:a3:5c:61:3a:08:4f:5c:ea:f3:c9:aa:5f:27:43:
d2:ad:24:7d:a3:65:14:a9:a3:fa:ee:51:a2:95:72:
e8:c7:c4:31:ed:e7:81:a6:14:b9:82:4d:fb:1f:48:
d2:6b:9b:65:fd:24:b5:df:44:76:cf:b4:c8:55:21:
06:33:23:c1:28:70:a9:08:ca:fd:5a:01:a7:ac:d8:
19:4f:a5:97:bf:4e:c4:1e:dd:8c:a1:ec:65:42:81:
95:ee:d2:e9:16:55:15:19:8e:12:d4:e0:df:ef:af:
9d:45:1c:38:a6:81:16:d0:67:a6:cb:7c:51:d7:3f:
77:e7:95:fe:84:72:31:85:7d:21:52:b9:94:ce:7d:
b3:03:78:f7:15:c3:b6:92:d4:ac:84:90:f4:ec:ef:
b4:c4:9c:5d:b4:ad:2b:7d:33:fc:91:a6:ac:55:81:
a7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63526
sbgp-ipAddrBlock: critical
IPv4:
45.125.220.0/22
103.239.252.0/22
IPv6:
2404:4580::/32
Signature Algorithm: sha256WithRSAEncryption
26:bd:5b:0b:96:3b:c3:73:1b:d0:a1:41:6b:84:55:23:8a:8d:
f7:50:4a:be:b9:10:19:2d:a0:39:d6:cf:79:ca:59:6c:5e:95:
15:5c:d1:6c:95:51:70:49:4e:14:c1:0b:14:7a:b6:e2:76:e5:
60:1f:0b:31:49:29:3c:25:44:86:33:78:6f:02:a7:08:dd:dc:
d3:10:2f:d1:7b:fe:45:32:06:9c:d1:11:f5:ea:01:d5:9d:36:
d0:83:fe:a6:c3:5e:d6:0f:7a:bf:c2:5f:a0:9a:af:62:ae:a5:
02:2d:da:db:37:8d:ed:ce:ac:c3:d8:36:47:85:ee:d0:de:8c:
1c:c2:7a:30:ec:07:ed:d0:5c:6a:b6:76:d1:d2:fc:45:37:4b:
a3:30:c6:cc:8e:ee:5c:8f:47:1d:6a:e2:52:ce:be:1b:33:cf:
21:09:78:ef:18:76:68:e9:df:3d:5b:17:82:6a:23:50:c9:d5:
1f:ad:ac:fc:85:2b:4f:98:60:b5:44:cf:21:85:1f:e1:7e:1c:
35:9f:5a:85:d7:19:de:cf:37:8c:f6:50:1d:f3:68:d3:84:40:
84:70:23:06:d5:27:99:02:5f:f8:a1:0e:9f:3c:5c:96:7f:39:
ca:40:48:0d:26:04:86:87:c2:1c:b6:92:ff:9b:7c:cb:5d:50:
e2:02:f1:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 16:36:22 2024 by rpki-client on console-fra.rpki-client.org