Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer
File: IrN0ThSJpKURK82Mvxepj_HbZnU.cer (raw, json)
Hash identifier: u0xEB6BeDrMHdgJ42EeX26vcHxy6eNpFqL6OR9AOMYY=
Subject key identifier: 22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E5B3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 21 Mar 2024 03:28:37 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 103.179.206.0/23
IP: 2400:4e60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124339 (0x1e5b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 21 03:28:37 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91F2B54/serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:84:27:41:80:30:80:16:05:43:2c:cc:d6:22:
7e:a6:08:64:59:af:78:e1:d5:36:d5:27:02:39:d1:
6b:6c:a7:c3:b4:07:2a:39:75:5c:bf:cd:ef:8b:24:
fd:ee:33:16:5a:71:21:24:26:2f:a6:04:63:16:8a:
20:da:02:27:b8:e3:c7:43:57:9c:51:7a:01:19:ba:
b9:9c:1e:c5:53:ab:fc:79:d9:dd:01:e7:f7:08:e0:
5d:78:9d:ea:b4:d1:60:42:70:36:58:97:88:a9:3e:
f9:b1:a7:45:01:11:1c:da:f2:52:74:a9:9c:1f:fc:
8a:ba:ba:5c:ac:56:6f:a3:ce:ca:cf:de:64:7e:9d:
4b:b8:95:72:7b:82:da:f5:92:20:3d:3f:74:88:64:
04:ec:32:03:fa:97:45:16:9a:e3:45:31:b1:65:a5:
c7:63:ea:9b:91:86:a5:66:16:00:a5:57:0a:92:09:
5c:4d:51:05:00:1b:d0:f3:86:0d:c9:11:39:46:3c:
2d:08:2e:59:ff:5a:71:14:3e:66:88:22:39:5a:a8:
df:95:af:fc:b9:39:c3:e0:84:7a:44:e9:8c:9f:01:
bb:8b:4c:6e:00:a0:e1:4d:21:58:0b:65:c7:59:c1:
24:8a:d4:dc:65:2e:cd:43:76:fa:22:5d:f5:79:2a:
a7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.179.206.0/23
IPv6:
2400:4e60::/32
Signature Algorithm: sha256WithRSAEncryption
04:53:32:32:f6:70:ee:ec:96:06:71:e9:6d:19:82:72:c8:57:
52:f6:76:c3:dd:d7:38:36:d5:1b:ce:ef:e8:ae:ab:e0:3a:b1:
27:f1:a0:26:73:d1:ea:88:13:f2:90:61:a4:e4:bd:07:ca:2a:
ff:65:e5:27:56:05:66:30:0a:74:19:86:98:95:b7:4b:ef:52:
12:55:a8:91:c6:d4:32:fc:a6:74:dd:ec:96:30:8f:2f:03:43:
f2:cd:8c:54:ce:6b:85:41:7a:ff:54:c8:ee:19:7b:db:02:59:
70:2d:e8:93:1c:1c:b6:0c:f4:ac:1a:e0:91:64:be:46:fe:fe:
9e:48:95:66:6d:fb:e3:d0:d1:47:3b:2a:2f:9e:f0:b9:f3:f2:
62:d7:f9:8f:f6:9d:27:e1:21:d5:9b:12:c6:e5:20:72:8e:6e:
87:46:f0:9f:c2:13:0f:a5:4a:7b:f5:aa:04:68:33:6a:4d:64:
52:ad:bb:81:cb:ca:49:e3:51:d8:47:6f:18:fa:30:dc:16:14:
6a:af:e1:ef:3d:c9:7a:f1:95:16:31:89:71:25:08:dd:38:bc:
03:b6:3c:18:f3:25:7b:21:86:13:17:38:77:62:b7:9e:02:22:
87:87:0e:62:3b:c4:5d:1f:42:3e:bf:46:4f:c9:20:74:4e:15:
32:59:bf:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:21:18 2024 by rpki-client on console-ams.rpki-client.org