Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer
File: LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer (raw, json)
Hash identifier: fXN8ZTpGGfl5IiLMc4O8eH++/jWu6cUwTaMbi55Y2GY=
Subject key identifier: 2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A92F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 09 Jun 2023 12:47:27 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 114.141.120.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108847 (0x1a92f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 9 12:47:27 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91203EB/serialNumber=2F265B0C802473094926890A85124E21B109DA3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2d:6b:cb:2f:cc:19:0d:ae:cf:43:c5:35:ef:
74:05:1e:be:02:0c:df:f7:ce:f5:3d:a7:c4:c4:04:
56:e5:40:24:89:0c:df:ef:8a:24:7f:eb:02:3a:77:
64:b6:f9:dd:e0:03:d4:d9:f5:ab:3f:db:70:1c:46:
62:eb:c7:d7:de:56:c3:07:2a:70:ce:a5:5b:11:f9:
41:f6:b8:92:1c:bd:21:ba:5b:4e:be:e2:c3:9c:39:
27:77:10:8e:17:85:cf:fc:64:c9:c5:a5:14:0e:29:
9b:5d:57:4d:c4:bf:0c:f5:33:f5:d6:6a:09:f0:8b:
cc:25:59:4e:af:cb:bb:34:5d:a5:19:19:d1:52:20:
e2:c7:f0:2f:42:97:b0:69:01:92:fc:e5:de:92:b4:
fb:e6:85:c8:f1:00:eb:95:a3:30:e1:27:c9:32:fe:
5b:d0:91:f7:74:1e:60:11:e6:3a:1b:9a:2a:45:4d:
21:51:2f:94:5e:8f:03:eb:72:68:87:cc:32:f6:fa:
f6:38:28:63:bb:27:a1:81:3e:26:32:fb:6a:9b:9a:
a1:b0:47:6c:71:2b:49:6c:54:7f:9c:3a:24:33:1a:
04:bc:ec:16:6b:0a:81:a7:33:e0:84:cd:a3:60:55:
51:fc:45:10:31:4f:fa:87:36:4d:84:0b:a7:b7:35:
0f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
114.141.120.0/21
Signature Algorithm: sha256WithRSAEncryption
20:91:dc:5c:cf:ca:11:99:6e:9c:98:3e:25:4b:64:53:05:e4:
96:61:ce:f4:7f:ab:eb:88:49:4b:54:21:8a:36:23:a5:99:ad:
f9:64:08:94:ae:0f:65:61:2c:05:8d:59:3f:c3:9d:d0:11:38:
0b:2c:28:18:f2:73:ba:4b:41:a6:c2:2a:76:96:b9:62:ba:53:
f5:a8:23:8e:b1:fa:be:ca:89:2e:11:f2:1b:00:46:94:86:98:
66:63:f5:f6:f8:74:e6:9e:07:e3:1b:8c:be:ae:aa:aa:0d:61:
63:bf:76:a4:44:12:b2:3c:e8:13:97:32:fb:d6:2b:d0:ed:9c:
ee:76:af:f2:e8:62:03:43:5f:56:68:83:ca:fa:e9:4f:8c:93:
98:a9:33:7d:4e:f7:75:c1:14:74:8a:3a:86:9c:83:0c:25:35:
0e:b5:19:24:2d:19:54:18:2a:78:6e:3a:f7:bf:6c:10:11:cf:
f0:c7:fd:b3:6c:eb:78:b7:9d:a5:05:51:04:99:1e:c8:59:0a:
d7:4b:63:12:99:af:42:8e:eb:5d:3e:8f:10:e9:ba:aa:41:8a:
b4:d4:b7:e5:95:ea:a8:77:9a:2b:fc:77:4c:be:ac:b9:0e:16:
f2:31:36:c4:53:43:2a:e8:64:48:e4:11:f3:42:45:ba:55:62:
2e:b0:ab:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:50 2024 by rpki-client on console-fra.rpki-client.org