Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I90ea4NEljsEULkpM3adRKcyUWs.cer
File: I90ea4NEljsEULkpM3adRKcyUWs.cer (raw, json)
Hash identifier: 19dPfgC0mYhRR3dtCoM6wht9fnsQheAqh2tf0jKCBOM=
Subject key identifier: 23:DD:1E:6B:83:44:96:3B:04:50:B9:29:33:76:9D:44:A7:32:51:6B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D53E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91437AC/0256EB964D6011EE8385F040C4F9AE02/I90ea4NEljsEULkpM3adRKcyUWs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91437AC/0256EB964D6011EE8385F040C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 31 Dec 2023 14:03:27 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 103.176.152.0/23
IP: 2400:33e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 16:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120126 (0x1d53e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 31 14:03:27 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91437AC/serialNumber=23DD1E6B8344963B0450B92933769D44A732516B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d6:63:93:19:61:fc:15:15:ca:6f:83:50:58:
ff:43:16:fe:ea:fc:93:97:61:03:7a:7a:68:f4:b6:
64:a0:61:25:b3:c1:6e:f4:fd:85:f2:3e:15:4d:3e:
62:e8:ab:70:79:bb:5c:6e:d4:31:71:6f:43:5a:10:
2e:e0:32:f7:b6:25:a5:c6:33:ff:e0:b3:ab:15:88:
bd:d1:37:eb:04:27:e4:2a:d3:e2:05:31:fb:6a:ab:
28:70:55:57:26:05:1f:12:fa:a0:19:ea:bd:44:19:
80:34:4c:82:2c:a9:fc:74:c4:a3:77:cf:7d:6c:5c:
cf:fd:53:5b:2b:4a:2a:8a:03:3e:ce:12:31:99:4d:
fd:2b:b8:d2:79:6a:73:0c:fd:85:56:2a:11:fd:c0:
7a:50:65:32:15:b5:e1:b5:3e:d4:69:94:17:4e:ed:
67:2b:1d:3b:6d:ab:02:58:a7:9c:89:87:ef:c6:28:
da:11:cf:2b:67:a0:67:5e:04:60:82:0f:aa:48:ba:
2b:55:25:ef:fa:5a:77:2f:55:bf:08:bf:2f:62:7d:
be:c9:3d:21:d6:39:45:39:63:70:06:08:67:90:80:
87:4b:22:02:30:e6:ca:60:eb:85:65:3a:e1:81:c2:
9d:1f:a9:ec:e2:2e:68:79:d7:1d:75:79:6a:dd:e4:
30:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:DD:1E:6B:83:44:96:3B:04:50:B9:29:33:76:9D:44:A7:32:51:6B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91437AC/0256EB964D6011EE8385F040C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91437AC/0256EB964D6011EE8385F040C4F9AE02/I90ea4NEljsEULkpM3adRKcyUWs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.176.152.0/23
IPv6:
2400:33e0::/32
Signature Algorithm: sha256WithRSAEncryption
9b:2e:24:31:c1:d0:9c:e8:6f:bf:15:dc:90:48:a6:7f:b5:07:
9e:a5:74:cd:ff:c5:7c:02:d7:30:59:50:8f:71:9a:ac:dc:10:
df:57:73:7d:6b:31:68:b0:8a:d2:2c:ab:c3:65:bb:38:62:a6:
ed:39:ee:e0:e6:69:9c:35:9a:65:1c:66:aa:29:6d:7e:a0:56:
56:fb:7b:3a:22:df:8a:ab:fb:90:db:40:73:1a:2e:09:ee:a3:
d8:11:74:dd:20:58:13:a0:62:e9:ad:2e:9c:24:30:39:23:72:
7b:81:8a:58:9d:72:d4:c8:b0:b6:58:0d:0d:c8:18:57:0e:11:
ff:cd:8a:37:c9:17:7d:3d:22:f4:0d:96:4c:f5:b5:10:7e:6d:
11:77:93:22:58:71:59:7a:a4:1d:5d:a9:5f:fe:41:17:d9:56:
1f:e3:5d:46:87:00:ce:2c:6c:b3:7a:46:e0:b0:9e:de:71:8b:
5a:54:7c:73:27:80:e5:1b:fc:ab:f2:8d:c3:c6:75:3c:04:e9:
8f:dc:b3:a0:dc:4c:32:e5:e5:87:80:4e:93:32:5f:7b:2a:e7:
7c:6b:5b:86:9d:0d:59:7c:a4:f8:e0:45:1a:1b:13:f8:6b:f6:
22:4b:d8:33:7c:07:1f:fc:e9:1d:a1:2c:b3:37:c1:72:e6:af:
ec:83:15:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:56:41 2024 by rpki-client on console-fra.rpki-client.org