Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer
File: DOpooCxSn4h1LGQt4NL--fXXoUo.cer (raw, json)
Hash identifier: KvERjqbDLrjYRTGgD+1sjmepVokVS7hFNz+9vbQv/4I=
Subject key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021923
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 05 Nov 2024 14:27:13 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 45.127.112.0/22
IP: 103.196.36.0/22
IP: 2402:e580::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 18:35:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137507 (0x21923)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 5 14:27:13 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1d:d5:28:c6:49:2c:93:6b:32:d8:5a:90:ce:
46:3f:c9:41:cb:c1:a3:d0:1a:a5:1f:e7:ac:d1:59:
91:81:e6:1c:ae:dd:5a:61:28:37:3d:75:1e:9a:4e:
f4:e8:1d:8e:6e:58:af:9d:aa:fe:38:4a:7f:9e:0f:
95:23:35:aa:e2:66:01:b0:0d:3b:08:2f:8a:3c:9c:
a9:aa:e0:64:8d:73:20:5b:c7:0b:1f:95:b1:ca:c4:
6c:10:73:4e:f8:09:fa:de:19:fc:32:a0:0d:15:f6:
ae:49:68:46:7a:4d:56:74:28:6b:a7:a7:78:cc:6e:
0a:5e:20:0b:3f:5b:76:63:c2:29:7e:32:a6:38:30:
fc:98:04:19:ad:aa:d2:ad:4f:2e:4e:7f:26:51:a0:
dc:a4:38:c7:b8:19:52:6a:28:ab:49:d9:95:0a:28:
18:36:84:6d:b2:27:61:dd:4e:c8:d5:38:8a:c0:e3:
42:e9:b9:8f:a3:2a:fb:eb:a2:e3:f7:ca:17:83:ec:
80:d9:93:6e:f6:a7:d7:66:b7:cd:35:91:9e:90:b7:
e1:a4:c3:09:48:3a:8f:b7:c3:59:ae:fd:0b:6e:0e:
f7:00:2c:12:05:fc:c1:56:23:9e:54:42:ef:2d:e5:
8e:38:15:f4:81:14:3c:81:04:34:64:41:3a:54:25:
bb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.127.112.0/22
103.196.36.0/22
IPv6:
2402:e580::/32
Signature Algorithm: sha256WithRSAEncryption
23:db:25:a3:66:ac:88:36:33:78:04:c0:c6:1f:75:82:89:7d:
ba:b2:b7:23:6c:b2:cc:c8:13:2c:3f:4d:fa:41:c9:aa:dc:0a:
19:8e:bb:2f:af:3b:34:a2:91:26:90:f4:2f:1d:6f:1b:f5:1c:
ae:b4:aa:32:e5:15:6c:5a:4a:6e:9b:a5:d7:6f:18:39:e1:e3:
00:93:17:f7:d6:18:a9:18:23:a2:e3:f6:92:3f:d4:55:42:28:
b4:5b:9b:37:f5:fd:ed:90:89:9e:75:8b:63:94:65:b6:b6:32:
5f:00:df:b9:17:ed:a2:07:4a:e1:74:1d:c3:41:7f:65:f3:3b:
a9:df:cb:75:ff:34:af:2a:bb:e4:ca:2e:17:67:6d:cd:73:c4:
03:91:c8:3a:39:c5:91:49:b8:96:ed:c5:6e:23:0a:5c:82:32:
d5:02:9a:81:92:48:ce:36:1e:df:5e:41:da:8a:70:8b:a3:29:
80:6d:12:b3:7d:2f:09:6f:77:fd:5a:ea:41:1f:88:18:08:ba:
09:1c:a3:43:1f:96:bc:c2:16:10:ae:28:17:29:f6:ff:3e:88:
04:b9:b6:06:a8:00:97:12:32:7c:1e:8e:18:5f:5b:b1:4c:db:
ac:79:d7:a0:6d:d3:a2:bc:09:d8:ac:25:15:33:2a:44:4a:9e:
80:cc:65:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:50:40 2024 by rpki-client on console-ams.rpki-client.org