Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer
File: J8OQD7137iLLcempDoFXTN5GRK0.cer (raw, json)
Hash identifier: K5vIggi7CdEfxJz/PyyCRnt6BZJ4PPciiy7b2rofMKw=
Subject key identifier: 27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D752
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 08 Jan 2024 19:14:48 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 24545
IP: 203.81.176.0/21
IP: 2400:7e40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 06:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120658 (0x1d752)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 8 19:14:48 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d4:16:9e:fe:31:cc:1c:cd:6f:08:81:b5:2d:
6f:68:33:a6:21:33:71:85:5e:45:31:3e:f3:fa:46:
95:b7:4c:58:bb:eb:07:bf:cc:0f:82:66:82:9a:43:
3a:f6:76:bd:bb:40:11:11:76:a6:ed:2f:8f:b9:92:
5c:99:9f:41:52:6c:e0:26:8c:72:68:4a:f9:13:f3:
5e:ea:ce:f3:90:83:11:40:50:85:52:a7:3a:ec:30:
f1:fb:3f:ac:94:a1:fd:0f:ac:ba:83:68:3e:db:ba:
1c:23:67:93:e2:dc:b2:cd:29:f8:c9:3f:e2:d7:60:
a1:08:0d:32:11:ae:34:30:5f:54:b7:5b:2a:78:15:
0b:a6:52:ec:f5:4f:d1:71:43:2c:17:3f:20:4b:85:
86:c9:56:9b:60:f5:f4:4a:a1:64:68:49:89:c9:aa:
8b:cc:1c:35:df:71:cb:53:47:21:09:50:03:09:68:
e1:bd:5f:d0:48:9d:2c:2e:7f:7e:d1:c8:55:a9:14:
a9:a1:29:15:a2:31:90:46:cc:e9:8b:96:1f:af:1f:
84:52:20:83:6b:30:3f:4a:87:c0:24:74:ad:5f:1d:
5a:2a:2f:5f:44:be:54:98:06:68:4e:43:26:73:95:
c2:27:14:93:b7:a1:0a:99:05:53:e5:4a:39:31:a8:
c1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24545
sbgp-ipAddrBlock: critical
IPv4:
203.81.176.0/21
IPv6:
2400:7e40::/32
Signature Algorithm: sha256WithRSAEncryption
5d:fa:18:d6:58:a5:a4:74:1a:a8:8e:ce:8f:6a:cf:65:d0:de:
6f:31:78:79:ac:64:e6:94:86:f7:45:81:63:31:9b:39:38:de:
51:34:f0:44:13:43:b3:1f:76:2b:e2:74:c9:ef:5a:f9:3a:e5:
be:af:7e:39:68:c7:56:40:83:52:bb:ca:22:46:9c:60:34:98:
d6:0c:00:35:2a:c0:9f:0f:62:49:53:02:f2:f2:48:7a:cf:aa:
ce:7e:38:a6:6c:e8:eb:54:50:a3:1e:f2:5b:78:23:2b:14:1d:
23:1c:ba:c5:8b:33:7b:7f:47:e2:3c:56:c2:c4:c3:6d:16:53:
4f:20:fb:59:fb:f0:dc:8c:41:be:ee:7d:9d:3d:d4:25:2e:17:
13:0c:25:e7:31:6d:13:4d:04:88:4e:94:8e:be:6d:7e:2a:54:
7a:19:c3:db:d3:d4:17:54:88:65:bb:55:af:70:22:8d:49:d4:
a4:16:a7:38:fb:0d:f3:a7:4a:1b:31:7c:c4:30:ae:dd:cc:76:
8e:4c:82:ea:bb:0d:5b:95:78:9e:e9:60:ac:bb:e7:15:a1:73:
2b:af:65:70:61:19:7f:d6:8d:77:40:02:53:3c:84:6b:bf:1c:
77:74:97:18:3f:a7:68:3f:d4:2c:69:34:e5:9c:19:50:27:fe:
82:22:9b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 07:41:11 2024 by rpki-client on console-ams.rpki-client.org