Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer
File: J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer (raw, json)
Hash identifier: kwyY/Dbh6sk4g7eIKToMKDfV5pHpzRbt7WA8LOoNais=
Subject key identifier: 27:68:90:43:C4:3F:E6:1B:3C:E3:C4:EB:E6:B6:C1:5F:BC:CD:2D:07
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ACB9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 29 Jun 2023 04:17:04 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 202.2.88.0/22
IP: 202.4.244.0/22
IP: 202.178.96.0/20
IP: 2401:4640::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 16:32:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109753 (0x1acb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 29 04:17:04 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A9141BED/serialNumber=27689043C43FE61B3CE3C4EBE6B6C15FBCCD2D07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f1:cc:5b:ca:e9:64:8d:9b:64:95:2e:42:9e:
42:69:de:ff:00:51:19:48:8d:2e:06:ff:ed:80:53:
6d:ba:54:36:8b:76:74:64:87:bb:3a:9d:a7:90:57:
e7:ba:7d:0e:4f:eb:cf:cf:58:9e:c4:b4:7d:5a:3a:
73:62:50:26:59:fe:03:29:b9:e0:13:66:67:ed:35:
d6:b3:85:fc:53:54:ba:b4:5f:93:94:ff:86:47:82:
49:54:23:17:90:78:7c:85:6e:3a:03:3c:2b:96:c1:
01:00:a2:ef:c0:a3:05:67:3f:71:88:73:50:ba:5e:
9f:59:3c:ac:52:d9:22:60:62:69:34:15:ba:e5:7b:
be:99:76:1a:cf:d0:d1:ba:98:91:a9:e6:67:83:31:
64:75:e1:d1:41:7d:13:03:89:63:13:11:77:3f:8e:
ed:57:80:06:34:9d:69:70:3c:b3:a9:24:69:39:cf:
f3:0c:5c:5d:81:e5:02:2a:2c:13:31:b9:ff:40:ae:
cb:82:e8:d4:b8:0a:e2:62:5b:68:9c:82:7f:19:b2:
4e:53:c7:03:80:5a:c4:0f:26:85:d0:6f:f2:5b:ba:
5d:bf:1f:5d:21:f6:e1:19:7a:d8:11:db:4e:60:47:
7b:51:64:82:ab:45:6f:2d:e0:1a:49:9f:4d:79:c0:
fe:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:68:90:43:C4:3F:E6:1B:3C:E3:C4:EB:E6:B6:C1:5F:BC:CD:2D:07
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.2.88.0/22
202.4.244.0/22
202.178.96.0/20
IPv6:
2401:4640::/32
Signature Algorithm: sha256WithRSAEncryption
22:83:10:a6:63:06:aa:c6:f5:90:fc:ce:0b:aa:eb:50:e6:25:
82:f2:f4:a4:a1:4f:30:88:fe:aa:89:ad:de:90:85:59:ab:0e:
d5:9f:6d:40:5b:30:a4:61:89:07:e0:26:fd:c2:cf:ac:c5:64:
58:30:12:33:80:d8:a3:c9:6d:52:d3:66:e9:66:fa:f3:b8:bd:
34:05:e6:6e:90:2d:02:8b:5a:eb:d9:0f:32:9a:b9:0f:4a:82:
b9:52:4d:0b:71:9f:f7:32:33:ce:ff:19:df:1d:cc:11:57:d5:
b9:69:3f:66:9e:41:63:9b:f2:9a:b2:30:b9:78:0d:a6:46:2f:
2b:53:8c:0c:b8:7a:b5:a0:8a:f4:2d:62:ee:7f:77:17:ad:e6:
30:c5:dc:c7:53:cf:1f:c3:00:6e:24:b5:d9:d6:6d:82:49:3b:
a3:5c:6b:21:63:22:22:9a:e8:58:6c:c9:57:95:9b:a2:42:c1:
dc:08:a5:e4:f7:f7:7a:5a:cd:d8:5c:05:9b:83:13:7b:ca:6a:
6b:db:d7:ef:8e:25:69:a5:6d:40:03:c5:76:45:e6:eb:b2:6d:
3d:aa:68:44:40:71:9b:d3:15:14:d0:e4:ac:5c:fc:c6:83:17:
aa:1c:6c:f1:46:04:4e:14:c6:14:6f:71:4d:af:fc:98:67:73:
d7:aa:f0:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 17:12:15 2024 by rpki-client on console-fra.rpki-client.org