Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer
File: Icv-KamU2PngPkxNRObPW2SLeOw.cer (raw, json)
Hash identifier: Txx+WfLtdMrPS8BoD9A4Xf3KAHBfFL9jcZpsaK+CdUk=
Subject key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BC1E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 07 Sep 2023 13:03:51 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 103.123.136.0/22
IP: 2403:7940::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 03:16:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113694 (0x1bc1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 7 13:03:51 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5f:56:dc:93:b7:57:63:dc:24:e8:3d:3f:d1:
12:5e:a1:e6:a8:7c:a0:28:92:e7:7c:e2:81:1a:c0:
ad:e0:66:da:34:ae:d3:84:7c:1c:c5:7f:81:c9:f0:
9a:db:09:1c:d2:e9:40:6b:a6:6a:36:80:1c:32:4d:
d0:18:61:4a:70:4b:2e:04:6e:00:17:20:be:cb:a0:
a0:5b:0c:3b:11:7d:f8:52:6d:ae:02:ec:86:b5:a9:
ba:8e:97:76:5c:24:94:89:51:d9:62:e3:b5:7a:03:
5e:d3:0e:01:3d:6a:d3:c3:a5:96:c5:ad:db:90:0a:
b3:b2:cf:2f:56:2f:05:b5:01:dc:cd:34:e1:67:f5:
52:34:d7:38:8f:ab:dd:55:7f:81:62:ef:d2:94:97:
7a:97:f8:c1:7c:8d:3f:40:9b:9a:8b:af:0f:90:a9:
3e:ce:48:2c:da:f8:0d:e7:33:ab:3b:d5:12:e6:8c:
16:9f:a4:e5:32:2f:b8:ef:11:36:76:74:40:66:48:
bb:40:ff:da:9e:04:f8:e8:81:ce:c5:93:5b:d4:6f:
6f:72:aa:3c:ce:bc:b0:5c:77:71:66:06:cb:2e:5d:
01:7f:65:f2:5e:e7:2c:57:fc:ad:df:26:3e:c6:b4:
15:d2:3c:39:1c:84:e0:e3:08:15:f1:61:df:f0:d2:
05:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.136.0/22
IPv6:
2403:7940::/32
Signature Algorithm: sha256WithRSAEncryption
86:d0:ee:59:1e:69:ae:1a:9d:b9:8c:14:f8:2a:be:6d:fc:56:
ec:b5:fc:72:60:d9:01:1c:3a:4a:e2:8f:aa:cf:fc:b4:3b:9c:
99:d6:41:36:12:48:91:dd:e1:14:9f:1e:3c:f1:cd:81:3b:72:
d5:be:50:72:7d:36:df:1d:0d:7e:97:19:01:e3:04:fe:c4:5c:
32:47:45:ac:70:53:f2:24:36:b2:79:81:74:7a:c6:b7:e8:d5:
d8:be:83:62:b3:ee:35:f9:2f:9b:bd:10:d6:cd:30:7a:af:6b:
f3:c9:af:40:63:5a:a4:9c:a0:f6:23:3a:fa:bb:90:27:7f:2d:
5d:b5:a5:15:da:bf:9a:06:70:92:bd:e3:23:14:53:8b:d5:dc:
04:d1:80:96:d3:ba:6e:cc:37:3a:ed:5e:3e:36:ba:d3:3a:cd:
5e:9d:c9:c4:3d:94:c0:f7:ee:a7:74:76:ff:ed:3e:da:d0:cd:
2a:c4:d9:66:ff:c2:fc:51:36:19:0a:61:0e:52:15:af:1e:26:
59:70:55:21:48:67:ff:cf:10:91:a0:f1:5c:79:b9:99:13:7c:
e8:a4:91:d1:65:61:96:e3:94:c8:17:1d:ce:85:5f:23:7d:1b:
3e:28:10:56:c9:c1:a1:09:dc:7c:e0:09:d4:0e:1b:95:65:c9:
03:dc:f0:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 04:06:57 2024 by rpki-client on console-ams.rpki-client.org