Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer
File: J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer (raw, json)
Hash identifier: tinDHja7nSqwyf5MMJY0GAScHwYUW0v2DW06/3chxGw=
Subject key identifier: 27:68:90:43:C4:3F:E6:1B:3C:E3:C4:EB:E6:B6:C1:5F:BC:CD:2D:07
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FF32
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Jul 2024 14:06:59 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 202.2.88.0/22
IP: 202.4.244.0/22
IP: 202.178.96.0/20
IP: 2401:4640::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130866 (0x1ff32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 10 14:06:59 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9141BED/serialNumber=27689043C43FE61B3CE3C4EBE6B6C15FBCCD2D07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f1:cc:5b:ca:e9:64:8d:9b:64:95:2e:42:9e:
42:69:de:ff:00:51:19:48:8d:2e:06:ff:ed:80:53:
6d:ba:54:36:8b:76:74:64:87:bb:3a:9d:a7:90:57:
e7:ba:7d:0e:4f:eb:cf:cf:58:9e:c4:b4:7d:5a:3a:
73:62:50:26:59:fe:03:29:b9:e0:13:66:67:ed:35:
d6:b3:85:fc:53:54:ba:b4:5f:93:94:ff:86:47:82:
49:54:23:17:90:78:7c:85:6e:3a:03:3c:2b:96:c1:
01:00:a2:ef:c0:a3:05:67:3f:71:88:73:50:ba:5e:
9f:59:3c:ac:52:d9:22:60:62:69:34:15:ba:e5:7b:
be:99:76:1a:cf:d0:d1:ba:98:91:a9:e6:67:83:31:
64:75:e1:d1:41:7d:13:03:89:63:13:11:77:3f:8e:
ed:57:80:06:34:9d:69:70:3c:b3:a9:24:69:39:cf:
f3:0c:5c:5d:81:e5:02:2a:2c:13:31:b9:ff:40:ae:
cb:82:e8:d4:b8:0a:e2:62:5b:68:9c:82:7f:19:b2:
4e:53:c7:03:80:5a:c4:0f:26:85:d0:6f:f2:5b:ba:
5d:bf:1f:5d:21:f6:e1:19:7a:d8:11:db:4e:60:47:
7b:51:64:82:ab:45:6f:2d:e0:1a:49:9f:4d:79:c0:
fe:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:68:90:43:C4:3F:E6:1B:3C:E3:C4:EB:E6:B6:C1:5F:BC:CD:2D:07
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.2.88.0/22
202.4.244.0/22
202.178.96.0/20
IPv6:
2401:4640::/32
Signature Algorithm: sha256WithRSAEncryption
9b:e9:41:6a:fd:53:83:8c:6b:02:b1:e2:cc:49:e9:64:48:b7:
9e:7a:6f:c3:54:49:19:92:ca:19:36:f0:b3:f5:fb:db:6d:37:
af:f4:2a:48:24:04:cb:ad:4c:0d:6e:08:9e:e6:51:83:6d:bd:
ca:aa:26:36:b5:88:81:36:30:43:f6:45:e2:4c:a2:17:ec:45:
3c:22:90:c4:c4:60:c3:e7:2b:8f:88:4c:40:50:0f:4e:8b:5b:
b1:36:ec:1d:07:9b:c5:c6:7b:96:01:ff:68:33:6a:c8:94:21:
de:cb:ce:e8:19:da:51:f4:e0:20:75:cc:4c:37:d4:1e:e1:18:
79:8f:0e:5a:78:61:3b:2a:57:e1:5c:21:a1:2f:36:4d:32:2b:
45:ed:f6:2e:b5:12:97:0a:f1:0d:ad:d6:95:0b:7e:3f:04:0f:
1f:1d:aa:af:6d:cf:db:d9:ae:92:58:5c:ac:9e:22:39:32:2d:
e5:a4:18:a8:47:52:90:4c:67:76:10:62:d6:39:93:06:b8:85:
5f:36:1e:03:82:5c:ab:34:4f:a2:2c:a1:3c:f6:26:7c:c3:8d:
0b:6d:cd:26:56:70:4f:a7:02:27:04:6d:28:7b:08:1a:87:6a:
53:7f:f0:10:d5:5d:e7:f3:b8:06:00:ad:1d:cb:26:cd:09:50:
9d:29:55:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:34 2024 by rpki-client on console-ams.rpki-client.org