Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpwRxtKUXVL5XyTDndH0GHo0F-U.cer
File: LpwRxtKUXVL5XyTDndH0GHo0F-U.cer (raw, json)
Hash identifier: 5dslGKPc2toEfM3b/pTEtNuyD/luKY5vlonhtNVAW5w=
Subject key identifier: 2E:9C:11:C6:D2:94:5D:52:F9:5F:24:C3:9D:D1:F4:18:7A:34:17:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021D02
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/LpwRxtKUXVL5XyTDndH0GHo0F-U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Nov 2024 13:32:36 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 103.21.4.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138498 (0x21d02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 22 13:32:36 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A913B31D/serialNumber=2E9C11C6D2945D52F95F24C39DD1F4187A3417E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:63:ba:79:71:bd:60:58:5d:0f:1f:0f:37:55:
f5:f8:89:35:39:b5:4a:99:31:44:69:f7:bc:ac:30:
2d:67:04:6b:ac:08:81:98:3a:6e:ca:61:93:dc:de:
81:48:2d:4a:0c:67:4a:0b:7e:4e:57:c4:ff:dc:c2:
0a:21:d3:2f:dd:b7:f4:af:fa:b2:d5:af:22:0f:77:
e1:6e:27:79:0b:65:9c:e1:44:6c:9a:60:71:73:d3:
f4:d0:a5:46:eb:04:20:63:d0:43:03:4c:2f:d3:00:
f6:9f:8f:68:29:08:29:77:99:f0:8b:1a:d3:88:da:
a4:0e:04:e0:ca:c4:e6:d9:b3:ae:45:6c:a5:ff:c7:
e1:87:bd:cc:63:c0:85:58:75:3f:ab:31:48:49:84:
9d:ee:8a:0c:71:af:97:7b:66:aa:8e:3d:56:cf:8f:
04:06:8a:6d:7f:35:cc:c8:f5:f5:15:e0:9d:4c:ea:
98:f6:82:b8:96:3c:9d:8f:1d:7d:86:b5:15:ec:59:
c8:e3:e4:a8:db:7b:b4:6c:81:d9:e8:38:f2:f3:1f:
8b:7e:19:df:f6:7d:c8:9f:72:5c:f4:63:77:b3:c4:
05:be:1e:3f:9f:2f:5b:74:79:49:5c:cb:0d:19:8e:
fa:b1:42:69:cd:0c:d3:d6:d5:57:b0:7e:7d:0f:d6:
54:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:9C:11:C6:D2:94:5D:52:F9:5F:24:C3:9D:D1:F4:18:7A:34:17:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/LpwRxtKUXVL5XyTDndH0GHo0F-U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.21.4.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:2c:d8:b9:7c:e0:c8:28:52:d9:04:d4:0b:db:df:03:0a:34:
66:3e:af:12:1b:36:86:6b:73:5e:4a:6d:d8:2a:98:84:a3:f6:
97:a4:b5:f1:e9:b2:98:71:6c:ff:5a:7c:6f:74:69:2b:60:4e:
96:d6:ba:fa:69:fe:90:1b:77:71:27:69:a6:a6:24:0d:83:64:
1c:32:7f:3b:a8:20:18:05:b9:84:43:cf:e5:a0:7a:8b:32:f4:
73:82:09:be:b8:ee:fa:09:ca:32:95:78:cb:98:c6:a5:0d:66:
3a:7a:65:42:b2:3f:0b:50:eb:b3:1c:92:7f:bb:8d:8d:0b:23:
06:7c:66:93:77:b3:51:07:bb:37:1b:12:f4:a8:e3:7e:fd:38:
6e:0e:a1:a2:cc:0f:a1:bb:d3:b5:f9:40:08:da:0a:57:04:dc:
ad:15:7a:eb:18:c5:56:f4:b2:46:8e:0e:98:1e:2e:4d:87:59:
0f:66:65:2e:bb:83:c1:68:68:20:c6:89:e2:75:c9:1d:85:8f:
11:c4:15:7d:09:8f:79:a7:a6:23:12:89:38:cd:5b:0f:bb:ce:
35:30:b4:5b:b1:3a:2d:72:e6:ae:20:18:f7:2b:c5:64:1f:df:
d4:26:f3:e9:78:6c:fc:82:13:7c:7e:47:c5:bb:fd:ca:02:f6:
3d:2b:9e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:25 2024 by rpki-client on console-fra.rpki-client.org