Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer
File: Km8SBBLYIPn_JM0F1ez0nmYtmco.cer (raw, json)
Hash identifier: nDseasOS8CZ68Au6ghu8FP2muGGVXiNhEKNfE8WPHWg=
Subject key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B835
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 22 Aug 2023 16:13:59 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 103.68.164.0/22
IP: 2400:8240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 02:50:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112693 (0x1b835)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 22 16:13:59 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1b:14:08:63:8b:e9:2f:9b:d9:46:8c:4f:a6:
3d:2f:61:15:e5:c4:e1:86:3a:01:b7:00:54:e0:cb:
24:a6:94:f0:c4:ab:75:2b:4f:f9:30:d1:be:70:3d:
98:a9:54:ab:46:fc:2d:fb:5f:8f:c5:89:ea:5c:82:
81:95:3e:7e:90:58:c5:50:40:97:12:a3:6d:76:3f:
1e:55:30:c6:60:0c:dc:c5:11:56:66:43:dd:8e:38:
6f:ad:bb:48:f1:19:de:a4:f8:3c:05:a8:2c:97:8e:
9c:0a:7e:b4:54:2a:87:63:2b:3c:43:13:ee:ae:07:
ee:d1:2d:86:30:94:ad:a2:b6:83:e1:ca:54:d6:c2:
cc:15:14:c4:1e:18:88:08:e5:4d:db:41:02:13:a9:
8d:57:17:5b:b6:48:f4:1a:12:6c:45:51:66:56:84:
c0:50:91:95:8b:dc:8a:8d:74:49:dc:02:a2:df:3d:
e1:e6:b1:2a:5a:6b:0c:7c:d0:5c:be:4e:a0:3f:c9:
71:9b:14:d7:9c:9a:7d:cf:c9:80:32:6f:da:d9:21:
f4:28:9f:66:7d:a8:db:85:16:a1:4e:61:ee:ec:94:
d5:a2:93:cf:a6:44:ad:cf:1b:8e:35:29:dd:5b:10:
36:cb:21:4f:d1:ca:f4:6d:9d:38:62:8a:57:1f:68:
e6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.68.164.0/22
IPv6:
2400:8240::/32
Signature Algorithm: sha256WithRSAEncryption
ab:fb:23:68:94:59:0e:6d:ae:d1:a6:3a:43:f6:b4:3b:5c:ea:
8c:f9:e9:5d:00:8c:b0:cd:17:91:82:fe:ac:df:74:69:97:15:
53:76:d9:c8:18:da:dd:b9:47:a4:9b:47:ed:d1:c6:2d:00:11:
ad:59:93:ed:e9:28:80:1c:8e:60:1c:e0:dd:bd:62:7c:06:a5:
33:5b:15:18:13:02:4a:50:cd:50:a0:5c:a9:98:e1:34:88:45:
ee:dc:c2:e1:f7:84:d6:fa:73:fd:c8:c8:4e:39:5b:96:6a:2c:
29:b3:db:e6:b9:1b:9e:8e:b3:9e:3a:da:8e:bc:12:18:09:b4:
79:c9:d7:71:62:36:24:cb:53:90:7c:d5:21:b5:1a:4b:d7:e4:
05:1a:d4:f7:65:20:64:61:31:fb:79:16:35:56:6a:8a:53:1a:
13:ed:ce:af:1b:ac:c1:07:9e:4d:be:72:d6:b2:d5:89:1f:d8:
fd:d1:2c:52:36:98:64:77:ee:87:50:21:4c:7d:be:f0:ec:da:
90:80:fa:4e:81:62:c7:76:17:25:e6:f2:c3:a4:11:c3:3a:f0:
c8:09:f3:1d:ab:2e:cd:c1:50:88:6c:06:3a:84:9d:7a:73:c2:
d7:64:a6:a6:11:66:f6:d9:e4:96:55:30:6a:7d:f3:b7:4a:d5:
63:5e:cc:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 03:51:28 2024 by rpki-client on console-ams.rpki-client.org