Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer
File: EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer (raw, json)
Hash identifier: 2xlXV1zKughvyAibqXvC7MIw1ikE+TC5z8Ay3q6c6rE=
Subject key identifier: 12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0200E0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 17 Jul 2024 00:12:06 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 202.4.31.0/24
IP: 203.5.0.0/24
IP: 203.8.221.0/24
IP: 203.20.64.0/24
IP: 203.22.255.0/24
IP: 203.23.173.0/24
IP: 203.27.101.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131296 (0x200e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 17 00:12:06 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91AB72F/serialNumber=1244785D40C5EC58DFC4A328540F1B393DEA2375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2b:4d:8a:7b:6e:5b:45:b9:9d:60:e2:e5:34:
a4:06:2b:e8:fa:e3:74:72:0f:24:ce:c6:c2:4d:5c:
3d:a8:d5:cf:91:a0:60:49:d7:3a:2d:81:2f:2e:1b:
b1:33:c2:92:4d:a9:fe:fa:20:3e:83:20:39:aa:75:
cb:50:82:26:6b:0c:e7:33:c8:90:5c:40:a4:a1:9f:
04:98:c6:78:41:8d:02:ff:ac:d5:45:c7:02:dd:a4:
1d:cc:03:d4:9a:75:23:2c:4e:70:f6:c4:75:91:f7:
15:3e:4c:2d:9b:1f:fb:7e:d3:a0:51:7e:9a:c7:b1:
a8:2b:56:81:26:b2:b6:17:af:ad:35:b0:34:98:22:
89:c8:45:f4:c8:7e:8c:ef:f4:11:3c:77:6e:0c:6d:
c1:c2:8d:af:49:c2:b7:10:64:43:ee:45:c1:1c:2f:
8e:1a:5f:5a:9d:83:3a:dd:fb:6a:49:c8:61:66:4b:
d7:75:63:9d:cb:09:ce:e0:da:69:c1:54:6a:fb:82:
40:6b:e5:e6:2c:a4:46:10:cb:e7:6c:3f:94:61:b4:
57:65:e4:38:ba:e7:d8:f9:9d:7e:a5:0e:40:38:8b:
f3:22:27:ad:be:e2:be:4c:2a:d1:98:2e:08:c0:8f:
e0:08:73:13:a4:a7:43:d0:09:5f:f8:d1:ca:89:9c:
22:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.4.31.0/24
203.5.0.0/24
203.8.221.0/24
203.20.64.0/24
203.22.255.0/24
203.23.173.0/24
203.27.101.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:1e:49:c8:0c:38:d0:32:66:a1:cb:c5:ab:0a:5c:18:c7:0c:
13:d6:94:bc:55:d7:d4:ca:81:b7:8f:97:24:31:c9:03:b6:a4:
fe:ce:86:96:9a:c8:c9:c4:62:28:3c:9c:ee:23:49:92:9b:8b:
e3:5d:f5:10:76:12:16:28:90:ed:dc:39:11:91:6a:c4:bb:79:
7f:64:20:52:80:24:f0:6c:5b:19:29:bc:cd:4a:7e:6b:0d:66:
b4:e2:ea:48:8a:a6:ac:98:ba:2d:8c:88:7a:54:5e:1b:79:78:
e1:b0:05:88:80:da:6e:a9:b7:b9:24:9b:2b:35:ec:64:96:c3:
b4:15:e3:b9:c1:ef:1d:8d:1f:18:26:b1:67:7b:b5:ca:22:72:
80:28:18:68:70:38:c4:fa:29:16:d8:53:22:de:a0:a4:c7:e8:
11:46:54:d2:c7:c6:b1:0f:2a:e7:79:4e:ee:9f:7a:04:3e:14:
0a:46:db:e5:42:7e:bf:3f:be:15:63:6d:01:ac:c2:03:c5:b7:
d6:a9:1f:d7:9d:ef:80:a0:3b:1d:5f:7d:28:6a:98:8b:50:db:
47:cc:da:58:4b:61:ac:af:df:d2:5e:ad:c4:b8:c1:61:d3:d1:
15:51:5d:b6:cd:b4:bc:22:75:02:df:fc:16:b7:27:0f:15:78:
2f:17:fd:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 22:41:30 2024 by rpki-client on console-ams.rpki-client.org