Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer
File: Km8SBBLYIPn_JM0F1ez0nmYtmco.cer (raw, json)
Hash identifier: f/Gt2UxK8ctN5xtfLnLz0ig598uw9hok+FhukgKYEk8=
Subject key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020340
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Jul 2024 16:16:04 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 103.68.164.0/22
IP: 2400:8240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131904 (0x20340)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 30 16:16:04 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1b:14:08:63:8b:e9:2f:9b:d9:46:8c:4f:a6:
3d:2f:61:15:e5:c4:e1:86:3a:01:b7:00:54:e0:cb:
24:a6:94:f0:c4:ab:75:2b:4f:f9:30:d1:be:70:3d:
98:a9:54:ab:46:fc:2d:fb:5f:8f:c5:89:ea:5c:82:
81:95:3e:7e:90:58:c5:50:40:97:12:a3:6d:76:3f:
1e:55:30:c6:60:0c:dc:c5:11:56:66:43:dd:8e:38:
6f:ad:bb:48:f1:19:de:a4:f8:3c:05:a8:2c:97:8e:
9c:0a:7e:b4:54:2a:87:63:2b:3c:43:13:ee:ae:07:
ee:d1:2d:86:30:94:ad:a2:b6:83:e1:ca:54:d6:c2:
cc:15:14:c4:1e:18:88:08:e5:4d:db:41:02:13:a9:
8d:57:17:5b:b6:48:f4:1a:12:6c:45:51:66:56:84:
c0:50:91:95:8b:dc:8a:8d:74:49:dc:02:a2:df:3d:
e1:e6:b1:2a:5a:6b:0c:7c:d0:5c:be:4e:a0:3f:c9:
71:9b:14:d7:9c:9a:7d:cf:c9:80:32:6f:da:d9:21:
f4:28:9f:66:7d:a8:db:85:16:a1:4e:61:ee:ec:94:
d5:a2:93:cf:a6:44:ad:cf:1b:8e:35:29:dd:5b:10:
36:cb:21:4f:d1:ca:f4:6d:9d:38:62:8a:57:1f:68:
e6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.68.164.0/22
IPv6:
2400:8240::/32
Signature Algorithm: sha256WithRSAEncryption
6a:09:ff:b8:db:ab:59:9d:32:2d:e5:e5:e1:09:d0:9e:a2:bc:
8f:57:0f:ca:b8:dc:62:c3:b9:a5:a4:d7:83:51:a6:2f:37:0f:
40:c3:80:fc:f8:90:fb:d3:cc:8f:93:bd:33:e3:72:dd:a0:44:
dd:77:d1:31:80:bc:21:0c:6d:25:24:96:5d:77:ee:35:92:21:
67:a5:c8:ad:94:d1:77:46:d7:a7:c6:80:b8:4d:e9:04:c9:88:
fc:28:de:b4:13:a3:06:00:7d:db:36:e1:f0:90:aa:10:2b:38:
ce:f1:dd:05:51:fb:2d:88:63:3b:6c:e3:d4:88:c3:86:bc:36:
cd:50:a1:95:f9:24:f3:d0:d7:b7:b2:cd:d1:d2:fc:ba:eb:77:
c7:90:65:da:03:84:e2:bb:8e:c6:52:3a:8c:be:c8:9a:74:e1:
20:83:35:f7:18:db:41:9f:02:5f:4d:77:d6:6d:d5:fa:3c:08:
d0:6f:c5:06:9f:96:bf:97:39:2b:33:9d:a7:ca:09:bb:b1:3a:
93:40:6b:73:5c:72:b1:3b:25:51:5b:81:16:d8:af:3f:e1:00:
58:7a:54:f9:6b:0d:b6:a6:3c:38:88:e8:be:e6:19:d8:ef:c5:
93:de:3b:32:f9:81:f4:d2:7f:4f:84:27:39:a5:7c:95:5a:e4:
27:15:01:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:25 2024 by rpki-client on console-fra.rpki-client.org