Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FGZAd1io17k1aUiW1QJ1KAZ5ryk.cer
File: FGZAd1io17k1aUiW1QJ1KAZ5ryk.cer (raw, json)
Hash identifier: MkTIHGqBrpSIlmHERBYLtR1xa1v4M+JgQam9iNUYsLw=
Subject key identifier: 14:66:40:77:58:A8:D7:B9:35:69:48:96:D5:02:75:28:06:79:AF:29
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020AF9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/FGZAd1io17k1aUiW1QJ1KAZ5ryk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Sep 2024 13:48:08 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 103.142.84.0/23
IP: 2001:df1:3780::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133881 (0x20af9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 2 13:48:08 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9121188/serialNumber=1466407758A8D7B935694896D50275280679AF29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5f:89:e7:dc:28:fb:2d:16:2c:a0:e3:4f:3c:
22:57:95:1c:90:75:ff:23:9d:9e:26:0f:a7:5d:66:
50:96:7f:c9:cd:93:af:a4:32:15:d6:fb:d0:7c:a5:
d7:9d:df:ee:c3:95:d4:18:e5:f4:54:34:db:81:77:
08:51:c9:69:18:34:53:2d:90:a9:38:26:e0:1f:5f:
19:a8:b2:1f:dd:c2:63:00:94:d0:76:ba:a9:fa:3c:
10:af:0d:88:fe:2a:6b:5c:97:69:51:80:16:21:83:
06:67:7e:c3:93:2a:a2:64:19:0e:5e:59:aa:c2:a4:
86:e2:6c:8f:79:e4:0c:2f:af:77:c0:51:26:d3:c1:
b7:8d:7b:97:be:17:e1:35:f0:4a:37:4b:15:12:80:
53:ca:44:ad:d9:65:fe:99:f2:a0:62:b2:e5:96:c0:
be:99:b3:d6:59:47:54:43:a3:85:91:7e:8d:36:59:
4a:6d:5f:b1:dd:93:fd:53:a7:a1:43:69:eb:5c:e4:
00:a1:74:69:7a:b2:c5:49:33:97:b5:fb:bd:6e:57:
e0:5c:9e:c9:a5:57:70:56:c8:99:1a:51:5f:4d:7a:
e2:8c:7d:e7:ec:39:aa:11:08:a9:51:47:70:cf:39:
1b:3c:10:dd:eb:3e:c7:b8:ea:ba:aa:aa:9e:d4:2d:
93:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:66:40:77:58:A8:D7:B9:35:69:48:96:D5:02:75:28:06:79:AF:29
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/FGZAd1io17k1aUiW1QJ1KAZ5ryk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.84.0/23
IPv6:
2001:df1:3780::/48
Signature Algorithm: sha256WithRSAEncryption
2a:3e:76:c3:4d:79:9c:ca:4e:3e:80:b9:3a:42:aa:f6:5e:05:
fa:c1:62:ca:8c:29:b6:89:59:2b:52:21:ba:ae:9c:cc:b1:db:
04:d5:70:a6:48:ce:2e:38:0d:57:ae:d4:fb:42:3d:69:f3:b3:
14:00:51:b8:40:0f:4e:79:18:f3:a2:e8:f3:41:0f:26:a2:0a:
9e:ff:96:ae:09:3c:f6:d8:87:96:03:fc:ff:79:07:9c:fc:85:
ee:74:0e:f6:1a:68:ce:d3:8c:08:c1:65:2c:ed:9e:dd:ba:8d:
91:1e:bb:fa:78:17:17:8d:45:a5:06:37:c0:6f:32:35:01:eb:
65:b0:66:d6:de:de:89:9e:81:57:38:e0:dc:05:15:68:de:0f:
76:ff:61:e9:32:74:69:89:b6:61:f8:9b:46:3c:50:5b:85:e5:
3c:ab:21:35:84:17:32:85:1a:77:9e:1b:b6:d1:ae:01:8d:54:
d3:72:9b:d8:ce:2c:a7:8a:1b:4b:4f:8f:79:4c:0d:72:96:94:
16:0c:8d:4c:a7:52:c7:a7:23:20:bd:41:1e:a3:0a:ca:87:06:
30:ae:68:47:7c:1f:03:fc:e0:65:7a:f1:d8:b1:79:70:e9:14:
b3:2c:f6:2f:d3:02:06:5e:38:a7:59:78:6f:1e:a8:05:da:0f:
bc:11:ec:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:31 2024 by rpki-client on console-ams.rpki-client.org