Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FiENxlKhYN7k5AFbvLQJ-odyRkA.cer
File: FiENxlKhYN7k5AFbvLQJ-odyRkA.cer (raw, json)
Hash identifier: ZfQEqQAdIqtu0Zr+R3r4bR2vJ4+UBWhjNnM+9DSIXSg=
Subject key identifier: 16:21:0D:C6:52:A1:60:DE:E4:E4:01:5B:BC:B4:09:FA:87:72:46:40
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CDEE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/FiENxlKhYN7k5AFbvLQJ-odyRkA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Nov 2023 14:41:43 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 23978
IP: 202.38.178.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 14:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118254 (0x1cdee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 30 14:41:43 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91983BD/serialNumber=16210DC652A160DEE4E4015BBCB409FA87724640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:68:78:79:58:7c:c1:36:fd:67:85:fa:63:21:
27:03:67:fd:b5:06:93:df:ee:bc:a8:86:73:b2:9f:
9b:16:9b:3c:d5:df:41:60:b6:b2:88:0c:a9:73:34:
11:2d:79:43:8a:b7:e8:75:a8:6d:3c:46:41:f2:e2:
0c:f0:9a:e8:67:3a:5e:6c:df:37:af:9c:ad:6b:6d:
8a:c2:34:32:83:7d:f9:99:ca:c9:8a:f9:56:2e:7e:
ad:0c:e3:56:a4:78:b6:bf:87:41:87:bd:ee:5a:6f:
d6:5d:6b:99:f4:c1:e7:9a:49:00:b7:be:77:86:75:
ae:ad:3a:c8:68:01:0d:67:6f:67:0d:1f:a5:f6:d0:
86:b3:b1:24:11:e8:97:97:a7:ba:86:51:b4:7f:28:
33:ae:d1:ca:61:84:77:2b:15:52:db:f8:6f:97:8f:
62:61:7d:4d:29:5b:46:87:48:bd:5e:fc:9b:b8:0f:
4c:35:bc:27:33:09:6f:27:58:f1:9d:2d:b3:60:ae:
96:78:3f:ed:8d:17:0d:b0:0e:18:67:21:85:f1:01:
e7:3b:7d:10:08:dd:5d:22:53:b9:39:cd:17:f2:d8:
5d:3e:fb:b6:ae:36:98:39:ff:a2:ef:9c:15:ce:af:
c6:6d:3c:c5:bc:15:de:6e:cc:ae:43:4e:2a:6d:14:
95:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:21:0D:C6:52:A1:60:DE:E4:E4:01:5B:BC:B4:09:FA:87:72:46:40
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/FiENxlKhYN7k5AFbvLQJ-odyRkA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23978
sbgp-ipAddrBlock: critical
IPv4:
202.38.178.0/23
Signature Algorithm: sha256WithRSAEncryption
10:36:0c:cf:19:88:09:6b:68:51:c8:f1:5a:8a:ab:29:a7:da:
43:ec:3b:94:8a:6e:1f:d1:dc:4d:71:ce:a5:78:6b:5d:76:41:
e0:16:98:db:ee:53:d5:73:73:5a:2e:88:22:ed:30:ba:ec:29:
1b:e3:3e:6d:72:3a:1b:10:56:73:a9:e4:ae:94:23:5b:ef:10:
33:30:41:c5:2d:0b:64:52:2b:60:75:b6:7b:c8:77:a5:a4:0c:
a1:7e:74:2e:6f:97:54:95:b7:ae:b7:cb:49:db:d9:18:7f:be:
2a:b9:4a:7f:f0:e0:5b:9f:da:0c:dc:4b:d1:c0:60:20:ea:11:
44:11:da:6b:87:c9:18:7f:4b:e7:ef:5a:7e:30:af:d4:82:d8:
f7:d9:4e:14:f8:4f:d2:1c:a1:93:95:13:c6:f5:70:58:99:b8:
18:b0:cc:fa:5e:25:30:81:8b:4b:5e:be:34:7e:ee:17:1c:32:
a7:1f:1f:1d:a3:7d:c6:78:d4:aa:07:0b:b3:bd:df:b7:ee:c7:
b6:14:a9:a5:12:48:d7:85:36:bf:94:6d:ec:50:f4:a8:75:9d:
fb:42:20:85:05:4d:ca:db:1c:14:12:59:ce:34:31:51:71:07:
ec:93:df:50:38:3c:96:28:62:32:4e:37:eb:af:ef:3e:4f:8f:
50:ff:e2:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 15:10:07 2024 by rpki-client on console-fra.rpki-client.org