Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpwRxtKUXVL5XyTDndH0GHo0F-U.cer
File: LpwRxtKUXVL5XyTDndH0GHo0F-U.cer (raw, json)
Hash identifier: VrG9X/FbHeHuOS70fydef9vc29OSp9LiolnwMVGhgGo=
Subject key identifier: 2E:9C:11:C6:D2:94:5D:52:F9:5F:24:C3:9D:D1:F4:18:7A:34:17:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CA7B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/LpwRxtKUXVL5XyTDndH0GHo0F-U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 13 Nov 2023 05:01:07 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 103.21.4.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Apr 2024 17:07:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117371 (0x1ca7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 13 05:01:07 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A913B31D/serialNumber=2E9C11C6D2945D52F95F24C39DD1F4187A3417E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:63:ba:79:71:bd:60:58:5d:0f:1f:0f:37:55:
f5:f8:89:35:39:b5:4a:99:31:44:69:f7:bc:ac:30:
2d:67:04:6b:ac:08:81:98:3a:6e:ca:61:93:dc:de:
81:48:2d:4a:0c:67:4a:0b:7e:4e:57:c4:ff:dc:c2:
0a:21:d3:2f:dd:b7:f4:af:fa:b2:d5:af:22:0f:77:
e1:6e:27:79:0b:65:9c:e1:44:6c:9a:60:71:73:d3:
f4:d0:a5:46:eb:04:20:63:d0:43:03:4c:2f:d3:00:
f6:9f:8f:68:29:08:29:77:99:f0:8b:1a:d3:88:da:
a4:0e:04:e0:ca:c4:e6:d9:b3:ae:45:6c:a5:ff:c7:
e1:87:bd:cc:63:c0:85:58:75:3f:ab:31:48:49:84:
9d:ee:8a:0c:71:af:97:7b:66:aa:8e:3d:56:cf:8f:
04:06:8a:6d:7f:35:cc:c8:f5:f5:15:e0:9d:4c:ea:
98:f6:82:b8:96:3c:9d:8f:1d:7d:86:b5:15:ec:59:
c8:e3:e4:a8:db:7b:b4:6c:81:d9:e8:38:f2:f3:1f:
8b:7e:19:df:f6:7d:c8:9f:72:5c:f4:63:77:b3:c4:
05:be:1e:3f:9f:2f:5b:74:79:49:5c:cb:0d:19:8e:
fa:b1:42:69:cd:0c:d3:d6:d5:57:b0:7e:7d:0f:d6:
54:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:9C:11:C6:D2:94:5D:52:F9:5F:24:C3:9D:D1:F4:18:7A:34:17:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/LpwRxtKUXVL5XyTDndH0GHo0F-U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.21.4.0/23
Signature Algorithm: sha256WithRSAEncryption
c8:b9:85:0c:f5:0e:bf:df:f5:1f:c1:73:63:61:0d:8a:7e:38:
87:d0:ec:05:4b:07:c0:26:c8:df:bd:27:00:be:6a:d9:f8:2f:
2f:d7:8e:75:56:cf:7f:34:36:aa:ea:c7:17:a5:23:29:fc:41:
b3:66:b6:02:8c:fe:de:82:44:04:ba:b7:59:46:10:0f:9b:ae:
ac:1a:8e:45:03:38:41:6d:ea:e6:dd:87:03:c5:93:12:18:af:
0f:19:85:75:c6:80:18:6c:20:0c:e5:0e:61:4f:e1:83:dd:74:
b6:52:ed:53:8b:06:ef:02:88:dd:74:f7:00:1c:56:db:2a:46:
8c:de:bb:29:bb:14:2c:9c:9a:58:d6:05:da:f1:f2:d0:42:5a:
5c:d7:31:6b:af:26:02:02:0e:bf:e7:77:65:e4:f7:f0:28:18:
7a:88:de:39:be:5e:5f:39:38:c6:1f:4a:da:86:80:c8:d0:73:
ca:40:2a:60:f5:9c:57:1f:35:75:8a:ef:ff:66:6e:7f:7b:1a:
ab:65:fa:00:dc:e2:0d:bb:56:46:d4:f1:10:cb:1e:5c:73:ab:
65:0b:a6:14:14:2f:02:52:14:ce:ae:8c:9d:b3:3c:ee:ba:d9:
19:56:ee:1d:63:d1:56:fe:93:17:7a:3c:5b:39:8b:37:18:f7:
32:91:e0:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 18:45:33 2024 by rpki-client on console-ams.rpki-client.org