Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8W-Ben8MLMSoGkQLf6vjqde90Q.cer
File: J8W-Ben8MLMSoGkQLf6vjqde90Q.cer (raw, json)
Hash identifier: mKi+GnuxMzPw4BBb7PjLwwf5+nTnixy8d+R48xkPtFc=
Subject key identifier: 27:C5:BE:05:E9:FC:30:B3:12:A0:69:10:2D:FE:AF:8E:A7:5E:F7:44
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E60B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BB31B/755208DC553E11EB9187F478C4F9AE02/J8W-Ben8MLMSoGkQLf6vjqde90Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BB31B/755208DC553E11EB9187F478C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Mar 2024 20:34:48 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 45.120.168.0/22
IP: 103.6.152.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124427 (0x1e60b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 22 20:34:48 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91BB31B/serialNumber=27C5BE05E9FC30B312A069102DFEAF8EA75EF744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:29:56:9f:ee:d3:cf:f9:69:f3:e7:27:28:8a:
0a:22:9e:a5:9d:93:5f:34:96:44:cb:e6:a5:ab:92:
9a:bf:5f:eb:92:7a:04:d7:ee:02:09:8b:53:3d:c4:
09:0a:72:c2:96:35:c9:cf:1d:cc:d4:8d:66:66:58:
ca:1f:cd:07:e4:ba:33:83:ac:75:38:65:e8:d0:f3:
4d:70:a7:57:12:92:73:a7:0e:40:30:45:4d:50:f8:
a7:4f:a1:87:7b:57:54:42:ed:e7:43:a3:48:f3:58:
60:86:49:8d:30:9e:9c:03:8d:0f:52:da:58:80:4a:
64:14:7d:ed:3c:d6:71:50:50:d7:7d:d5:51:2b:4c:
6f:b6:cf:d6:f7:34:e1:44:16:d4:ab:61:0b:f3:32:
46:b5:f4:83:ce:dd:25:64:e2:18:fe:3e:71:d5:21:
07:fa:87:f2:52:a0:40:23:b4:19:2c:9e:bc:ee:ca:
12:a0:61:38:86:bb:22:c3:12:e0:25:c3:b2:e8:62:
13:c5:10:fc:c4:ab:7c:57:5e:a2:89:3f:cb:3b:ce:
b4:58:1a:6b:ed:ea:6e:d1:20:d9:40:fd:8d:ce:fe:
d0:3d:96:84:60:28:06:4e:82:ec:13:91:58:58:96:
45:f2:53:ca:df:10:a5:57:22:4f:46:b6:4a:51:c6:
8a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C5:BE:05:E9:FC:30:B3:12:A0:69:10:2D:FE:AF:8E:A7:5E:F7:44
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BB31B/755208DC553E11EB9187F478C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BB31B/755208DC553E11EB9187F478C4F9AE02/J8W-Ben8MLMSoGkQLf6vjqde90Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.120.168.0/22
103.6.152.0/22
Signature Algorithm: sha256WithRSAEncryption
11:28:ad:a7:1a:12:c6:b7:15:f6:34:bd:6b:aa:34:b7:d6:c1:
f6:24:9c:d8:d5:66:08:78:f3:44:73:70:29:2c:15:7f:0a:00:
78:00:3b:18:64:71:2f:a2:9e:91:2c:dd:5e:39:76:e4:21:e4:
2a:a0:53:a7:6a:fe:e0:a1:32:31:af:2b:55:18:9f:7a:e3:88:
c6:51:6a:ab:3a:b3:5c:98:f5:84:99:b8:ad:88:5c:90:db:79:
97:73:34:21:e5:43:4f:6c:b5:0f:45:40:91:98:70:10:6b:0e:
11:a4:30:29:60:00:b6:ea:a6:a0:c6:7d:d4:ca:3b:06:76:f7:
1c:6c:f7:94:47:38:9e:43:0f:93:da:f8:77:f9:b4:4b:3a:84:
f2:a7:eb:13:0a:51:c5:92:c2:3f:c2:53:d1:83:7f:e1:fd:20:
03:29:d5:e3:4f:54:89:8f:a8:0c:6f:c7:4b:8c:93:83:fe:12:
a3:66:55:67:84:d7:66:3c:e5:43:13:20:d7:ff:8e:67:b4:f3:
0c:a9:27:d2:ea:39:17:54:36:66:72:b2:5e:8f:94:39:94:c8:
3e:5e:21:b9:ff:db:f6:6b:21:0e:4e:6b:e6:a6:b5:d7:83:56:
03:58:8c:f1:f4:12:11:9f:9a:bb:ea:90:99:97:73:60:73:08:
91:35:d5:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:35 2024 by rpki-client on console-fra.rpki-client.org