Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer
File: BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer (raw, json)
Hash identifier: 3OHxvy2L4pr2dp5VVvtnl5Uepss3ASj3Ula1zSKu150=
Subject key identifier: 06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CED3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Dec 2023 18:18:55 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 23967
IP: 202.90.176.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118483 (0x1ced3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 1 18:18:55 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9178D35/serialNumber=0655E2915CADE91677AAB48C23C1E224B43DBAA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:20:68:c8:a9:83:8e:6f:e4:5d:cf:da:07:14:
04:23:fc:f7:68:23:19:ad:0f:f7:00:bc:0c:7b:e7:
43:d8:92:8e:bf:69:df:0a:19:5f:82:ba:8c:81:01:
5e:90:7e:46:3a:27:af:da:41:af:49:68:9e:23:f1:
6a:b4:ac:cc:78:53:fd:5c:32:7e:17:c5:f2:fe:be:
e4:68:db:3d:80:9b:cb:e0:ae:5f:71:83:4c:13:d4:
c9:03:6b:be:95:82:ee:8a:5e:54:b7:2c:62:b9:31:
b9:88:af:6a:27:de:62:4e:fb:11:fb:a2:38:c1:be:
94:fd:2f:06:40:88:83:ca:93:77:68:eb:a7:3a:f6:
07:fc:d7:24:cd:d9:77:0f:ec:45:d7:5c:8a:5e:d1:
7f:54:38:7c:bb:55:a9:0b:0a:96:a8:5a:d2:6c:7a:
19:fe:38:82:e8:72:e2:38:fb:67:fb:7a:36:42:dd:
38:15:6b:57:4a:37:c2:ce:e3:71:a9:77:0c:82:5d:
ea:dc:d9:39:65:51:6b:f5:dc:93:ad:e7:e1:95:eb:
9f:b7:b3:96:e1:a7:7c:d8:3a:c9:db:48:28:ca:e4:
39:7d:1a:ed:4f:81:63:a8:35:45:7a:07:fc:26:0f:
ae:26:48:3a:0a:49:fe:f0:8a:1e:21:b7:7b:cd:a1:
d7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23967
sbgp-ipAddrBlock: critical
IPv4:
202.90.176.0/20
Signature Algorithm: sha256WithRSAEncryption
56:89:81:59:c3:41:76:f5:b4:03:9f:03:96:f6:ec:df:80:0a:
ae:d0:e3:be:e6:18:8e:a4:6c:fd:fb:ba:ef:1b:67:bd:d9:e5:
37:1d:d6:be:e5:62:62:46:00:61:39:d6:5b:cb:b7:a3:0b:32:
27:14:92:48:fb:23:15:61:0d:eb:0b:ed:4e:89:66:c8:2d:be:
3d:26:f3:0d:e4:35:f1:39:0d:0e:1c:89:c9:3d:78:93:7d:b9:
12:8a:76:1c:87:85:b1:4e:10:a4:80:fe:6d:08:be:a9:ea:d3:
09:bf:52:d6:5a:a7:7c:ba:3a:0d:a5:d8:62:ae:a4:4a:eb:ed:
b8:5f:e8:aa:5d:bf:ad:8b:cd:bc:a4:d8:2e:94:6d:d7:53:4c:
42:63:09:36:9a:92:0e:f8:a0:30:af:ef:cc:f8:f1:db:fe:a6:
36:a7:c8:e6:e6:d2:23:3d:cd:8a:f2:06:9a:bf:87:5a:03:bf:
13:1e:34:f8:84:e9:33:85:59:57:fc:d3:03:13:2d:be:79:b7:
0a:67:8d:5a:5e:e0:bb:b1:94:72:59:9c:41:9e:15:71:20:f7:
08:89:9e:b5:88:c7:83:77:6c:59:5f:55:39:da:bc:d9:c8:40:
cf:1a:61:20:6e:f5:bc:90:fd:29:20:ab:2b:06:a0:a2:d6:38:
0f:06:de:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:14 2024 by rpki-client on console-fra.rpki-client.org