Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer
File: GNXPyKr1F7B20fycLmX2kUNdOl8.cer (raw, json)
Hash identifier: ookb04A+Qk79tvsLb3Ar0VTYp4MrrFD5JVKSAOtfFPo=
Subject key identifier: 18:D5:CF:C8:AA:F5:17:B0:76:D1:FC:9C:2E:65:F6:91:43:5D:3A:5F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BF1F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Sep 2023 15:49:52 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 103.142.100.0/23
IP: 2001:df1:3c80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 19:45:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114463 (0x1bf1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 22 15:49:52 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A917E0AC/serialNumber=18D5CFC8AAF517B076D1FC9C2E65F691435D3A5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d2:8f:66:67:ed:59:63:29:01:f4:10:80:01:
a5:ac:0c:1b:ed:59:13:8c:4c:88:8a:40:56:ca:1b:
7c:70:8d:73:ac:07:d3:2a:bb:a9:d3:94:69:98:96:
c7:d2:63:20:f8:f9:ea:15:ec:63:d4:b6:31:18:b9:
b1:37:dd:f8:67:bb:42:d4:6e:c5:41:7b:85:bd:10:
67:87:9c:66:ba:a9:b9:b9:37:e4:73:f7:b9:9e:a4:
4e:b7:b4:68:c1:b0:2d:d7:6c:62:fa:ec:81:1c:2a:
98:a1:1f:1b:ce:49:41:d1:fa:33:ec:32:9e:90:5d:
ab:a3:d6:e6:5e:06:1b:4c:8c:78:9b:d5:48:6a:87:
76:36:f9:b3:77:27:ec:20:f4:ff:2e:77:41:fb:57:
14:72:0c:5d:93:84:bc:33:14:13:fb:24:df:98:1e:
92:7d:52:08:ff:78:ee:72:0c:0d:b6:ed:c0:46:14:
1d:7a:34:f5:77:23:7b:f5:28:bf:5e:ed:06:c6:e4:
50:b9:a5:68:38:e0:c5:d4:a7:d5:4d:4b:c3:4f:87:
f4:0b:e9:d6:6e:7b:68:f1:f5:f3:2e:a5:fb:50:0d:
9e:1c:e0:6d:4d:01:7d:e2:a8:73:8a:35:55:64:0a:
80:5a:6c:be:f2:b2:b0:07:2a:31:11:bb:5e:06:6e:
4c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D5:CF:C8:AA:F5:17:B0:76:D1:FC:9C:2E:65:F6:91:43:5D:3A:5F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.100.0/23
IPv6:
2001:df1:3c80::/48
Signature Algorithm: sha256WithRSAEncryption
c8:a3:bd:fb:2e:e8:13:ac:ff:54:25:ce:b1:22:3c:a4:87:be:
dc:4a:a0:a9:dc:b4:14:ea:55:5b:2d:64:02:dc:56:7a:62:ff:
11:f8:ce:30:9d:e5:61:ef:00:33:5d:53:3a:43:36:4f:89:0b:
0e:09:1b:69:37:05:4e:8f:4c:72:de:15:10:93:78:b7:7f:24:
ff:c2:7f:d6:47:ca:e9:9f:8c:c2:7d:02:a6:9c:0f:c9:fc:ae:
e3:ef:4f:e3:83:5a:32:6e:1c:3a:79:4f:3a:1a:b3:52:c8:6d:
4a:92:3a:3d:cb:54:7d:fd:a5:d1:81:c3:f5:73:6f:e6:63:ec:
d2:bd:8b:9f:4e:ed:e7:d2:0d:1b:c2:62:bc:7c:7a:81:bf:d6:
40:17:5f:b0:49:7b:c7:0e:16:d5:40:7d:1d:66:c3:31:07:00:
35:9a:bd:a7:6c:3d:62:40:14:ca:5b:22:ce:24:4d:3f:07:7e:
a4:a2:ae:ef:61:ba:40:ef:10:02:37:28:00:3a:c7:83:e4:ed:
6a:46:51:91:d9:f9:25:90:dd:a6:6b:f0:51:e5:88:f9:da:b1:
6a:55:c0:e9:39:67:b3:01:35:7b:54:b9:4d:97:ae:e8:9c:df:
95:10:8b:3a:0a:81:8a:f7:a7:31:51:0d:8f:1d:c7:7d:bd:42:
c1:20:73:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 20:49:41 2024 by rpki-client on console-ams.rpki-client.org