Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FGZAd1io17k1aUiW1QJ1KAZ5ryk.cer
File: FGZAd1io17k1aUiW1QJ1KAZ5ryk.cer (raw, json)
Hash identifier: ROtHZY90vEwC2AzMvW6y2Dc4mozFhvTbJIxSqdQxva8=
Subject key identifier: 14:66:40:77:58:A8:D7:B9:35:69:48:96:D5:02:75:28:06:79:AF:29
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CB14
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/FGZAd1io17k1aUiW1QJ1KAZ5ryk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 15 Nov 2023 03:03:21 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 103.142.84.0/23
IP: 2001:df1:3780::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 02:22:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117524 (0x1cb14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 15 03:03:21 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9121188/serialNumber=1466407758A8D7B935694896D50275280679AF29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5f:89:e7:dc:28:fb:2d:16:2c:a0:e3:4f:3c:
22:57:95:1c:90:75:ff:23:9d:9e:26:0f:a7:5d:66:
50:96:7f:c9:cd:93:af:a4:32:15:d6:fb:d0:7c:a5:
d7:9d:df:ee:c3:95:d4:18:e5:f4:54:34:db:81:77:
08:51:c9:69:18:34:53:2d:90:a9:38:26:e0:1f:5f:
19:a8:b2:1f:dd:c2:63:00:94:d0:76:ba:a9:fa:3c:
10:af:0d:88:fe:2a:6b:5c:97:69:51:80:16:21:83:
06:67:7e:c3:93:2a:a2:64:19:0e:5e:59:aa:c2:a4:
86:e2:6c:8f:79:e4:0c:2f:af:77:c0:51:26:d3:c1:
b7:8d:7b:97:be:17:e1:35:f0:4a:37:4b:15:12:80:
53:ca:44:ad:d9:65:fe:99:f2:a0:62:b2:e5:96:c0:
be:99:b3:d6:59:47:54:43:a3:85:91:7e:8d:36:59:
4a:6d:5f:b1:dd:93:fd:53:a7:a1:43:69:eb:5c:e4:
00:a1:74:69:7a:b2:c5:49:33:97:b5:fb:bd:6e:57:
e0:5c:9e:c9:a5:57:70:56:c8:99:1a:51:5f:4d:7a:
e2:8c:7d:e7:ec:39:aa:11:08:a9:51:47:70:cf:39:
1b:3c:10:dd:eb:3e:c7:b8:ea:ba:aa:aa:9e:d4:2d:
93:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:66:40:77:58:A8:D7:B9:35:69:48:96:D5:02:75:28:06:79:AF:29
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/FGZAd1io17k1aUiW1QJ1KAZ5ryk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.84.0/23
IPv6:
2001:df1:3780::/48
Signature Algorithm: sha256WithRSAEncryption
a6:76:de:fb:84:ca:5b:9a:46:1d:4f:6c:0e:19:8b:88:cb:56:
ec:11:6d:84:ed:4e:b7:6e:f2:db:89:56:d4:86:f6:cb:64:e2:
c2:3c:b8:8a:98:7a:c3:3c:40:86:54:9c:26:b5:6e:28:65:9b:
a2:1d:da:20:80:2f:56:c4:dd:64:0a:01:1b:8b:4c:85:e5:b3:
b6:c3:85:f5:0e:0b:b1:b4:1a:42:77:b4:02:e3:c7:18:9d:96:
10:fc:d0:5f:e7:11:31:93:8f:39:80:32:fd:19:90:38:b8:cb:
e8:90:20:81:cf:2e:30:7c:68:8d:9a:a6:ee:13:c7:cf:42:45:
8a:d2:70:81:83:dc:20:47:9c:90:7a:87:6e:d5:a4:65:45:c5:
5e:f4:f8:d9:e7:6e:d3:2e:0d:1d:5f:fc:76:3f:6c:67:77:98:
0e:b5:59:d6:8a:e7:c0:53:2d:83:ac:64:5b:63:56:bd:af:40:
5a:a1:2a:88:4d:96:29:82:6a:0a:72:e0:3c:31:4a:01:7a:4a:
7c:b2:5a:dd:77:2b:16:e4:d5:64:a6:27:7d:cc:46:b1:e8:22:
1b:d0:ee:d8:e7:fd:68:7f:60:b5:dc:89:0f:96:31:83:f5:f1:
6c:63:c3:2e:68:8e:74:30:77:77:33:77:8c:07:6d:ab:26:77:
5e:35:ea:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:13:02 2024 by rpki-client on console-ams.rpki-client.org